Current jobs related to Systems and Application Security Analyst - Storrs Mansfield CT United States - University of Connecticut

  • Application Systems Analyst

    1 month ago

    , FL, United States TIER4 GROUP Full time

    Job Title: Application Systems AnalystJob Summary:Tier 4 Group is seeking a highly skilled Application Systems Analyst to join our Information Services Division (ISD). As a key member of our team, you will be responsible for providing technical support and assistance to departments, troubleshooting software and hardware issues, and working effectively with...

  • Application Systems Analyst

    1 month ago

    , CA, United States Orange County's Credit Union Full time

    Job Title: Application Systems AnalystOrange County's Credit Union is seeking a skilled Application Systems Analyst to join our team. As a key member of our IT department, you will be responsible for providing technical support and maintenance for our enterprise applications.Job SummaryThe successful candidate will have a strong background in IT and...

  • Business Systems Analyst

    4 weeks ago

    , NC, United States Apex Systems Full time

    Business Systems AnalystApex Systems is seeking a skilled Business Systems Analyst to join our team in Charlotte, NC. As a Business Systems Analyst, you will play a critical role in reviewing, analyzing, and evaluating information technology systems operations.Key Responsibilities:Identify and document system issues, and work with engineering/development...

  • Security Analyst

    4 weeks ago

    The Woodlands, TX, United States Inceed Full time

    Compensation: $90K- 100KLocation: The Woodlands, TX[TITLE]: Security AnalystInceed has partnered with a great company to help find a skilled Security Analyst to join their team!The Security Analyst plays a crucial role in ensuring the protection of the organization's information systems from potential security threats. They are responsible for identifying,...

  • Security Analyst

    4 weeks ago

    Houston, TX, United States Inceed Full time

    Compensation: 120k-140k/yearLocation: Houston, TXPosition: Security AnalystInceed has partnered with a great company to help find a skilled Security Analyst to join their team!The Security Analyst will oversee the company's entire cyber security and compliance footprint and take steps to continuously monitor and improve their security...

  • Securities Trade and Reconciliation Analyst

    2 weeks ago

    Hartford, CT, United States MassMutual Full time

    Securities Trade and Reconciliation AnalystTrade Operations and ReconciliationInvestment Management Full-Time, (Hybrid) (requires rotating coverage until 7pm)The OpportunityAs a Trade and Reconciliation Operations Analyst candidate, you will play a critical role in a fast paced, complex, and collaborative environment, where you will continue to develop your...

  • Information Security Analyst

    4 weeks ago

    Manchester, CT, United States MassMutual Full time

    JOB DESCRIPTION Information Security Analyst - Core Full-Time, Springfield The Opportunity As a Security Operations Center (SOC) analyst you’ll have an opportunity to part of a growing team of highly technical Cybersecurity analysts who are passionate about protecting MassMutual’s assets and customers by leveraging problem solving skills and...

  • Business Systems Analyst

    1 week ago

    Mansfield, Ohio, United States Mouser Electronics Full time

    Job SummaryThe Business Analyst at Mouser Electronics works in a fast-paced environment within the IS team, supporting the delivery of global solutions. This role involves analyzing department processes, documenting business requirements, and recommending process improvements. The ideal candidate will have a strong understanding of Mouser's business systems,...

  • Security Systems Specialist

    2 weeks ago

    , MO, United States Burnes Citadel Security Full time

    Job Title: Security TechnicianAt Burnes Citadel Security, we are seeking a skilled Security Technician to join our team of professionals. As a Security Technician, you will be responsible for installing and servicing intrusion, fire, life safety, access control, video surveillance, and interactive/smart systems.Why Work with UsRepresent a longstanding,...

  • Information Systems Security Specialist

    3 weeks ago

    , UT, United States BAE Systems Full time

    About This JobWe are seeking an experienced Information Systems Security Officer (ISSO) to join our team at BAE Systems. As an ISSO, you will play a critical role in supporting our mission of Strategic Deterrence through continual improvement and innovation.Key ResponsibilitiesEstablish and monitor controls to secure our on-premises networks and...

  • Security Systems Specialist

    4 weeks ago

    Washington, DC, United States Tricore Systems, LLC Full time

    Job OverviewTricore Systems, LLC is seeking a skilled Security Technician to join our team. As a Security Technician, you will be responsible for the installation and maintenance of complex integrated security systems, including access control systems, intrusion detection systems, video surveillance systems, network systems, intercom systems, and emergency...

  • Oracle ERP Data Analyst

    4 weeks ago

    , CT, United States Apex Systems Full time

    Job SummaryWe are seeking an experienced Oracle ERP Data Analyst to join our team at Apex Systems. The successful candidate will be responsible for gathering data requirements, extracting and analyzing data, and creating and publishing reports using OTBI.Key ResponsibilitiesMeet with clients to understand their data needs and requirements.Extract, transform,...

  • Epic Applications Analyst

    4 weeks ago

    , NH, United States Panera Bread Full time

    About the JobWe are seeking a highly skilled Epic Application Analyst to join our team at SolutionHealth. As an Epic Application Analyst, you will be responsible for implementing, developing, and maintaining the Epic system and associated third-party systems.Key ResponsibilitiesImplement and configure systems to improve processes, add efficiencies, and...

  • Securities Trade and Reconciliation Analyst

    4 days ago

    Hartford, CT, United States MassMutual Full time

    Securities Trade and Reconciliation AnalystTrade Operations and ReconciliationInvestment Management Full-Time, (Hybrid) (requires rotating coverage until 7pm)The OpportunityAs a -Trade and Reconciliation Operations Analyst candidate, you will play a critical role in a fast paced, complex, and collaborative environment, where you will continue to develop your...

  • Fire Alarm Systems Specialist

    2 days ago

    Mansfield, Ohio, United States Koorsen Fire & Security Full time

    We are seeking a skilled Fire Alarm Systems Specialist to join our team at Koorsen Fire & Security. The ideal candidate will have experience in the service and maintenance of Fire Alarm systems and their components, ensuring proper functionality.The selected candidate will troubleshoot systems to diagnose problems and identify solutions, while also ensuring...

  • SAP Application Analyst

    2 weeks ago

    Mansfield, United States ClearBridge Technology Group Full time

    Our client, a manufacturer and retailer located in Massachusetts, is looking to hire an SAP Materials Management/Warehouse Management Applications Analyst for a 6 month contract position working primarily remote. The team is looking for someone who can be onsite in the Mansfield, MA office when required to do so. (1-2 weeks total throughout course of...

  • Business Systems Analyst

    3 weeks ago

    , CT, United States Insight Global Full time

    Job DescriptionA healthcare client is seeking a Business Analyst to join their team remotely in India. This individual will be part of the Healthcare IT department and will be responsible for creating a member experience to provide the organization with electronic fund transfers instead of paper checks.The ideal candidate will have a background in...

  • Network Systems Analyst

    2 weeks ago

    , CO, United States ASRC Federal Holding Company Full time

    Job Title: Network Technical AnalystASRC Federal System Solutions is seeking a highly skilled Network Technical Analyst to support the Wing Information and Communication Support (WICS 2) Technical Control Facility (TCF) at Schriever AFB CO.This is a shift work position that requires the ability to work effectively in a fast-paced environment.Key...

  • Security Analyst

    7 days ago

    Elkhorn, NE, United States BG Staffing - BG Multifamily Full time

    *Job Description*We are seeking a skilled and detail-oriented Security Analyst to join our team. As a Security Analyst, you will play a crucial role in protecting our organization's digital assets and infrastructure from cyber threats. This role offers exciting opportunities for growth and development in the rapidly evolving field of cybersecurity, working...

  • Financial Analyst

    4 weeks ago

    , FL, United States Apex Systems Full time

    Job Title: Financial AnalystApex Systems is seeking a highly skilled Financial Analyst to join our team. As a Financial Analyst, you will play a critical role in supporting tax credit transferability and ensuring the efficient operation of tax software products.Key Responsibilities:Provide administration support for tax credit transferabilityAssist business...

Systems and Application Security Analyst

2 months ago

Storrs Mansfield CT United States University of Connecticut Full time
Search #: 498630
Work type: Full-time
Location: Storrs Campus
Categories: Information Technology

JOB SUMMARY

Under the direction of the Chief Information Security Officer, the Systems and Application Security Analyst (Information Security Analyst 2 or 3) is responsible for the development and operation of UConn's Application Security (AppSec) and Systems Assessment programs. The analyst develops policy recommendations, standards, risk assessments, scanning and monitoring mechanisms, and technical solutions to address secure code development, application security, and systems security at the university. This role will assess, develop, and maintain control standards designed to improve UConn's application security posture through periodic assessments and integration of industry best practices.

The Systems and Application Security Analyst is responsible for investigating a diverse range of technical issues across multiple platforms, working with a wide range of clients who have minimal to a broad range of technical skills. The Analyst works among a team of skilled technicians to address problems within a complex network environment and develops solutions that fit into that environment.

The Systems and Application Security Analyst is responsible for processes and procedures to ensure the continuous improvement of monitoring, detection, and mitigation capabilities specifically around software, systems, and databases. The Analyst plans, organizes and establishes priorities related to an assignment; works independently with minimal outside support; and handles sensitive information in a confidential manner.

DUTIES AND RESPONSIBILITIES FOR INFORMATION SECURITY ANALYST 2
  • Identify and document security controls during the requirements phase to integrate security within the software and systems development/deployment process.
  • Identify security implications and apply methodologies within centralized and decentralized environments across the University's computer systems.
  • Identify security issues in the operations and management of software and incorporate security measures that must be taken over the lifecycle of systems/software, including proactively identifying security considerations of decommissioning end of life systems and software.
  • Apply coding and testing standards and employ tools including static-analysis code scanning (SAST) and dynamic analysis security testing (DAST) to information systems and advise on improvements/issues regarding application vulnerabilities.
  • Translate security requirements into application design elements including documenting the elements of the software attack surfaces, conducting threat modeling, and defining specific security criteria.
  • Consult with peers across the institution about software system design, maintenance, and risk assessments.
  • Plan, implement, upgrade, and monitor security measures for the protection of data and information systems ensuring appropriate security controls are in place.
  • Develop secure software testing and validation procedures.
  • Perform penetration testing as required for new or updated applications and systems.
  • Identify security gaps, perform risk assessments, and recommend solutions to ensure best practices and security measures are being met.
  • Monitor security incident and event management (SIEM) and logging environments for security events and alerts for potential (or active) threats, intrusions, and/or compromises.
  • Document event analysis and author comprehensive reports of incident investigations.
  • Perform risk analysis (threat, vulnerability, and probability of occurrence) related to internal and vendor provided solutions. Perform vendor risk assessments and system security assessments.
  • Develops security metrics to proactively monitor cyber threats and provide trend data.
  • Assist with triage of service requests from customers and internal teams.
  • Integrate data for use between various applications.
  • Participate in and/or lead incident response activities, as required, for cyber security incidents.
  • Promote security awareness to improve and ensure system security.
  • Other related duties as assigned.
ADDITIONAL DUTIES AND RESPONSIBILITIES FOR INFORMATION SECURITY ANALYST 3 ONLY
  • Serves as domain and subject matter expert in one or more information security domains.
  • Design, implement, and maintain new information security solutions.
  • Lead major projects / initiatives related to information security and/or cybersecurity.
  • Integrate data for use between various applications and systems.
  • Identify enterprise level security gaps, perform risk assessments, and recommend solutions to ensure best practices and security measures are being met across and between enterprise level systems.
  • Create custom code, api/rest integrations, or other maintainable integrations to facilitate data gathering / sharing across applications and platforms.
  • Ability to operate autonomously and with limited supervision.
MINIMUM QUALIFICATIONS FOR INFORMATION SECURITY ANALYST 2 AND 3

Note: Applicants must meet all minimum requirements of a specific level to be considered for the position.
  • Must be a US Citizen.
  • Associates degree and four (4) years of related experience, OR Bachelor's degree and two (2) years of related experience, OR Six (6) years of related experience.
  • One (1) to three (3) years of experience working in an information security role or supporting an information security program.
  • Experience overseeing or materially contributing to projects designed to improve institutional security maturity, adherence to security policies, and/or regulatory compliance.
  • Significant experience administering an information security tool / platform, interpreting the systems output, and assisting others to leverage the capabilities of that platform.
  • Experience using a SAST, DAST and/or IAST application vulnerability platform (Invicti Netsparker, Acunetix, Burp Suite Enterprise, HCL AppScan, or similar).
  • Experience with web server configuration, SSL/TLS, certificate management and web application stack dependencies. Ability to troubleshoot and identify security related misconfigurations.
  • Experience developing and debugging code in at least one programming language. Knowledge and experience with secure coding practices.
  • Knowledge of current security regulatory requirements (HIPAA, CMMC 2.0, NIST 800-171, PCI-DSS, or similar).
  • Experience applying knowledge of application security risks (OWASP Top 10, MITRE, or similar).
  • Experience and competency in threat management and protection protocols.
  • Experience using common enterprise security tools and controls (e.g., Firewalls, IPS/IDS/NDR, Network Segmentation, Vulnerability Scanners, EDR, SIEM/SIM, IAM, MFA, and/or similar).
  • Experience weighing business needs against security concerns and making actionable recommendations.
  • Excellent communication skills and attention to detail.
  • Ability to operate under pressure and manage multiple priorities/deadlines.
ADDITIONAL MINIMUM QUALIFICATIONS FOR INFORMATION SECURITY ANALYST 3 ONLY
  • Associate's degree and six (6) years of related experience, OR Bachelor's degree and four (4) years of related experience, OR Eight (8) years of related experience.
  • More than (3) years of experience working in an information security role actively supporting secure software development.
  • Experience developing and debugging code in more than one programming language. Knowledge and experience with secure coding practices.
  • Experience leading complex projects involving multiple information security domains.
  • Senior level practical and technical information security experience.
PREFERRED QUALIFICATIONS FOR INFORMATION SECURITY ANALYST 2 AND 3
  • Relevant information security certification(s) in one or more applicable information security domains (CSSLP, GPEN, GWAPT, or similar).
  • Experience developing software in an enterprise environment.
  • Experience developing or implementing a secure software development lifecycle (SSDLC).
  • Experience developing and operationalizing an application security program in a complex enterprise environment.
  • Experience administering a SAST, DAST and/or IAST application vulnerability platform at an enterprise level (Invicti Netsparker, Acunetix, Burp Suite Enterprise, HCL AppScan, or similar).
  • Experience conducting penetration tests in the application security domain.
  • Experience in higher education.
  • Enterprise scale project management experience.
ADDITIONAL PREFERRED QUALIFICATIONS FOR INFORMATION SECURITY ANALYST 3 ONLY
  • Master's degree in information security, computer science, information management or a related discipline.
  • Experience leading software development in an enterprise environment.
  • CISSP certification or equivalent.
APPOINTMENT TERMS

This is a full-time, permanent position with opportunity for hybrid schedule. The University offers a competitive salary, and outstanding benefits, including employee and dependent tuition waivers at UConn, and a highly desirable work environment. For additional information regarding benefits visit: . Other rights, terms . click apply for full job details