Information Security Analyst

SALARY:$48,000.00 - $52,000.00 Annually

DIVISION:Administration

DEPARTMENT:Technology Services

OPENING DATE:09/15/21

CLOSING DATE:09/29/21 05:00 PM

OCCUPATIONAL SUMMARY:

The Information Security Analyst is responsible for working with key members of Technology Services leadership in the management and facilitation of IT-related security and safety issues.  The Information Security Analyst is responsible for the day-to-day administration of information security tools and devices, as well as first-level and second-level support for security information and event management.  This position is responsible for the security administration of IT systems deployed across the enterprise.  This position will provide audit support functionality as required.  The Information Security Analyst will be required to validate or oversee the implementation of the NC Statewide Security Policies and control frameworks and facilitate internal auditing of controls.  This position is also responsible for conducting PCI compliance audits and assisting college stakeholders with the required PCI Self-Assessment Questionnaires (SAQ).  This position will collaborate with outside groups, organizations and the community to foster collaboration and security best practices.

ESSENTIAL DUTIES & RESPONSIBILITIES:

• Monitors, identifies, and analyzes security risks to determine their impact and relevance to the College's assets; conducts research, analyzes data, reaches conclusions, and makes recommendations for security enhancements and purchases
• Serves as the Information Security Officer; analyzes potential information security events to determine if these events qualify as legitimate security incidents and to determine root causes; prepares reports to document security breaches and their impact
• Provides ongoing protection, detection, response and testing services for college information resources and digital assets 
• Provides second-level support to users although not limited from working at other levels of the support model; performs timely and thorough completion of HelpDesk tickets and services requests
• Conducts periodic penetration testing and vulnerability scans to assess the College’s information security position
• Develops information security training materials; trains faculty and staff on network and information security procedures
• Assists in the development and implementation of effective information security policies to ensure compliance with NC Statewide Security Polices and control frameworks
• Maintains data retention policies and backup rotations
• Stays abreast of information security issues , latest intelligence and regulatory changes affecting higher education at the state and national level; researches new technologies that will protect the network infrastructure from data loss and service interruptions
• Assists with the College network as needed, installing firewalls, data encryption and other security measures; acts as the backup for the Network Administrator
• Assists in the development and ongoing maintenance of policies, procedures and documents required to maintain Payment Card Industry (PCI) compliance; conducts monthly PCI point-of-sale inspections
• Participates in appropriate committees and task forces as assigned
• Performs other job-related duties and projects as assigned in support of the College’s mission, core values and goals

MINIMUM QUALIFICATIONS:

Associate’s degree in Cybersecurity, Information Technology, Networking or closely related field from a regionally accredited institution of higher learning.

Two (2) years’ full-time work experience in information security protection, detection and response processes.

Preferred:
Bachelor’s Degree in a related field from a regionally accredited institution of higher learning.

Palo Alto Networks Certified Network Security Administrator.

KNOWLEDGE, SKILLS AND ABILITIES:

Knowledge

• Extensive knowledge of information security concepts, principles and components of a comprehensive information security program 
• Extensive knowledge of Windows-based systems and TCP/IP network security technologies
• Extensive knowledge of PCI standards and compliance regulations
• Extensive knowledge of Microsoft Advanced Threat Protection
• Extensive knowledge of Microsoft 365 Security tools 
• Working knowledge of Palo Alto firewalls
• Working knowledge of PowerShell
• Working knowledge of basic networking principles and Microsoft Office 365
• Working knowledge of technical support processes and protocol
• Working knowledge of backup and restore systems
• Moderate level of working knowledge and application of project management concepts

 
Skills

• Proficient use of intrusion prevention systems 
• Effectively use organizational and planning skills, including attention to detail and follow-through to efficiently meet deadlines, schedules and target dates
• Proficient in the management of network security
• Proficient in conducting threat and vulnerability assessments
• Conduct research, analysis, audits, and quality assurance in relation to areas of responsibility

 
Abilities

• Analyze and troubleshoot technical and network-related problems within scope of duties and responsibilities
• Develop, execute and lead project plans, prioritize and work independently on multiple on-going projects/tasks
• Ability to communicate effectively both verbally and in writing; effectively communicate with business partners on optimal technical solutions within scope of responsibilities and duties
• Perform hardware and software system management, analysis and planning and research and recommend upgrades or replacement options 
• Keep up to date with current industry trends and new technologies
• Establish and maintain effective working relationships with those contacted in the course of work; provide high-quality, customer-oriented service
• Handle confidential information with absolute discretion
• Commitment to diversity, equity and inclusion; demonstrated ability to work effectively with a culturally diverse workforce, including those with different levels of academic preparation and varying physical and learning abilities, and socioeconomic levels

APPLICATIONS MAY BE FILED ONLINE AT:
https://www.schooljobs.com/careers/cravencc/jobs/3232176/information-security-analyst

800 College Court
New Bern, NC 28562
252-638-7335

hr@cravencc.edu

Position #2021-00092
INFORMATION SECURITY ANALYST
KT