Information Security Operations Analyst

Screen reader users may encounter difficulty with this site. For assistance with applying, please contact hr-accessibleapplication@osu.edu . If you have questions while submitting an application, please review these frequently asked questions .

Current Employees and Students:

If you are currently employed or enrolled as a student at The Ohio State University, please l og in to Workday to use the internal application process.

Welcome to The Ohio State University's career site. We invite you to apply to positions of interest. In order to ensure your application is complete, you must complete the following:

• Ensure you have all necessary documents available when starting the application process. You can review the additional job description section on postings for documents that may be required.

• Prior to submitting your application, please review and update (if necessary) the information in your candidate profile as it will transfer to your application.

The Information Security Operations Analyst supports security operations for the Ohio Technology Consortium (OH-TECH) and will work as part of a team responsible for operational cybersecurity across a consortium of technology organizations supporting research, education, and public services in Ohio.

The Information Security Operations Analyst position plays a pivotal role in driving vulnerability prioritization, secure configuration compliance, and organizational risk reduction. It is essential to the ongoing protection and integrity of the organizations digital infrastructure.

Responsibilities of the position include:

• Conduct regular scans of endpoints, servers, and network devices to identify weaknesses in systems, networks, and applications. Analyze the results and track remediation efforts to ensure vulnerabilities are resolved or appropriately mitigated by collaborating with IT teams to develop and implement mitigation strategies, including patch management, configuration changes, and system hardening.

• Utilize Splunk for proactive threat hunting, analyzing security logs and system data to identify anomalies, detect potential threats, and support incident response. Leverage advanced search queries, dashboards, and correlation rules to uncover indicators of compromise and enhance situational awareness across the environment.

• Implementation and testing of incident response plans, including engaging tabletop exercises, are supported to ensure preparedness and effective handling of security incidents.

The candidate should possess an analytical mindset and an inquisitive nature. Strong troubleshooting and problem-solving abilities are essential, along with the capacity to work under pressure and meet multiple deadlines while being patient with non-technical end users. This role involves working in a fast-paced, ever-changing environment with talented teams.

The Information Security Operations Analyst must quickly grasp new concepts, collaborate effectively, and adapt to working with diverse teams. They should follow established processes and create defensible procedures when none exist. Strong project management, organizational, and communication skills are essential to work with cross-functional teams and balance competing priorities.

The Security Operations Analyst is often required to be accessible via phone when not in the office and have internet access to perform certain work duties from home; after hours and weekend work may be required. The Analyst needs to bring a combination of technical expertise, critical thinking, and a strong commitment to the organizations mission. This role requires excellent communication and collaboration skills to convey technical information to diverse audiences. This position reports to the Security Program Director.

OH-TECH , the technology and information division of the Ohio Department of Higher Education ( ODHE ), serves as the central organization for Ohios statewide technology infrastructure entities: OARnet, the Ohio Supercomputer Center (OSC ), and OhioLINK (Ohio Library and Information Network). OH-TECH delivers advanced technological solutions to Ohios higher education institutions, catalyzing innovation in the modern knowledge economy. The organization prides itself on being a welcoming and supportive work environment.

Because The Ohio State University serves as OH-TECHs fiscal and legal agent, OH-TECH staff enjoy the same benefits as other Ohio State employees , including participation in the Ohio Public Employees Retirement System (OPERS), the Ohio State Health Plan, employee wellness and work-life balance programs, educational benefits, discount programs and more.

Required Education/Experience:

• Bachelor's degree or equivalent combination of education and experience in information technology, information security, cybersecurity, digital forensics, or other relevant fields.

• 2 years of demonstrated experience with vulnerability scanning tools (Qualys, Tenable/Nessus, Rapid7).

• Knowledge of computer security concepts, procedures, and best practices for security and security operations including VMS, incident response, threat management, and log analysis.

• Excellent problem-solving, analytical, and troubleshooting skills.

• Strong understanding of operating systems, networks, secure application development concepts.

• Demonstrated working knowledge of NIST Special Publication 800 series (e.g., NIST 800-53, NIST 800-63, and NIST 800-171), and other regulatory and legislative authorities including but not limited to HIPAA, FERPA, FISMA.

Desired Education/Experience:

• Experience with Spirion/Identify Finder, Splunk, CIS Benchmarks, computer imaging, and data recovery processes; Linux and Windows systems administration; authentication (including multifactor) and encryption systems.

• Experience creating and managing Jira boards, workflows, and dashboards.

• Familiarity with Confluence for maintaining project documentation, knowledge bases, and team collaboration spaces.

• Service Now ITSM.

• Security+, CySA+, CISSP, CRISC, CISM , CISA, or other relevant security certifications.

Function: Information Technology

Subfunction: Information Security and Risk Management

Career Band: Individual Contributor Specialized

Career Level: S2 Experienced

OSU and OH-TECH will not sponsor applicants for work visas for this position.

Final candidates are subject to successful completion of a background check. A drug screen or physical may be required during the post offer process.

Thank you for your interest in positions at The Ohio State University and Wexner Medical Center. Once you have applied, the most updated information on the status of your application can be found by visiting the Candidate Home section of this site. Please view your submitted applications by logging in and reviewing your status. For answers to additional questions please review the frequently asked questions .

The university is an equal opportunity employer, including veterans and disability.

As required by Ohio Revised Code section 3345.0216 , Ohio State will: educate students by means of free, open and rigorous intellectual inquiry to seek the truth; equip students with the opportunity to develop intellectual skills to reach their own, informed conclusions; not require, favor, disfavor or prohibit speech or lawful assembly; create a community dedicated to an ethic of civil and free inquiry, which respects the autonomy of each member, supports individual capacities for growth and tolerates differences in opinion; treat all faculty, staff and students as individuals, hold them to equal standards and provide equality of opportunity with regard to race, ethnicity, religion, sex, sexual orientation, gender identity or gender expression.