Director, CES Information Security Ops Ctr
Apply NowCompany: Brigham Young University
Location: Provo, UT 84604
Description:
Why Work at BYU
As the flagship higher education institution of The Church of Jesus Christ of Latter-day Saints, Brigham Young University (BYU) strives to be among the exceptional universities in the world. At BYU, we are devoted to our faith and to our students. We take an active role in the University's Mission: "To assist individuals in their quest for perfection and eternal life."
Our unique mission, deeply rooted in the Gospel of Jesus Christ, provides countless ways to serve and make an impact. This, along with our remarkable culture of belonging, weekly devotionals, and endless opportunities for learning and growth-all situated within a beautiful and historic campus-make it hard to imagine a more inspiring place to work.
Job Description
Director, CES Information Security Operations Center
The Security Operations Director employs experience as a security professional and knowledge of industry best practices and university policies to lead the Church Education System (CES) Information Security Operations Center (SOC) and directs its full-time and student staff in delivering information security services to CES institutions including BYU, BYU-Hawaii, BYU-Idaho, and Ensign College. Those security services include security event monitoring and development, incident investigation and response, penetration testing, vulnerability management, threat hunting and security risk management. The Security Operations Director serves as the major security incident response team leader. The individual mentors and teaches both full-time and student employees. The individual is responsible for maintaining a Christ-centered professional environment that is rewarding to employees and encourages retention.
What you'll do in this position:
1. Oversee the SOC
SOC Pillars & employees' primary roles:
Security Event Monitoring & Development:
Incident investigation and response:
Penetration testing:
Vulnerability management:
Threat hunting:
Security risk management:
2. Incident Monitoring, Response, and Forensics
3. Security Awareness and Training
4. Project Assignments
5. Professional Development
What Qualifies You for the Role
Required:
Preferred:
What we offer in return:
In addition to our competitive pay structure, this position comes with fantastic benefits, including:
Pay Level: 56T
Compensation Range
Actual compensation based on education and experience
$115,036.00 - $149,397.00
Required Documents:
All Staff positions require a resume.
Refer to the Job Posting for any additional required documents.
Members of the Church of Jesus Christ of Latter-day Saints must hold and be worthy to hold a current temple recommend.
Brigham Young University is an equal opportunity employer, including disability and protected veteran status.
Brigham Young University (BYU) is widely recognized not just for its world-class education, but for its deep commitment to inspired religious values. Gathered together in a Christ-centered atmosphere, BYU employees are a vital part of a community of belonging, where we value the experiences, perspectives, and talents of each individual. If you share in our devotion to faith and to excellence, we have a place for you here at BYU!
As the flagship higher education institution of The Church of Jesus Christ of Latter-day Saints, Brigham Young University (BYU) strives to be among the exceptional universities in the world. At BYU, we are devoted to our faith and to our students. We take an active role in the University's Mission: "To assist individuals in their quest for perfection and eternal life."
Our unique mission, deeply rooted in the Gospel of Jesus Christ, provides countless ways to serve and make an impact. This, along with our remarkable culture of belonging, weekly devotionals, and endless opportunities for learning and growth-all situated within a beautiful and historic campus-make it hard to imagine a more inspiring place to work.
Job Description
Director, CES Information Security Operations Center
The Security Operations Director employs experience as a security professional and knowledge of industry best practices and university policies to lead the Church Education System (CES) Information Security Operations Center (SOC) and directs its full-time and student staff in delivering information security services to CES institutions including BYU, BYU-Hawaii, BYU-Idaho, and Ensign College. Those security services include security event monitoring and development, incident investigation and response, penetration testing, vulnerability management, threat hunting and security risk management. The Security Operations Director serves as the major security incident response team leader. The individual mentors and teaches both full-time and student employees. The individual is responsible for maintaining a Christ-centered professional environment that is rewarding to employees and encourages retention.
What you'll do in this position:
1. Oversee the SOC
- Personnel leadership: Provide mentorship, direction and guidance to full-time employees who lead the SOC service pillars (detailed below), and mentor student analysts assigned to the various pillars
SOC Pillars & employees' primary roles:
Security Event Monitoring & Development:
- Manage and monitor the CES network activity through dashboards and alerts to identify anomalous behavior that may be malicious
- Validate current alerts, creating new alerts and sunsetting old ones as needed
Incident investigation and response:
- Investigate potential security incidents, escalating major incidents as appropriate
- Respond to and remediate incidents
- Engage with 3rd party incident response service providers as needed
- Investigate and mitigate phishing incidents
Penetration testing:
- Simulate cyber attack techniques to identify and validate security weaknesses in CES digital systems
- Coordinate pen testing activities with system owners and other stakeholders
- Coordinate external penetration tests as needed
Vulnerability management:
- Provide real-time vulnerability to system owners and managers
- Manage vulnerability dashboards consumed by customers
- Provide monthly vulnerability reporting metrics to leadership
Threat hunting:
- Validate digital traffic to and from university systems
- Conduct deep analysis to identify threat actors' tactics, techniques & procedures
- Analyze network, cloud and endpoint logs to detect Indicators of Compromise
Security risk management:
- Assess, identify and prioritize IT risks to minimize, mitigate and monitor the probability and impact of security incidents
- Assist system owners and leadership to reduce IT risks while balancing other business risks
- Work with CES leadership to prioritize, evaluate and implement risk-reducing control measures
2. Incident Monitoring, Response, and Forensics
- Direct all security incident monitoring, response, and forensics for all CES
- Act as the ultimate single point of contact for all security operations relations with university officials, including the CES CISO, campus CIOs, and VPs/executives of all CES higher education institutions
- Take immediate and active responsibility for, and respond to, all major security threat incidents for all CES, with authority to make operational shutdown or extreme-action decisions in cases of severe threat or failure, in coordination with CES CISO and CES CIO as appropriate
- Take immediate responsibility to resolve any severe or extreme security issues or failures
- Take responsibility for the analysis of any and all security failures/compromises/breaches for cause, impact, and future prevention
- Oversee development of incident response procedures and in-depth forensic triage of security incidents to determine severity and appropriate response
- Create, test, and implement processes to ensure rapid identification and response to security incidents and effective forensics
- Oversee all Security Operation Center incident management, working with security analysts, information stewards, and system engineers to design and build solutions for effective security monitoring for all of CES
- Facilitate the creation of operational metrics and apply those metrics in performance management of incident management and forensics. Report the results of metrics and analysis to the CISO or CES management as requested
- Manage incident workflow coordination
3. Security Awareness and Training
- Provide recommendations for training to the authors of security awareness programs of the University and CES
- Train (or assign others to train) junior analysts
- Facilitate full-time employee internal and external training opportunities as resources allow
4. Project Assignments
- Ensure IT security management is involved in relevant IT projects
- Approve recommendations for defining new standards, updating existing security standards, and security reviews
- Participate in other projects as assigned by CISO
5. Professional Development
- Attend seminars and conferences; read professional journals/blogs, participate in relevant professional organizations. Provide expert presentations for such organizations. Maintain currency in cyber security knowledge and expand expertise by participating in training.
What Qualifies You for the Role
Required:
- A firm commitment to the mission of BYU
- Bachelor's degree plus 4 years' experience, or an equivalent combination of education and experience
Preferred:
- Bachelor 's degree plus 6 years' security experience as listed above, plus appropriate certifications or experience and education.
- Advanced degrees or additional expertise certifications preferred.
What we offer in return:
In addition to our competitive pay structure, this position comes with fantastic benefits, including:
- 401k. BYU automatically contributes 8% at no cost to you. Additionally, if you contribute 5%, BYU adds an additional 4% (Rehires may qualify for different retirement plans)
- Excellent work-life balance: 13 paid holidays + 22 days paid vacation + 12 sick days, accrued annually
- Employee assistance program, available to the employee and all members of their household
- Tuition benefits for employees and eligible family members
- Access to athletic facilities
- Excellent medical/dental benefits
- Short/long-term disability benefits
- Paid parental and maternity leave
- Wellness Program
- Free on-campus parking
- Free UTA passes for employees, spouses, and qualified dependents
- Discounts at the BYU Store and for many events at BYU
Pay Level: 56T
Compensation Range
Actual compensation based on education and experience
$115,036.00 - $149,397.00
Required Documents:
All Staff positions require a resume.
Refer to the Job Posting for any additional required documents.
Members of the Church of Jesus Christ of Latter-day Saints must hold and be worthy to hold a current temple recommend.
Brigham Young University is an equal opportunity employer, including disability and protected veteran status.
Brigham Young University (BYU) is widely recognized not just for its world-class education, but for its deep commitment to inspired religious values. Gathered together in a Christ-centered atmosphere, BYU employees are a vital part of a community of belonging, where we value the experiences, perspectives, and talents of each individual. If you share in our devotion to faith and to excellence, we have a place for you here at BYU!