The Information Security Operations Analyst supports security operations for the Ohio Technology Consortium (OH-TECH) and will work as part of a team responsible for operational cybersecurity across a consortium of technology organizations supporting research, education, and public services in Ohio.

The Information Security Operations Analyst position plays a pivotal role in driving vulnerability prioritization, secure configuration compliance, and organizational risk reduction. It is essential to the ongoing protection and integrity of the organizations digital infrastructure.

Responsibilities of the position include:

• Conduct regular scans of endpoints, servers, and network devices to identify weaknesses in systems, networks, and applications. Analyze the results and track remediation efforts to ensure vulnerabilities are resolved or appropriately mitigated by collaborating with IT teams to develop and implement mitigation strategies, including patch management, configuration changes, and system hardening.

• Utilize Splunk for proactive threat hunting, analyzing security logs and system data to identify anomalies, detect potential threats, and support incident response. Leverage advanced search queries, dashboards, and correlation rules to uncover indicators of compromise and enhance situational awareness across the environment.

• Implementation and testing of incident response plans, including engaging tabletop exercises, are supported to ensure preparedness and effective handling of security incidents.

The candidate should possess an analytical mindset and an inquisitive nature. Strong troubleshooting and problem-solving abilities are essential, along with the capacity to work under pressure and meet multiple deadlines while being patient with non-technical end users. This role involves working in a fast-paced, ever-changing environment with talented teams.

The Information Security Operations Analyst must quickly grasp new concepts, collaborate effectively, and adapt to working with diverse teams. They should follow established processes and create defensible procedures when none exist. Strong project management, organizational, and communication skills are essential to work with cross-functional teams and balance competing priorities.

The Security Operations Analyst is often required to be accessible via phone when not in the office and have internet access to perform certain work duties from home; after hours and weekend work may be required. The Analyst needs to bring a combination of technical expertise, critical thinking, and a strong commitment to the organizations mission. This role requires excellent communication and collaboration skills to convey technical information to diverse audiences. This position reports to the Security Program Director.

OH-TECH, the technology and information division of the Ohio Department of Higher Education (ODHE), serves as the central organization for Ohios statewide technology infrastructure entities: OARnet, the Ohio Supercomputer Center (OSC), and OhioLINK (Ohio Library and Information Network). OH-TECH delivers advanced technological solutions to Ohios higher education institutions, catalyzing innovation in the modern knowledge economy. The organization prides itself on being a welcoming and supportive work environment.

Because The Ohio State University serves as OH-TECHs fiscal and legal agent, OH-TECH staff enjoy the same benefits as other Ohio State employees, including participation in the Ohio Public Employees Retirement System (OPERS), the Ohio State Health Plan, employee wellness and work-life balance programs, educational benefits, discount programs and more.

Required Education/Experience:

• Bachelor's degree or equivalent combination of education and experience in information technology, information security, cybersecurity, digital forensics, or other relevant fields.

• 2 years of demonstrated experience with vulnerability scanning tools (Qualys, Tenable/Nessus, Rapid7).

• Knowledge of computer security concepts, procedures, and best practices for security and security operations including VMS, incident response, threat management, and log analysis.

• Excellent problem-solving, analytical, and troubleshooting skills.

• Strong understanding of operating systems, networks, secure application development concepts.

• Demonstrated working knowledge of NIST Special Publication 800 series (e.g., NIST 800-53, NIST 800-63, and NIST 800-171), and other regulatory and legislative authorities including but not limited to HIPAA, FERPA, FISMA.

Desired Education/Experience:

• Experience with Spirion/Identify Finder, Splunk, CIS Benchmarks, computer imaging, and data recovery processes; Linux and Windows systems administration; authentication (including multifactor) and encryption systems.

• Experience creating and managing Jira boards, workflows, and dashboards.

• Familiarity with Confluence for maintaining project documentation, knowledge bases, and team collaboration spaces.

• Service Now ITSM.

• Security+, CySA+, CISSP, CRISC, CISM , CISA, or other relevant security certifications.

Function: Information Technology

Subfunction: Information Security and Risk Management

Career Band: Individual Contributor Specialized

Career Level: S2 Experienced

OSU and OH-TECH will not sponsor applicants for work visas for this position.

Logo

About The Ohio State University

Join Ohio State’s community.Together, we’ll create meaningful impact at a scale few others can match.

Connections working at The Ohio State University