Infrastructure Security Analyst

The Infrastructure Security Analyst serves to enhance the University's cybersecurity posture by managing centralized logging, EDR/XDR solutions, cybersecurity training, compliance and policy review, campus firewall management, and ensuring secure access to University Resources. The Analyst is critical in ensuring that University cybersecurity measures are robust, proactive, and aligned with industry standards, and will play a key role in safeguarding the University's digital assets and promoting a secure computing environment.

Mission and Commitment

Taylor's mission is to develop servant-leaders marked with a passion to minister Christ's redemptive love, grace, and truth to a world in need.

As a community, Taylor faculty, staff, and students commit to living out Christ's love and truth in the here and now. We worship together, serve one another, and grow in faith as we learn in the classroom, on the field, at chapel, and anywhere else we're doing Life Together.This position is primarily responsible to:

• Testify to personal experience of salvation in Jesus Christ, affirm belief in the University's Statement of Faith, abide by and practice our Life Together Covenant, and both personally agree with and support the Foundational Documents of Taylor University.

• Oversee and manage the Security Information and Event Management (SIEM) system; manage Endpoint Detection and Response and network monitoring solutions.

• Develop and deliver campus-wide cybersecurity training programs; raise awareness and educate employees on best practices for cybersecurity.

• Ensure compliance with relevant cybersecurity standards and regulations; regularly review and update security policies to align with industry best practices.

• Configure and manage the campus firewall to safeguard network security; monitor and respond to security events to mitigate potential threats.

• Provide secure remote access solutions for employees to access University resources.

• Assist in managing and configuring campus router for security and optimal performance.

• Contribute to the management of Network Access Control measures; support Identity Management initiatives, including user provisioning and de-provisioning.

• Assist in managing authentication processes and Single Sign-On solutions; enhance user experience while ensuring the security of authentication mechanisms.

• Provide backup support for Linux and Mac Server OS administration.

• Review and enhance security of University applications.

• Act as a point of escalation for complex IT security issues, providing expertise and resolution.

• Regularly review system logs for security incidents and operational insights.

• Implement and manage data backup strategies to prevent data loss.

• Develop and maintain scripts and automate routine tasks.

• Manage SSL certificates to ensure secure communication.

• Monitor infrastructure components for alerts and generate insightful reports.

• Other duties as assigned.

Education and Experience

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field, or equivalent work experience. 

• 5+ years of relevant experience in cybersecurity and infrastructure management.

• Strong expertise in SIEM, EDR/XDR, and firewall management.

• Security certifications (e.g. CISSP, CompTIA Security+) are a plus.

Skills and Competencies

• Excellent problem-solving and trouble-shooting skills

• Ability to make mature decisions, have good interpersonal skills, mature judgment, ability to learn quickly and apply new technology.

• Collaborative team player who can also work independently.

• Ability to plan and schedule work, with minimal supervision.

• Familiarity with policy development, compliance standards, and regulations (e.g. NIST, GLBA).

• Experience with authentication processes and single sign-on solutions.

• Familiarity with Linux and Mac Server OS administration.

• Familiarity with SentinelOne EDR and Wazuh SIEM.

• Proficient in backup and disaster recovery (Commvault) procedures.

• Knowledge of Windows Server OS, Microsoft Exchange, Microsoft Teams, and Cloud PBX.

• Scripting and automation experience (e.g. PowerShell, Python).

• Must be able to handle and work with interruptions during normal office hours.

• Physical Demands

• Perform the following, with or without reasonable accommodation: stand, sit, kneel, stoop, reach, lift, grasp, see (near and far) for reading and data analysis on a computer screen, hear and talk for ordinary conversation and telephone calls.

• Occasionally travel alone to training or conferences.

• Work occasionally during non-business hours for scheduled maintenance to minimize the impact to customers. Scheduled weekly maintenance window available every Thursday from 4 am to 6 am.

• Expected to be on-call to respond to emergency outages or repair efforts.

• Work Environment

• Indoor work environment, with occasional outdoor work required.

• Environmental Conditions

• No or very limited exposure to physical risk.