Job Title
Information Security Analyst

Job Description
The Information Security Analyst will research, develop, implement, test, and review the organization's information security plan to protect information and prevent unauthorized access. This position will be responsible for informing users about security measures, explaining potential threats, installing software, implementing security measures, and monitoring networks.

Required Qualifications
Bachelor's degree in Computer Science, Business Administration, or other related degree from an accredited institution.
Two or more years of full time professional experience working with wide and local area networks or business applications development and support.
Valid driver's license.

Preferred Qualifications
Three or more years of full time professional experience working with wide and local area networks or business applications development and support.
Security specific certifications such as GIAC , CEH , or CISSP .
Experience working with CIS Critical Controls or NIST 800 series documents.
Experience working in Higher Education.

Knowledge, Skills & Abilities
•Knowledge of applicable security policies/best practices/principles.
•Ability to discern between security breaches and more innocent technical bugs.
•Ability to understand and apply policies and procedures.
•Knowledge of standard computer logging processes and understanding of the types of events logged.
•Ability to interpret log data and investigate potential issues.
•Ability to prepare network/system diagrams and advise on secure implementations of systems and services.
•Ability to communicate effectively in writing and orally.
•Ability to organize and maintain complex records.
•Ability to summarize data and to generate accurate statistical reports.
•Knowledge of security strategies (operating system hardening, change management, application testing/patching, security tools, and software products).
•Knowledge of network/system security access, management, and testing.
•Ability to comprehend documentation and follow instructions.
•Knowledge of project management tools and techniques.
•Ability to plan, organize, and implement projects and tasks within an allotted timeframe.
•Effective listening skills and the ability to communicate with others in order to gather information.
•Strong problem solving skills and the ability to manage multiple assignments and tasks, set priorities, and adapt to changing work conditions and assignments.
•Ability to research and evaluate vendors, hardware, and software products.
•Ability to learn new technologies and security concepts.
•Ability to effectively communicate with a variety of users of different technological expertise.
•Ability to present in front of a diverse group of constituents.

Salary Range
$62,000 - $67,449

Job Duties

Essential Job Duties
•Monitors and enforces the enterprise's information security policies and procedures, and ensures the enterprise remains in compliance with mandated requirements.
•Implements regular application and network security scanning procedures, and prepares metrics reports.
•Reviews application and hardware logs and reports potential problems. Monitors SIEM system and reports any suspicious activity.
•Conducts audits on user accounts, enterprise applications, network equipment, and endpoints.
•Identifies and notifies appropriate users of vulnerabilities.
•May investigate suspicious activity in enterprise applications and systems such as bandwidth spikes, failed application log-ons, or account lock outs.
•Gathers audit information and submits data to higher level management.
•Provides input to management for the design and secure systems, applications, and networks.
•Implements the growth plan for systems to ensure a secure state-of-the-art environment.
•Generates security incident statistic reports.
•Issues enterprise-wide security bulletins.
•Assists senior management with implementation of policies and procedures.
•Configures and monitors hardware and software protection tools, such as firewalls, intrusion prevention systems, or vulnerability management systems.
•Installs tools to monitor systems and networks for suspicious activity. Uses changes management software to track changes made to systems and services.
•Provides planning and technical support for department internal installations in compliance with the enterprise's security policies.
•Ensures that security projects are well documented and provides ongoing status reports to senior management.
•Implements information security project plans created by higher level management.
•Responds to reported security violations received from users and operating units.
•Investigates validity of reported security events and determines appropriate action based on the severity of the event.
•Serves as the primary interface with vendors for resolution of security related issues.
•Assists the Systems Engineers/Administrators with account management, provisioning and de-provisioning of accounts, and security of those accounts.
•Monitors security mailing lists and websites. Investigates new security tools and techniques.
•Recognizes and identifies potential areas where existing policies and procedures require change, or where new ones need to be developed, especially regarding security in future business and technology expansion.

Other Job Duties

Other Duties
•Educates users on computer security issues and security related topics.
•Performs other duties as assigned.

Posting Detail Information

Posting Number
PS269P

Open Date
05/01/2017

Close Date

Open Until Filled
Yes

Special Instructions to Applicants



To apply please click here!