Position overview:

SLAC National Accelerator Laboratory’s Computing Division is seeking an IT Cyber Security Analyst to join our diverse cyber security team reporting to the CISO. Members of this team are responsible for protecting SLAC networks from cyber threats by actively monitoring for security anomalies performing security assessments and balancing security with business rules/needs.

We are seeking an IT Security Analyst to join our diverse cyber security team. Members of this team are responsible for protecting SLAC networks from cyber threats by actively monitoring for security anomalies, performing vulnerability assessments, and balancing security with business rules/needs. You’ll need experience and understanding of the cyber security environment, common network and host-based attacks, attack methods, and network defense architecture; in addition, have previous experience working in a security operations environment.

As an IT Security Analyst, you will apply a variety of technical skills which include security event log analysis, endpoint forensic analysis, and vulnerability analysis. You will be accountable for conducting information risk assessments and audits to ensure that information systems and data are adequately protected and meet regulatory requirements. You will help lead the cyber operations incident response team and all security architecture technologies. In order to be effective, you will need extensive experience and comprehensive knowledge in incident response, reviewing vulnerability results from vulnerability scanners (Nessus/Qualys), intrusion detection systems (Zeek), firewalls (Cisco/Palo Alto Networks), SEIM (Splunk or other) or other information security products including cloud application security experience.

SLAC is a U.S. Department of Energy (DOE) laboratory operated by Stanford University and based in Menlo Park; CA. Due to COVID-19-related curtailment of on-site activities, the job duties for this position may be required to be performed from home until full site access is restored.

Your specific responsibilities include:

• Under general direction, develop and implement enterprise information security architecture and solutions. Serve as an IT security subject matter expert.
• Lead and develop plans to safeguard computer configurations against accidental or unauthorized modification, destruction or disclosure and to meet emergency data processing needs.
• Lead incident response efforts including investigations, create/update processes and conduct yearly exercises.
• Participate in and lead internal audits, in cooperation with the Information Security Office; develop appropriate criteria needed to assess the level of new/existing applications and/or technology infrastructure elements for compliance with enterprise security standards.
• Perform security risk assessment and mitigation. Inspect system and network data for computer and network usage policy compliance, system integrity and incident response.
• Develop and deliver educational information to system administrators and users. Lead the development and documentation of information security standards, best practices and guidelines.
• Assist in development and implementation of policies and procedures related to IT security and operational support systems in collaboration with the Information Security Office.
• Develop and implement ongoing test plans to ensure compliance with standards and processes (selecting sample, verifying documentation and other requirements).
• Research, design and advocate new technologies, architectures and security products.
• Mentor and train team members and peers on cyber security solutions and actively participate on system and application improvement project teams.
• Maintain a state-of-the-art awareness of information security issues, incidents, problems, utilities, legal requirements and solutions for all major information system platforms in use at Stanford.
• Other duties may also be assigned.

To be successful in this position you will bring:

• Bachelor's degree plus five years relevant experience, or a combination of education and relevant experience.
• In-depth knowledge and understanding of IT industry trends and emerging technologies and an ability to relate them to Stanford and its objectives.
• Advanced knowledge and understanding of networking protocols, principles and devices.
• In-depth architecture and configuration knowledge.
• Extensive experience with debugging, troubleshooting, forensics, and security utilities.
• In-depth knowledge of authentication protocols, encryption and other fundamental security technologies.
• Strong knowledge and understanding of industry standard information security practices.
• Excellent communication skills and the ability to explain complex technical ideas to non-technical audience and work with individuals at all levels.
• Demonstrated experience in leading/mentoring team members and providing technical guidance to customers and stakeholders.
• High level of integrity and excellent judgment concerning proprietary and privacy issues.

Certificates and Licenses: None

SLAC employee competencies:

• Effective Decisions: Uses job knowledge and solid judgment to make quality decisions in a timely manner.
• Self-Development: Pursues a variety of venues and opportunities to continue learning and developing.
• Dependability: Can be counted on to deliver results with a sense of personal responsibility for expected outcomes.
• Initiative: Pursues work and interactions proactively with optimism, positive energy, and motivation to move things forward.
• Adaptability: Flexes as needed when change occurs, maintains an open outlook while adjusting and accommodating changes.
• Communication: Ensures effective information flow to various audiences and creates and delivers clear, appropriate written, spoken, presented messages
• Relationships: Builds relationships to foster trust, collaboration, and a positive climate to achieve.

Physical requirements and Working conditions:

• Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of his or her job.

Work standards:

• Interpersonal Skills: Demonstrates the ability to work well with Stanford colleagues and clients and with external organizations.
• Promote Culture of Safety: Demonstrates commitment to personal responsibility and value for environment, safety and security; communicates related concerns; uses and promotes safe behaviors based on training and lessons learned. Meets the applicable roles and responsibilities as described in the ESH Manual, Chapter 1—General Policy and Responsibilities:
• Subject to and expected to comply with all applicable University policies and procedures, including but not limited to the personnel policies and other policies found in the University's Administrative Guide,
• As an organization that receives federal funding, SLAC and Stanford University have a COVID-19 vaccination requirement that will apply to all university employees, including those working remotely in the United States and applicable subcontractors.

-

• Classification Title: IT Security Analyst 3
• Duration: Regular continuing
• Grade: K Job code: 4793

This role is open to candidates anywhere in the United States. SLAC National Accelerator Laboratory/Stanford University has five Regional Pay Structures. The compensation for this position will be based on the location of the successful candidate. The expected pay range for this position is $122,000 to $153,000 per annum.

SLAC National Accelerator Laboratory/Stanford University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as (but not limited to) the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity, geographic location, and external market pay for comparable jobs.