Senior Security Analyst, Information Security Office (ISO)

Employer
Pepperdine University
Location
Remote, Malibu Campus

View more

Employment Type
Full Time
Institution Type
Four-Year Institution

Job no: 500736
Work type: Regular
Location: Remote, Malibu Campus
Categories: Information Technology

This position plans and implements information security for the University.

Duties

  • MANAGE - Manage operational change requests for firewall, IDS, NAC, DHCP, DNS and other security systems and use professional judgment to determine whether and how the requests shall be implemented to provide best security and service. Oversee operation and manage documentation for systems security tools. Work closely with the Director and IT operational managers to document and ensure that security best practices and University security policies are being followed.
  • IMPROVE - Develop, manage, oversee, test and verify the implementation of necessary security controls with the goal to protect the University's infrastructure from attack and from unauthorized access, modification or destruction. As part of this oversight, Sr Analyst will perform, develop and improve vulnerability scanning, intrusion detection and log analysis. Develop and improve upon the mature ISO incident handling procedures according to the standard Incident Handling pattern (Preparation, Identification, Containment, Eradication, Restoration, and Lessons Learned).
  • ANALYZE - Senior Analyst will analyze system and network data to identify threats, misconfigurations and vulnerabilities in network and system infrastructure and develop, automate, promulgate and present reports on results of this analysis and measured effectiveness of security controls developed or under management. Participate regularly in attack/vulnerability recognition and defense, based on security event review methods developed and improved by the Sr Analyst or other members of the ISO team. -
  • CONSULT Lead IT and technical colleagues toward integrating security controls into their IT procedures. Promote understanding and compliance with incident handling procedures among IT teams. Network with colleagues to collect input and propose improvements to procedures. Analyze University business processes with information security implications and work with colleagues in business units to improve security and efficiency of the process.
  • CONTINUOUSLY IMPROVE SECURITY KNOWLEDGE Participate regularly in information sharing communities of which the Information Security Office is a member, both monitoring, evaluating and applying updates from the community and supplying information to the community about threats and attacks as we observe them. Regularly update knowledge of security attacks and our systems.
  • COLLABORATION As needed or required: Provides backup support and assistance to other team members. Collaborates with co-workers and university colleagues on departmental, division-wide, and institutional projects. Shares process information and makes informal recommendations on how to improve processes and overall job execution within the team/department. COMMITTEES As needed or required: Serves on various committees within the Information Technology division. Participates in external university committees. DEVELOPMENT As needed or required: Attends training, vendor presentations, user group meetings, conferences and seminars. Engages regularly in individual professional development related activities to remain current with industry technology trends and work processes. BEYOND JOB DUTIES As needed or required: Volunteers to undertake tasks that stretch the employee's capabilities. Performs other related duties as assigned.
  • UNIVERSITY MISSION Understands and supports the Christian mission of the University.

The above information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.

Skills and Qualifications

Required: 3 years' IT work experience; proficiency in TCP/IP Networking, Security Incident Handling Unix/Linux, Windows

Preferred: Software development and/or Information Security Training and 2 years' Information Security responsibilities; proficiency in Perl Regex & SQL Query writing Cisco IOS, Apple Operating Systems

Qualified individuals should be able to articulate a strong commitment to diversity, and have the ability to work effectively with individuals from different backgrounds.

Offers of employment are contingent upon successful completion of a criminal, education, and employment screening. Qualified individuals with criminal histories will be considered for employment in compliance with applicable laws.

This is a Regular, Exempt, 40 hour per week position that is eligible for remote or hybrid work in accordance with the University Policy Manual.

Salary: $62,400-$63,000.

Advertised: 21 Apr 2022 Pacific Daylight Time
Applications close:

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert