Overview

Date:  June 4, 2021

Position Available:  Information Security Analyst

Position Reports to: Director of Information Technology Services
Department: Information Technology Services (ITS)
FLSA Status: Exempt
Schedule: Full-time, Monday – Friday, 8:30 AM – 4:30 PM; Occasional evening and weekend work required; Occasional travel is required.

Please apply online:  https://franciscan.edu/information-security-analyst/

 

POSITION SUMMARY
The Information Security Analyst is responsible for planning, coordinating, and implementing security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information. This position analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks); investigates tools to identify and detect vulnerabilities and recommends solutions; analyzes and assesses damage to the infrastructure as a result of security incidents, examines available tools and processes for remediation; tests for compliance with security policies and procedures.

 

PRIMARY RESPONSIBILITIES

1.     Risk Management and Incident Response: Keep abreast of security incidents and act as primary control point during significant information security incidents. Provide direction and guidance in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies. Examine impacts of new technologies on the Institution’s overall information security. Establish processes to review implementation of new technologies to ensure security compliance. Perform other related duties and/or responsibilities as assigned or required.

 

2.     Security Technology Administration: Manage the university firewalls; administer security tools for internal vulnerability scanning, privilege management, and data classification; and administer phishing simulation tools.

 

3.     Policy Compliance and Audit: Consult with the Director of Information Technology Services to drive effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation. Monitor and restrict access to sensitive, confidential, or other high-security data. Work with various internal and external personnel and consultants as appropriate on required security assessment and audits.

 

4.     Outreach, Education, and Training:  As needed, work closely with IT leaders, technical experts, deans and administrative leaders across campus on a wide variety of security issues that require an in-depth understanding of the IT environment. Create education and awareness programs and advise operating units at all levels on security issues, best practices, and vulnerabilities. Work with campus groups to build awareness and a sense of common purpose around security. Pursue student security initiatives to address unique needs in protecting identity theft, mobile social media security and online reputation program.

This is not intended to be an all-inclusive list. Additional duties, expectations and responsibilities may be added or changed as needed to meet the University’s needs.

 

REQUIREMENTS
Must understand, support and embrace the mission of Franciscan University of Steubenville and possess the following:

 

Work Experience
• At least five years of experience in Information Technology and/or Security roles.
• Experience implementing security best practices from authoritative sources, including NIST Cybersecurity Framework, the Center for Internet Security (CIS) Top 20 Critical Security Controls, and OWASP
• Ability to maintain security documentation and manuals.
• Networking or systems administration experience is a plus.

 

Competencies
• Dealing with Ambiguity: Works well in situations where there is no single right answer.
• Decision Making: Appropriately considers the various stakeholders who might be impacted by a decision.
• Managerial Courage: Doesn’t hesitate to take an unpopular or non-traditional stand on a particular issue.
• Planning: Accurately assesses the complexity and difficulty of specific projects and initiatives.
• Strategic Thinking: Follows relevant trends and accurately anticipates future implications for the University.
• Technical/Functional Skills: Actively seeks out ways to practice and continually improve the required skills or knowledge.
• Verbal Communications: Presents effectively in multiple settings: one-on-one, small/large groups, peers, staff and managers.
• Written Communications: Effectively identifies and organizes the key points needed for an effective written communication.

 

Education
• Associate degree in Computer Science, Information Security or other related field is required; Bachelor’s degree is preferred.
• Professional certification (e.g., CISSP, CISM, CISA, CEH, CRISC, ISAAP) is highly desirable.

 

Technical Skills
• Experience providing analysis and trending of security events, alarms, and information from a large number of security devices
• Strong working knowledge of SIEM, firewall, IDS/IPS technologies, and application layer security controls.
• Experience providing analysis and trending of security events, alarms, and information from a large number of security devices.

 

Workplace Factors
• Occasional weekend and evening work required.
• Occasional travel is required.

 

Candidates must submit an online application, a resume and a cover letter that demonstrates their fit for the position based on their experience, accomplishments and skills as well as their desire to advance the mission of Franciscan University.

 

Please apply online:  https://franciscan.edu/information-security-analyst/

 

For other information and job postings, visit our website at https://www.franciscan.edu

 

Franciscan University of Steubenville is committed to principles of equal opportunity and is an equal opportunity employer.