Information Security Analyst and Program Coordinator

Job description

Job Title: Information Security Analyst and Program Coordinator
Regular/Temporary: Regular
Full/Part Time: Full-Time
Job ID: 24876
Job Code: 1173 Confidential Technical Support -12 Month
Department: Information Security
CompensationClassification: Confidential Technical Support - III
Salary Range: $3,455/month - $11,566/month
FLSA status: Exempt

San José State University offers employees a comprehensive benefits package. For more information on programs available, please visit
About the PositionThis position is the primary campus expert for information security incident investigation, e-discovery, security systems specification, policy/standard specification, monitoring, reporting, information security policies and standards, management of information security projects, enforcement of campus security policies, risk assessment, vulnerability assessment, administration of central security systems, and administration of the campus information security web site. The incumbent will interact with campus technical support staff and constituents to document critical assets and serve as a security liaison/consultant to departments, and serve as a resource for the proper handling of information security incidents and work with campus administrators and staff to resolve any issues. The incumbent will be proactive in his or her approach in order to make recommendations and ensure users/departments have the most up-to-date technological solutions to perform their jobs and serve the university community effectively and securely. The incumbent will prepare and maintain documentation, including inventory of campus confidential data and other high-risk information assets, create monthly and quarterly information security status reports and create guides for complying with campus requirements, either by devising solutions or by documenting practices already in use on campus.
Minimum Qualifications-Bachelor's degree or equivalent training in computer science, information systems, educational technology, communications, or related fields, or similar certified coursework in applicable fields of study
-Four years of experience in computer programming and software development, information processing, systems analysis, technical information equipment and systems, and/or application program packages and related technical functions
Preferred Qualifications-5+ years' experience in information security incident investigation
-Experience with firewall and Identity Services Engine Rule
-Experience generating reports using CSV, HTML, XLS, PDF
-Experience with vulnerability management products (i.e. Rapid7 Qualysgard)
-Experience in Project Management
Knowledge, Skills & Abilities-Working knowledge of information systems, servers, firewalls, operating systems, access control lists, etc.
-Understanding of data asset and vulnerability identification mechanisms (i.e. identity finder, Qualys, Rapid 7).
-Working knowledge of physical security systems, access control, fire prevention, UPS, generation.
-Working knowledge of secure programming, storage, and cloud service operations.
-Thorough understanding of HIPAA, PCI, FERPA and other applicable laws and regulations.
-Thorough knowledge of Password Management applications, service account behavior, account scanners, password complexity algorithms.
-Demonstrated knowledge of firewalls, protocols, ports, and their security implementations.
-Working knowledge of access control lists, active directory security groups, active directory file share permissions, firewall rules, Identity Services Engine, etc.
-Thorough knowledge of Password Management applications, service account behavior, account scanners, password complexity algorithms.
-Working knowledge of ISO27001, information security best practices.
-Thorough understanding of penetration testing for applications, servers, voip, web servers, etc.
-Thorough knowledge of operating systems, eDiscovery, email systems, file systems, servers, and other technologies.
-Ability to create and maintain a forensically sound investigation record permissible as evidence in a court of law, State Personnel Board, etc.
-Working knowledge of user provisioning engines, automated creation of new user accounts, automated deprovisioning of expired accounts, automated group management, etc.
-Demonstrated ability to generate reports using standard reporting techniques, CSV, HTML, XLS, PDF, etc.
-Ability to quickly identify security issues and develop action plans toward compliance.
-Advance knowledge of SIEM products (i.e. Accelops, Splunk, Secureworks).
-Knowledge of vulnerability management products (i.e. Rapid7 Qualysgard).
-Advance knowledge of DLP solutions i.e. Identity Finder.
-Thorough knowledge of current information security issues, vulnerabilities, malware, and solutions.
-Working knowledge of html code, Dreamweaver, Drupal, OUCampus, or other WYSIWYG web page creation tools.
-Thorough knowledge of US-CERT (United States - Computer Emergency Readiness Team systems and practices, and the Twenty Critical Controls for Effective Cyber Defense: Consensus Audit Guidelines).
Posting DateJanuary 9, 2019
Application ScreeningApplication Screening begins January 24, 2019
Applications received before that date will receive first consideration.

This position is open until filled; however, applications received after screening has begun will be considered at the discretion of the university.
Required Application MaterialResume-PDF
Letter of interest-PDF
List of References-PDF

Please note that failure to completely fill out each section of the online application may result in your application not receiving consideration.
Equal Employment StatementSJSU is an Equal Opportunity Affirmative Action employer. We consider qualified applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity/expression, sexual orientation, genetic information, medical condition, marital status, veteran status, or disability.

It is the policy of SJSU to provide reasonable accommodations for applicants with disabilities who self disclose.
Contact InformationOne Washington Square San Jose, CA 95192-0046
Phone: 408-924-2250





Diversity Profile: University



View more

Learn more on Inside Higher Ed's College Page for University

Arrow pointing right
Job No:
Posted: 1/11/2019
Application Due: 10/9/2019
Work Type: