[Hiring] Cyber-Security Analyst @University of Texas Medical Branch (UTMB)

Role Description

The Security Analyst on the Governance, Risk, and Compliance (GRC) team plays a critical role in safeguarding sensitive information resources and data, ensuring organizational compliance with industry regulations. This position supports the development, implementation, and monitoring of security policies, risk management processes, and compliance frameworks such as HIPAA, TAC 202, UTS 165, and NIST cybersecurity standards.

• Under direct supervision, supports the organization’s information resources, security environments, and applications to ensure they remain adequately protected and aligned with the NIST Cybersecurity Framework (CSF).
• Assists in activities across the CSF functions: Identify, Protect, Detect, Respond, and Recover.
• Supports asset classification, implements security controls, monitors for anomalous activity, and participates in 24/7 incident response processes.
• Completes CompTIA CySA+ certification training and successfully passes the exam within 90 days of hire.
• Works assigned shifts supporting 24x7x365 Tier 1 SOC operations.
• Performs alert triage across on-premises and cloud security technologies, including SIEM, IDS, antivirus, cloud services, Windows servers, network infrastructure, DLP, UBA, and user-submitted security reports.
• Applies basic security controls to contain malicious activity and prevent unauthorized disclosure of sensitive information.
• Escalates alerts to Tier 2 based on severity and priority, supporting follow-on incident response activities.
• Contributes to SOC workflow improvements by identifying false positives and recommending process enhancements.
• Assists with incident response through resolution and helps develop after-action reports.
• Participates in ongoing skill development to strengthen investigation and response capabilities.
• Adheres to internal controls, reporting structures, and all applicable standards, processes, and procedures.
• Performs other related duties as assigned by management.

Qualifications

• Bachelor's degree and one (1) year of IT or security experience. An equivalent combination of education and experience relevant to the role may be considered.
• 3 years of cybersecurity experience (preferred).
• Proficiency in Python, Rust, C, C+, Java, and/or PowerShell (preferred).
• Academic and/or working experience with TCP/IP networking, and networking services such as DNS, SMTP, DHCP, etc. (preferred).
• Familiarity with Windows, MacOS, Linux-variant operating systems, such as the file system structure, system services, and typical behavior of endpoints and servers (preferred).
• Experience with cloud-based services such as Microsoft Office 365 and Azure productivity tools (preferred).

Requirements

• Any qualifications to be considered as equivalents in lieu of stated minimums require the prior approval of the Chief Human Resources Officer or designee.
• Must be routinely reviewed to determine whether they are able to maintain the security or integrity of critical infrastructure.

Benefits

• Actual salary commensurate with experience.
• Remote Local position, Rotating Shifts, Including Nights and Weekends.

Equal Employment Opportunity

UTMB Health strives to provide equal opportunity employment without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, genetic information, disability, veteran status, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. As a Federal Contractor, UTMB Health takes affirmative action to hire and advance protected veterans and individuals with disabilities.