"Data Security Analyst Senior"

The Institute for Social Research (ISR) at the University of Michigan is seeking a hands-on Data Security Analyst for our Computing and Multimedia Technologies (CMT) team. Reporting to the Director of CMT, you will work with technical teams to secure information systems, networks, and data supporting the Survey Research Center (SRC) and its federally regulated social science research.

This role is suited to an experienced professional with a strong background in Windows-based enterprise environments, including Active Directory, Group Policy Objects (GPOs), servers, IIS, and workstation fleets, and demonstrated experience supporting information security and compliance requirements. Unlike policy-only roles, this position emphasizes direct technical execution; implementing security controls, remediating vulnerabilities, and supporting incident response across production infrastructure. The role blends Windows systems administration, applied security engineering, and compliance implementation.

This position requires the ability to obtain federal level 5 security clearance within six months of hire (U.S. citizenship required).

This is a hybrid position based in Ann Arbor, Michigan, with an expectation of 2 to 3 days onsite per week at ISR offices. Working hours are Monday through Friday, 8:00 a.m. to 5:00 p.m.

The salary range for this position is $105,000 to $110,000, commensurate with relevant qualifications.

View the full job description here.

Systems Security & Hardening

• Implement and maintain security configurations on Windows Server, Active Directory, GPO, and related infrastructure.
• Apply secure baselines, patch management processes, privileged access controls, and endpoint monitoring.
• Work with systems administrators to integrate secure configurations into server builds and deployment workflows.

Vulnerability Management

• Conduct and interpret regular vulnerability scans, prioritizing remediation efforts across ISR systems.
• Coordinate directly with technical staff to resolve vulnerabilities within required timelines.
• Maintain documentation of vulnerability management processes and audit responses.

Active Directory, GPO & Network Security

• Develop, maintain, and troubleshoot Group Policy objects for security, workstation management, and access control.
• Support AD architecture improvements, secure delegation, and OU design.
• Assist in firewall rule review, network segmentation recommendations, and secure remote access implementation.

Security Compliance Implementation

• Translate compliance frameworks (e.g., NIST 800-53 / 800-171) into feasible, technical configurations on ISR systems.
• Assist with internal and external audits, including documentation preparation and technical evidence collection.
• Review audit findings and implement the technical corrective actions required for accreditation compliance.

Monitoring, Incident Response & Operations

• Support log analysis, SIEM tuning, and endpoint security solutions.
• Assist with incident identification, containment, forensic triage, and remediation.
• Produce incident documentation and participate in root-cause and prevention planning.

Collaboration & Communication

• Serve as a liaison between CMT, ISR, SRC projects, and U-M Information Assurance.
• Provide guidance to technical teams and research project staff on secure computing practices.
• Communicate risk, remediation timelines, and compliance requirements in clear, actionable terms.

Minimum Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or equivalent experience.
• 5+ years of direct experience as a Windows Systems Administrator, with hands-on responsibility for servers, AD/GPO, workstation management, and infrastructure security.
• 5+ years of addressing Compliance Frameworks, Disaster Recover/Business Continuity Planning, and Security Program development.
• Demonstrated experience applying secure configurations, managing Windows security baselines, and performing vulnerability remediation.
• Strong understanding of network protocols, encryption, VPNs, firewalls, and secure network architecture.
• Experience supporting or participating in security incident response.
• Experience documenting systems and processes for audit or compliance purposes.
• Ability to obtain and maintain federal Level 5 security clearance (U.S. citizens only.)

For questions about this position or to request a reasonable accommodation during the application process, email talent.acquisition@umich.edu.