Are you passionate about cybersecurity and eager to make a tangible impact in protecting vital networks? Join Merit Network, Inc. as a Merit SOC Analyst and play a critical role in safeguarding our member institutions. 

Merit Network, Inc. is a nonprofit, member-owned organization providing high-performance networking and services to educational, government, and nonprofit communities. Our mission is to foster innovation and collaboration by providing secure, high-quality network services, and we are seeking a driven SOC Analyst to be part of this effort. 

As a Merit SOC analyst, you will be responsible for performing the operations of the Merit Security Operations Center (Merit SOC), a component of the Merit Support Center (MSC). Reporting to the Chief Information Security Officer, you will be analyzing and responding to directed incoming threats and alerts against our members, as well as staying informed on general cybersecurity news, information, and trends. You will work with various internal and external teams to analyze current and applicable security threats, assist with threat hunting and proactive cybersecurity functions, and document remediation plans of discovered weaknesses. Additionally, you will be responsible for recommending information security related tools for overall SOC operations and utilizing automation to streamline processes and improve response times to threats. 

To learn more about Merit Network, Inc., please visit: Merit - Connecting Organizations, Building Communities 

Virtual Office Hours

Have questions about the role or want to learn more before applying? Join our informal, open-forum Zoom sessions to connect with the hiring team! Drop in at any time during the hour and stay as long as you'd like - whether you have specific questions or just want to listen in. 

Friday, June 27th | 12:00 PM - 1:00 PM | Click Here to Join Friday's Zoom Meeting
 

Essential Functions for this position are followed by an (E). 

As a Merit SOC Analyst, this position's key responsibilities include, but are not limited to, the following:

Merit SOC Security Support (90%):

• Deliver exceptional customer service to Merit Members, external and internal customers, and Merit Partners, aiming to exceed their expectations through technical resolution and support (E);
• Review and analyze cybersecurity alerts generated by the Merit SOC system for accuracy and criticality (E);
• Understand network and application protocols with respect to analyzing accuracy and applicability of generated alerts (E);
• Perform appropriate notifications of members of security alerts given predetermined notification agreements (E);
• Perform documented isolation and containment actions for cyber threats when necessary according to pre-agreed on playbooks (E);
• Review public security alerts and bulletins and understand daily and overall cybersecurity landscape and threat trends (E);
• Recommend changes to SOC applications, processes, and data flows to increase productivity and accuracy and decrease time to notification;
• Manage documentation and documentation workflow for internal and customer facing security practices, projects, and initiatives;
• Under the leadership of Information Security team members, perform regular threat hunts of member environments to search for latent threats (E);
• Develop scripts to automate instances of system auditing, monitoring and alerting;
• Maintain subject matter expertise in cyber security products utilized by the Merit SOC (E);
• Continually maintain professional relationships with external stakeholders and members as a trusted member of the information security community (E);
• Communicate effectively with Merit SOC leadership, escalating issues as needed and providing required information and context during escalations (E);
• Assist in the operation and execution of projects and initiatives as necessary;
• Maintain understanding of current member cyber security needs and capabilities in relation to delivering effective SOC services;
• Attend off-site meetings, conferences, and training sessions as required;
• Assist with the acquisition and deployment of information security tools;
• Provide clear, concise, and comprehensive updates for service tickets and all communications, tailoring messages for audiences with varying levels of technical understanding (E);
• Utilize trouble tickets for response and resolution (E).

Merit MSC and Cybersecurity Support (10%):

• Work with the Chief Information Security Officer in conducting internal audits, risk assessments, and cyber security projects on Merit and member IT systems and processes (E);
• Assist with developing and establishing policies, procedures, and standards to maintain an appropriate cyber security risk level on Merit's internal LAN, data center environments, and service provider WAN environment;
• Assist with providing member service with supported applications including hosted DNS and the Routing Assets Database (RADb).

Other Duties
Please note this job description is not designated to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job.  Duties, responsibilities and activities may change at any time with or without notice.

Supervisory Responsibility
This position has no supervisory responsibilities.  

Work Environment
Requires working in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, cloud-based systems, and AV/teleconferencing software & equipment.

Physical Demands
The physical demands described here are representative of those that must be met by an employee (with or without accommodations) to successfully perform the essential functions of this job.
You must frequently work at a computer station, answering telephone calls, emails, and/or other forms of customer/client communication. You may on occasion be required to move items throughout the office or building.

 

• Proficient in engaging with customers in a positive and supportive manner, regardless of the situation.
• Associate's degree in Information Technology, IT Security, Information Assurance or related field or equivalent combination of education, certifications, and relevant experience.
• Knowledge and experience with cybersecurity best practices, particularly in threat analysis, response, and mitigation.
• Strong analytical, detail-oriented, and problem solving skills applicable to a cybersecurity role.
• Ability to work independently, prioritize multiple projects, and achieve objectives by required deadlines while maintaining high-quality outcomes.
• Hold or be willing to obtain industry leading certifications such as Security+, GIAC, or similar certifications, to ensure up-to-date competencies in cybersecurity practices.
   

• Previous experience working within an information security team.
• Familiarity with applicable laws and regulatory requirements such as HIPAA, HITECH, PCI, FERPA, ITAR, which have implications for cybersecurity operations.
• Understanding of cybersecurity frameworks such as NIST, CIS or ISO cybersecurity frameworks, which help standardize security practices.
• Experience with vulnerability and configuration management tools which are essential in maintaining secure systems.
• Familiarity with scripting and programming languages such as Bash, Perl, PowerShell, or Python to aid in security automation tasks.
• Familiarity with Docker containerization to support deploying security tools.
• Experience working with higher education, K-12 educational institutions, libraries, government, healthcare, research institutions and other public sector non-profit organizations.
   

This is a full-time, hybrid position. Though the typical work schedule is 8am - 5pm, Monday through Friday for most staff, your work schedule will be determined with your supervisor and may change if necessary. This position is designed to create a 24-hour, 7-day a week support structure and as such, scheduled work time may consist of evenings, weekends, and holidays.  Work schedules are designed for a 40-hour week.

During your 6-month probationary period, you will be required to work on-site for at least 3 days per week at Merit's office location:

880 Technology Dr., Suite B 
Ann Arbor, MI 48108

Following, working on-site will be required for a minimum of 2 days per week determined in partnership with your supervisor. In addition, ad-hoc on-site meetings and events may be needed with adequate notice provided. 
 

Positions that are eligible for hybrid or mobile/remote work mode are at the discretion of the hiring department. Work agreements are reviewed annually at a minimum and are subject to change at any time, and for any reason, throughout the course of employment. Learn more about the work modes.

There may be some occasional work required outside of the established schedule, which may include evenings, weekends and holidays.  

Travel
Occasional travel within Southeast Michigan will be required to attend off-site meetings, conferences, and training sessions.
 

The University of Michigan is an equal employment opportunity employer.