A cover letter is required for consideration for this position and should be attached as the first page of your resume. The cover letter should address your specific interest in the position and outline skills and experience that directly relate to this position.

Opportunity

We are a team that focuses on how we can together help protect Michigan Medicine, patients, researchers, providers, students, data, systems, and identities from cybersecurity threats. We champion our staff, their backgrounds, interests, and abilities with opportunities for training career growth in an increasing critical field. In addition to the benefits of working at one of the best learning and research institutions in the world, we also promote the development of our talented staff's cybersecurity career within an equitable balance of work and home priorities. This position is being made available with the ability for you to negotiate alternative work schedules and remote/on-site options to suit your work-life balance. Non-Michigan residents should inquire about potential employment while working remotely in a state other than Michigan.   

Apply to be part of a strong team that partners with our institution, community, and each other.  
 

Our Division's Mission

We serve as a trusted partner and provide a best-in-class security program to uphold and protect the mission of Michigan Medicine.

Our Division's Vision

We believe in cultivating a shared responsibility of security to enhance how we provide care, deliver education and create innovation to protect the quality of healthcare.

Our Division's Principles

• Prioritize your self-care, family-care, team-care, then the work. 
• Implement balanced assurance solutions. 
• Strengthen our department's capabilities. 
• Develop an assurance-minded workforce
• Focus on practical information assurance. 

The University of Michigan's Information Assurance team at Michigan Medicine (IA:MM) is seeking a candidate to fulfill the role of Security Analyst Associate. This role will join the Cybersecurity Operations Team within IA:MM. The team is responsible for security incident response services for servers, end user computers, and mobile devices within Michigan Medicine related to areas such as malware infections and network intrusions. Our team provides security consultation on a variety of subject areas and partners with the appropriate data stewards to safeguard sensitive data.

A successful candidate will be creative, adaptable, data driven, and proactive as a part of our team helping to protect Michigan Medicine.

This position will also work with our third-party Managed Security Service Provider at their remote site with rotation to the onsite team.

• Carry out activities (e.g. containment, eradication, restoration) in response to reported information security incidents and in accordance with established incident response procedures. Participate in lessons learned activities.
• Detect and prevent intrusions using IDS/IPS, SIEM, and other tools.
• Expose and/or assess the impact of reported vulnerabilities; implement mitigation strategies based on severity.
• Monitor and provide support Michigan Medicine around security policy and security standards.
• Identify sensitive data and provide input for proper storage and protection; assist with remediation efforts as required.
• Provide information security consulting for various Michigan Medicine groups and units requesting information assurance assistance on a project or long-term consulting basis.
• Participate as an information assurance subject matter expert in the analysis and design of new enterprise systems and services.
• Collaborate with the Compliance Office to determine applicability and scope of various regulations; assist in interpreting and/or implementing technical requirements to ensure compliance.
• Participate in the design, implementation, and continuous improvement of security service offerings.
• Build good relationships with teams, and stakeholders at all levels (e.g. management, colleagues, and employees) using strong competencies to build trust, change perceptions, effectively communicate, influence, and adapt.
• Continually improve security service solutions and offerings by keeping up to date on security conferences, seminars, reading, research, and testing.

This role, as part of the academic medical center's assurance program, is both part of UM Information Assurance and the Michigan Medicine Chief Information Officer's program. The goal is to represent and balance the needs of the health system and medical school in the framework and processes of the greater UM Information Assurance effort.

Essential to the success of this position will be the ability to successfully navigate and work collaboratively with the IT organizations, assurance partners, technical security staff, and Michigan Medicine management and external organizations' roles and priorities. We work in a highly collaborative environment with an extraordinary scope of responsibilities and priorities. A successful candidate will be required to operate with minimal supervision, deliver effective and predictable results, and solve problems creatively, yet practically. A candidate should be comfortable and confident in meeting deadlines and executing timely performance of operations and project work within shared systems of work. This organization changes to suit the needs of the institution. Candidates should understand the dynamic nature of information services within an academic health center, information technology operations, and medical education.

• Associate degree in Computer Science, Computer Engineering, or Information Assurance or an equivalent combination of education and experience.
• 2 years of information technology experience.

• Understanding of fundamental Operating System and TCP/IP Networking concepts.
• Understanding of fundamental information security concepts including: Authentication, Authorization, Audit, Encryption, Firewalls.
• Understanding of fundamental security related practices including: Risk Management, Incident Response, Vulnerability Management, Penetration Testing, IDS/IPS, System and Application Hardening, Identity and Access Management, Security Information and Event Management, Firewall management, IDS/IPS.
• Exposure to, experience with, responsibility for, and understanding of at least two of the security related technologies or practices listed in the previous two bullets.
• Outstanding verbal and written communication skills.
• Demonstrated success completing tasks within established deadlines.
• Exposure to, experience with, responsibility for, and deep understanding of at least four of the security related concepts or practices listed above.
• Experience performing information security risk assessments using an interview-based approach.
• Experience assessing the security architecture of proposed IT solutions.
• Understanding of security controls for Windows, Macintosh, Linux, and Networking platforms.
• Detailed understanding of the assurance implications associated with cloud-based solutions.
• Solid understanding of mobile device security issues, strategies, and controls.
• Possess Splunk Certified Power User or higher for the Intermediate and Splunk Certified User or higher.
• Experience securing virtualized environments.
• System administration background with Microsoft, Macintosh and *nix environments.
• Detailed understanding of the assurance implications of various regulatory and compliance requirements including PCI and HIPAA.
• Demonstrated success working across organizational boundaries.

Positions that are eligible for hybrid or mobile/remote work mode are at the discretion of the hiring department. Work agreements are reviewed annually at a minimum and are subject to change at any time, and for any reason, throughout the course of employment. Learn more about the work modes.

Benefits

We offer a benefits package that includes comprehensive training and career development opportunities, generous retirement savings plans, ample paid time off, and a wealth of family care support: https://careers.umich.edu/benefits.

Mission Statement

The mission of UM Information Assurance is to direct university-wide IT security, IT policy, compliance, privacy, and enterprise continuity efforts and provide operation security services that enable the university to excel in its research, teaching, and patient care mission.

Michigan Medicine conducts background screening and pre-employment drug testing on job candidates upon acceptance of a contingent job offer and may use a third party administrator to conduct background screenings.  Background screenings are performed in compliance with the Fair Credit Report Act. Pre-employment drug testing applies to all selected candidates, including new or additional faculty and staff appointments, as well as transfers from other U-M campuses.

Job openings are posted for a minimum of seven calendar days.  The review and selection process may begin as early as the eighth day after posting. This opening may be removed from posting boards and filled anytime after the minimum posting period has ended.

The University of Michigan is an equal employment opportunity employer.