Announcement

Details

Open Date
05/18/2026

Requisition Number
PRN45088B

Job Title
Information Security Engineers

Working Title
Information Security Engineer

Career Progression Track
P00

Track Level
P5 - Expert, P4 - Advanced, P3 - Career

FLSA Code
Computer Employee

Patient Sensitive Job Code?
No

Standard Hours per Week
40

Full Time or Part Time?
Full Time

Shift
Day

Work Schedule Summary

VP Area
President

Department
00954 - UIT Systems & Security

Location
Campus

City
Salt Lake City, UT

Type of Recruitment
External Posting

Pay Rate Range
$88,000 to 130,000

Close Date
08/31/2026

Priority Review Date (Note - Posting may close at any time)

Job Summary

Information Security Engineers

The Information Security Engineer position in the Information Security Office (ISO) is responsible for leading and supporting security initiatives which mitigate risk and ensure system and data integrity at the University of Utah and University Health Care. This includes providing security guidance and technical risk assessments of new or ongoing projects, responding to and analyzing security incidents, and implementing new security technologies or processes. This is a highly collaborative position which requires strong analytical and communication skills.

This position is currently hybrid, requiring the selected candidate to either reside in, or be willing to move, to the Salt Lake City area.

Responsibilities

Information Security Engineer

- Communicate security and operational risks, incident details, and mitigation strategies to senior management and relevant stakeholders.
- Coordinate with IT teams and system administrators to ensure cohesive security strategy and control implementations.
- Collaborate in the development of action plans to improve security posture.
- Assist the University in meeting Information Security compliance obligations.
- Contribute to incident response procedures, participate in incident response activities, and help develop strategies to prevent future occurrences.
- Analyze indicators of compromise from endpoints, servers, and cloud environments to identify the root cause of breaches, malware infections, or other security issues.
- Provide security evaluations and guidance regarding new technologies or processes.
- Assist in legal discovery, evidence acquisition, and preservation.
- Support the Security Operations Center (SOC) with tools, data, and guidance.
- Stay up-to-date concerning emerging threats, vulnerabilities, and security solutions through research and industry sources.

This job description is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to the job.

Minimum Qualifications

EQUIVALENCY STATEMENT: 1 year of higher education can be substituted for 1 year of directly related work experience (Example: bachelor's degree = 4 years of directly related work experience).

Department may hire employee at one of the following job levels:

Information Security Engineer, III: Requires a bachelor's (or equivalency) + 6 years or a master's (or equivalency) + 4 years of directly related work experience.

Information Security Engineer, IV: Requires a bachelor's (or equivalency) + 8 years or a master's (or equivalency) + 6 years of directly related work experience.

Information Security Engineer, V: Requires a bachelor's (or equivalency) + 10 years or a master's (or equivalency) + 8 years of directly related work experience.

Preferences

A thorough understanding of security industry standards (i.e. NIST 800-53, ISO/IEC 27001, CIS Controls, etc.)
- Experience with compliance standards including HIPAA, FISMA, PCI, and FERPA
- Experience with information security in a higher-education or healthcare setting.
- One or more security-specific certifications (CISSP, CISA, etc.)

One or more of the following:
a.) Experience with Data Security Posture Management, both on-premises and Cloud/SaaS
b.) Microsoft Purview Sensitivity Labels, Email, SharePoint, and OneDrive access controls
c.) Data Loss Prevention tools, tactics, and procedures
d.) Data cataloging, classification, discovery, and governance; overall data security

Type
Benefited Staff

Special Instructions Summary

Additional Information

The University is a participating employer with Utah Retirement Systems ("URS"). Eligible new hires with prior URS service, may elect to enroll in URS if they make the election before they become eligible for retirement (usually the first day of work). Contact Human Resources at (801) 581-7447 for information. Individuals who previously retired and are receiving monthly retirement benefits from URS are subject to URS' post-retirement rules and restrictions. Please contact Utah Retirement Systems at (801) 366-7770 or (800) 695-4877 or University Human Resource Management at (801) 581-7447 if you have questions regarding the post-retirement rules.

This position may require the successful completion of a criminal background check and/or drug screen.

The University of Utah values candidates who have experience working in settings with students and possess a strong commitment to improving access to higher education.

Veterans' preference is extended to qualified applicants, upon request and consistent with University policy and Utah state law. Upon request, reasonable accommodations in the application process will be provided to individuals with disabilities.