Information Security Analyst
Job Title Information Security Analyst
The Information Security Analyst will research, develop, implement, test, and review the organization's information security plan to protect information and prevent unauthorized access. This position will be responsible for informing users about security measures, explaining potential threats, installing software, implementing security measures, and monitoring networks.
Bachelor's degree in Computer Science, Business Administration, or other related degree from an accredited institution.
Two or more years of full time professional experience working with wide and local area networks or business applications development and support.
Valid driver's license.
Three or more years of full time professional experience working with wide and local area networks or business applications development and support.
Security specific certifications such as GIAC, CEH, or CISSP.
Experience working with CIS Critical Controls or NIST 800 series documents.
Experience working in Higher Education.
Knowledge, Skills & Abilities
•Knowledge of applicable security policies/best practices/principles.
•Ability to discern between security breaches and more innocent technical bugs.
•Ability to understand and apply policies and procedures.
•Knowledge of standard computer logging processes and understanding of the types of events logged.
•Ability to interpret log data and investigate potential issues.
•Ability to prepare network/system diagrams and advise on secure implementations of systems and services.
•Ability to communicate effectively in writing and orally.
•Ability to organize and maintain complex records.
•Ability to summarize data and to generate accurate statistical reports.
•Knowledge of security strategies (operating system hardening, change management, application testing/patching, security tools, and software products).
•Knowledge of network/system security access, management, and testing.
•Ability to comprehend documentation and follow instructions.
•Knowledge of project management tools and techniques.
•Ability to plan, organize, and implement projects and tasks within an allotted timeframe.
•Effective listening skills and the ability to communicate with others in order to gather information.
•Strong problem solving skills and the ability to manage multiple assignments and tasks, set priorities, and adapt to changing work conditions and assignments.
•Ability to research and evaluate vendors, hardware, and software products.
•Ability to learn new technologies and security concepts.
•Ability to effectively communicate with a variety of users of different technological expertise.
•Ability to present in front of a diverse group of constituents.
Salary Range $62,000 - $67,449
Essential Job Duties
•Monitors and enforces the enterprise's information security policies and procedures, and ensures the enterprise remains in compliance with mandated requirements.
•Implements regular application and network security scanning procedures, and prepares metrics reports.
•Reviews application and hardware logs and reports potential problems. Monitors SIEM system and reports any suspicious activity.
•Conducts audits on user accounts, enterprise applications, network equipment, and endpoints.
•Identifies and notifies appropriate users of vulnerabilities.
•May investigate suspicious activity in enterprise applications and systems such as bandwidth spikes, failed application log-ons, or account lock outs.
•Gathers audit information and submits data to higher level management.
•Provides input to management for the design and secure systems, applications, and networks.
•Implements the growth plan for systems to ensure a secure state-of-the-art environment.
•Generates security incident statistic reports.
•Issues enterprise-wide security bulletins.
•Assists senior management with implementation of policies and procedures.
•Configures and monitors hardware and software protection tools, such as firewalls, intrusion prevention systems, or vulnerability management systems.
•Installs tools to monitor systems and networks for suspicious activity. Uses changes management software to track changes made to systems and services.
•Provides planning and technical support for department internal installations in compliance with the enterprise's security policies.
•Ensures that security projects are well documented and provides ongoing status reports to senior management.
•Implements information security project plans created by higher level management.
•Responds to reported security violations received from users and operating units.
•Investigates validity of reported security events and determines appropriate action based on the severity of the event.
•Serves as the primary interface with vendors for resolution of security related issues.
•Assists the Systems Engineers/Administrators with account management, provisioning and de-provisioning of accounts, and security of those accounts.
•Monitors security mailing lists and websites. Investigates new security tools and techniques.
•Recognizes and identifies potential areas where existing policies and procedures require change, or where new ones need to be developed, especially regarding security in future business and technology expansion.
•Educates users on computer security issues and security related topics.
•Performs other duties as assigned.
Posting Detail Information
Posting Number PS269P
Open Date 05/01/2017
Open Until Filled Yes
Special Instructions to Applicants
Required fields are indicated with an asterisk (*).
- * Do you possess a Bachelor’s degree or higher in Computer Science, Business Administration, or other related degree from an accredited institution?
- * Do you have two or more years of full time professional experience working with wide and local area networks or business applications development and support?
- * Please explain your directly related experience to the position.
(Open Ended Question)
- * Please indicate the number of years of directly related work experience.
(Open Ended Question)
- * Please indicate how you first learned of this position.
- Job Board
- Print Advertisement
- Social Media
- Job Fair/Conference
- FGCU Website
- Employee Referral
- * Per the question above, please specify the name of where you FIRST learned of the position?
(Open Ended Question)
Documents Needed To Apply
- Cover Letter
- List of 5 Professional References (with relationship of each)