Facebook has flagged the Information Security & Privacy Audit Manager job as unavailable. Let’s keep looking.

SLAC Job Postings

Position overview:

SLAC National Accelerator Laboratory’s Computing Division is seeking an IT Cyber Security Analyst to join our diverse cyber security team reporting to the Deputy CISO working in the security operations center. Members of this team are responsible for protecting SLAC networks from cyber threats by actively monitoring for security anomalies performing security assessments and balancing security with business rules/needs.

We are seeking an IT Security Analyst to join our diverse cyber security team. Members of this team are responsible for protecting SLAC networks from cyber threats by actively monitoring for security anomalies, performing vulnerability assessments, and balancing security with business rules/needs. You’ll need past experience and understanding of the cyber security environment, common network and host-based attacks, attack methods, and network defense architecture; in addition, have previous experience working in a security operations environment.

As an IT Security Analyst, you will apply a variety of technical skills which include security event log analysis, endpoint forensic analysis, and vulnerability analysis. You will be accountable for conducting information risk assessments and audits to ensure that information systems and data are adequately protected and meet regulatory requirements. In order to be effective, you will need to leverage knowledge and comprehensive understanding in using vulnerability scanners (Nessus/Qualys), intrusion detection systems (Zeek), firewalls (Cisco/Palo Alto Networks), SEIM (Splunk or other) or other information security products including cloud application security experience.

SLAC is a U.S. Department of Energy (DOE) laboratory operated by Stanford University and based in Menlo Park, CA.

Your specific responsibilities include:

  • Under general supervision, perform all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
  • Develop plans to safeguard computer configurations against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
  • Perform system security reviews and tests and write formal reports and follow up advisory memos.
  • Receive reports on security breaches and take appropriate action to minimize harm and liability.
  • Monitor process and inspect system and network data for computer and network usage policy compliance, system integrity, and incident response. Interface with Information Security Office to report incidents.
  • Deliver educational information to system administrators and users. Participate in the development and documentation of information security standards, best practices and guidelines.
  • Assist in the design of secure system and network architectures.
  • Assist the Information Security Office and Internal Audit in the development of appropriate criteria needed to assess the level of new/existing applications and/or technology infrastructure elements for compliance with enterprise security standards.
  • Assist local area in applying best practices in securing the data and information systems under their control.
  • Other duties may also be assigned.

To be successful in this position you will bring:

  • Bachelor's degree plus three years relevant experience, or a combination of education and relevant experience.
  • Demonstrated knowledge and understanding of IT security trends and emerging technologies and an ability to relate them to Stanford and its objectives.
  • Thorough and demonstrated knowledge of networking protocols, principles, and intrusion detection devices, including firewalls and VPNs.
  • Fundamental architecture and configuration knowledge of desktop server and operating systems.
  • Solid understanding of security issues, techniques, and solutions.
  • Strong experience with debugging, troubleshooting, forensics and security utilities.
  • Basic understanding of scripting language.
  • In-depth knowledge of authentication protocols, encryption and other fundamental security technologies.
  • Excellent written and verbal communication skills.
  • High level of integrity and excellence judgment concerning proprietary and privacy issues.

Certificates and Licenses: None

SLAC employee competencies:

  • Effective Decisions: Uses job knowledge and solid judgment to make quality decisions in a
  • timely manner.
  • Self-Development: Pursues a variety of venues and opportunities to continue learning and developing.
  • Dependability: Can be counted on to deliver results with a sense of personal responsibility for expected outcomes.
  • Initiative: Pursues work and interactions proactively with optimism, positive energy, and motivation to move things forward.
  • Adaptability: Flexes as needed when change occurs, maintains an open outlook while adjusting and accommodating changes.
  • Communication: Ensures effective information flow to various audiences and creates and delivers clear, appropriate written, spoken, presented messages
  • Relationships: Builds relationships to foster trust, collaboration, and a positive climate to achieve.

Physical requirements and Working conditions:

  • Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of his or her job.

Work standards:

  • Interpersonal Skills: Demonstrates the ability to work well with Stanford colleagues and clients and with external organizations.
  • Promote Culture of Safety: Demonstrates commitment to personal responsibility and value for environment, safety and security; communicates related concerns; uses and promotes safe behaviors based on training and lessons learned. Meets the applicable roles and responsibilities as described in the ESH Manual, Chapter 1—General Policy and Responsibilities: http://www-group.slac.stanford.edu/esh/eshmanual/pdfs/ESHch01.pdf.
  • Subject to and expected to comply with all applicable University policies and procedures, including but not limited to the personnel policies and other policies found in the University's Administrative Guide, http://adminguide.stanford.edu

  • Classification Title: IT Security Analyst 2 
  • Grade: I Job code: 4792
  • Duration: Regular continuing

The expected pay range for this position is $93,000 - $143,000 per annum. SLAC National Accelerator Laboratory/Stanford University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as (but not limited to) the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity, geographic location and external market pay for comparable jobs.

Read Full Description
Confirmed 39 minutes ago. Posted 24 days ago.

Discover Similar Jobs

Suggested Articles