Role Description As the IT Security Analyst II, you will assess threats to ProMedica’s information technology resources and data while developing policies, processes, and procedures related to a comprehensive security program. - Ensure compliance with IT security policies. - Review security logs for suspicious activities. - Investigate security incidents and upgrades. - Perform risk assessments. - Available for rotational, on-call 24/7 support. The above summary is intended to describe the general nature and level of work performed in this role. It should not be considered exhaustive. Qualifications - Bachelor’s degree or equivalent work experience. - 4 years overall IT experience with at least 3 years in a security role. Requirements - Master’s Degree (Preferred). - CISSP, CISA, CISM, CHPS (Preferred). - Experience with Splunk, Defender for Endpoints, CrowdStrike, Windows 11, PowerShell, Active Directory (Preferred). Benefits - Competitive benefits package effective day one of employment. - Medical, dental, and vision coverage. - Company paid life insurance. - Paid time off. - 401k retirement plan. - Employee assistance program. - Voluntary coverage options and employee discounts.

Role Description The Information Security Analyst II will report to the Director of Information Security Operations. You will be a senior member of the Security Operations Center (SOC) team and is responsible for monitoring a large, complex enterprise technology ecosystem, detecting, analyzing, and investigating information security events within that ecosystem, and responding to information security incidents to ensure the protection of SNHU's mission critical technology resources and institutional information. The SOC team is responsible for analyzing events from multiple sources from across all university technology resources including networks, applications, and other assets. The critical duties and responsibilities of the SOC team must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work, and/or require work during non-business hours. You will work 100% remotely from any of our approved states. What You'll Do: - Be an initial triage point for all security-related tickets that come into the team's multiple queues (including triage, containment, and remediation). - Understand the basic incident response lifecycle and the analytical mindset needed when it comes to triage and investigations. - Excel at documentation and detailed notetaking, including SOP writing, incident reporting, email and instant messaging etiquette, and most importantly, documenting incident actions. - Collect and analyze log data from complex, virtualized, multi-site computing environments and SNHU's technology ecosystem. - Conduct real-time monitoring of security events from multiple sources and use analytical and problem-solving skills to identify, triage, analyze, investigate, and escalate information security events and alerts. - Analyze digital evidence to identify indicators of compromise, adversary activity, root cause, incident timelines, and attack vector(s). - Perform incident response activities like endpoint isolation, malware remediation, forensic analysis, malware analysis, community member interviews, and network traffic analysis. - Perform investigation and escalation for complex or high severity security threats or incidents. - Coordinate information security incident response according to SNHU's Information Security Incident Response Plan. - Communicate with partners, in a non-technical manner, at all organizational levels as part of incident response and remediation activities. - Design and implement or monitor information security incident remediation plans. - Design, configure, deploy, and manage security tools (e.g. Splunk, Halcyon, Microsoft Defender, Tenable). - Design, deploy, and manage detections and alerts for specific or common threat conditions. - Design and implement standard operational processes for handling common incident types. - Maintain automation scripts and other tools to enhance security operations effectiveness. - Familiarity with enterprise security tools like Splunk, Tenable, Proofpoint tools, Microsoft Defender components, Office 365 tools, PowerShell, and multiple network tools. - Demonstrate a deep source of ethics, integrity, and confidentiality. - Can remain calm and function at the highest level during a crisis. - Remain up to date on latest threat intelligence. - Develop strategies and solutions that improve or mitigate the risks associated with these threats. - Work cross-functionally across ITS and all SNHU departments to provide support, guidance, and technical implementations to include triage, containment, and remediation when applicable. - Provide customer support according to SNHU's Core Values and understand how and when to escalate potential issues. - Help with risk management, vulnerability management, security assessment, auditing, and security authorization projects, as directed by the university's Information Security Management team. - Provide coaching/mentoring to junior analysts. - Other duties and responsibilities as assigned. Qualifications - 5+ years of experience in information technology. - 2+ years working in a security operations center (SOC), a cybersecurity operations center or on a cybersecurity incident response team. - High School Diploma or equivalent (GED). - Experience collecting, organizing, and analyzing security data from enterprise monitoring tools, including SIEM, IPS, NAC, vulnerability scanners, Windows/Linux system logs, network scanners, log aggregation platforms, and EDR solutions. - Experience with vulnerability management and penetration testing concepts and activities. - Knowledge of MITRE ATT&CK framework. - Professional Certification(s): ISC2 CISSP Certification, Microsoft Azure, Cisco, CompTIA, Security+, GSEC, or other relevant industry certification. Requirements - Office Hours: Monday through Friday 8:00am – 4:30pm. - Professional office environment. Sedentary work: Requires remaining in a stationary position, often standing or sitting for prolonged periods. Benefits - High-quality, low-deductible medical insurance. - Low to no-cost dental and vision plans. - 5 weeks of paid time off (plus almost a dozen paid holidays). - Employer-funded retirement. - Free tuition program. - Parental leave. - Mental health and wellbeing resources.

Role Description This is a remote position. Position Requirements: - Performing highly advanced (senior-level) consultative services and technical assistance work related to supporting the CAPPS Program. - Responsible for the (CAPPS) security framework, which includes but is not limited to: - Manage and enforce role‑based access control (RBAC) and least‑privilege models within CAPPS and connected systems. - Design and maintain segregation‑of‑duties (SoD) rules; identify and remediate SoD conflicts across business processes. - Review and validate security roles, permission sets, and custom authorizations within CAPPS and all ancillary systems. - Monitor and analyze authentication, authorization, and privilege‑escalation logs for suspicious behavior and coordinate any findings with CPA Information Security Office. - Oversee secure integration of third‑party apps via SAML, OAuth, OIDC, SCIM, and custom APIs. - Validate CAPPS application changes, customizations, and workflows for security and compliance impact. - Respond to and investigate identity‑related security incidents, including account compromise, unauthorized access, and fraud indicators. - Maintain standards for security, performance, compliance, and architecture. - Responsible for ensuring that all digital products and content meet WCAG 2.1 accessibility standards, including: - Maintaining perceivable, operable, understandable, and robust experiences for all users. - Regularly reviewing content for compliance and implementing updates or remediation whenever accessibility issues are identified. - Reviewing and suggesting approval for all assigned Security Deliverables related to CAPPS Architecture, CAPPS System Development Lifecycle, Disaster Recovery, CAPPS Security Plans (SSP), and all CAPPS related Security plans. - Service Desk Support: - Plans, designs, develops, deploys, supports, and maintains system configurations and modifications for CPA’s CAPPS HR/Payroll application. - Performs highly advanced analysis and participates in special projects and cyclic processes in support of CPA’s CAPPS HR/Payroll application. - Supports CAPPS agencies with discovery, prototyping, configuration, security, conversion, integration, and acceptance testing. - Provides Level 2 Service Desk duties, including ticket handling for complex issues, in-depth troubleshooting, and basic configurations. - Performs all duties following CPA’s processes, policies, and procedures within project scope and on schedule. - Works under minimal supervision, relying on experience and judgment to plan and accomplish goals. - Performs all work in accordance with ITIL principles and practices for IT activities. - Actively responds to and maintains customer ticket requests via the CAPPS Service Desk. - Actively participates in CPA’s Major Incident Management (MIM) process for P1 and P2 incidents. - Participates in Disaster Recovery and Upgrade Testing activities. - Assists with expansion activities. - Makes presentations at CAPPS User Groups. - Plans, designs, develops, implements, supports, and maintains information technology security measures. - Participates in an annual SOC-1 attestation audit. - Performing other related work as assigned. Qualifications - 10 years Required: Extensive Texas public sector experience, directly working for or supporting a Texas state government agency. - 10 years Required: Extensive experience performing technical activities in support of CPA application systems. - 10 years Required: Extensive experience creating and managing a strategic roadmap by combining strong planning skills, technical insight, and effective cross-functional communication. - 10 years Required: Experience preparing materials for and conducting executive-level presentations. - 10 years Required: Experience performing technical project management activities in support of CPA’s CAPPS program. - 10 years Required: Experience in interpreting contractual language and integrating it into daily workflows. - 10 years Required: Extensive knowledge of/experience with data integration, data quality, and SDLC processes and methodologies. - 10 years Required: Experience in IT security and control practices. - 10 years Required: Technical experience with PeopleSoft FSCM or HCM 9.2, PeopleTools, Peoplecode, Application Designer, SQL, PS Query, SQR, Application Engine, and Oracle 11 or higher. - 10 years Required: Experience with CAPPS Central production and deployment technical support activities for more than 100 agencies and 5 Hub instances. - 8 years Required: Experience with IT service desk functions, knowledge of ITIL framework methodologies and processes. - 5 years Required: Experience serving in a security analyst role with responsibility overseeing a Managed Services provider. - 5 years Required: Experience with user role segregation of duties (SoD) in multi-tenant software applications. - 10 years Preferred: Experience with software and hardware management industry best practices. - 10 years Preferred: Experience with CPA’s legacy Statewide Financial Systems production support activities. - 10 years Preferred: Experience developing technical specifications to support IT procurements.

Role Description The IT Security Compliance Analyst provides support for IT Compliance Programs, and will research risks, identify issues, develop solutions, and provide related reporting, training and other duties. Incumbent will oversee and gather information related to the ongoing activities within Velera, including creation and development of information security metrics for senior leadership. Incumbent will report on top departmental and corporate compliance priorities and will own execution and process to meet stated priorities. Incumbent will also collaborate with functional ITS and business leaders to drive IT compliance practices and adoption. Day in the Life - Audit user and system security configurations for compliance with internal and external requirements - Perform audits and follow-up on corrective actions; Participate in internal audit activities performed for compliance verification; Interact and coordinate with appropriate business unit resources for audit participation - Provide information to management regarding negative business impact caused by violation of confidentiality, integrity or availability of information and information systems - Understand application of security concepts across a broad scope of information technology areas including data communications, network design, operations, database structures, operating systems, application development, security risk assessment, and disaster recovery - Provide ongoing guidance and support to the organization to promote a progressive and sustainable compliance culture - Prepare and provide updates for monthly internal and external compliance reports - Document and maintain risk-based compliance policies and procedures; Develop various materials for use on ITS's compliance intranet site - Coordinate training material and monitoring records and the distribution of regulatory information to the appropriate personnel - Implement and maintain operational plans for key control activities to ensure compliance with regulatory, legal, and corporate or functional related policies and procedures; Respond to internal and external inquiries and requests for information to clarify regulatory requirements - Assist in development of processes to identify, quantify, analyze, and report on Velera Technology Risk and Compliance status - Function as a liaison between business units with compliance responsibilities to collect, report, and retain compliance documentation and reports - Identify ongoing process improvements, operational gaps, and potential remediation steps; assist and/or lead process re-design and coordination of remediation efforts and remediation status reporting - Maintain knowledge of legislation and regulation changes related to the financial industry; understanding of applicable finance industry security and privacy regulations, procedures and issues, and assist in leading internal efforts to ensure the organization remains compliant with such laws and regulations - Lead and/or participate in special project teams supporting general business initiatives outside of the primary security function - Perform other duties as assigned Qualifications - Bachelor’s degree in computer science or related discipline, or equivalent combination of education and experience required. - Risk management, governance or security certification (CRISC, CGEIT, CISSP, CISM, CISA) required. - Project Management certification (PMP) preferred. - Five (5) years of related work experience, including a combination of at least three (3) years’ experience in Internal IT Systems Auditing and three (3) years’ experience in internal control projects in the financial industry required. - Working knowledge of SSAE 16 and PCI requirements - Working knowledge of ISO27000 series of standards, PCI, COBIT, ITIL, and Sarbanes Oxley rules surrounding IT - Working knowledge of NACHA - Working knowledge of OFAC, BSA, GLBA, Patriot Act and other Federal or State laws that impact National Security requirements or privacy Benefits - Competitive wages - Medical with telemedicine - Dental and Vision - Basic and Optional Life Insurance - Paid Time Off (PTO) - Maternity, Parental, Family Care - Community Volunteer Time Off - 12 Paid Holidays - Company Paid Disability Insurance - 401k (with employer match) - Health Savings Accounts (HSA) with company provided contributions - Flexible Spending Accounts (FSA) - Supplemental Insurance - Mental Health and Well-being: Employee Assistance Program (EAP) - Tuition Reimbursement - Wellness program - Benefits are subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions