SECURITY ANALYST

Location
New York, United States
Salary
Salary Not Specified
Posted
Feb 19, 2021
Employment Type
Full Time


Join our growing information security team at Ithaca College! As an Information Security Analyst you'll work with others in security and IT to enhance our preventative and detection systems and capabilities. We have a great tool set and supportive partners across the institution. Also check out our Information Security Engineer position!

Under the general direction of the Information Security Officer, the Information Security Analyst works as part of a team to implement, configure, and manage leading commercial and open-source security tools and controls to prevent, detect, and reduce the impact of attacks against the college. This position focuses on technical aspects of IT security, especially monitoring and security operations, but also assists with authentication and dynamic access control, web and application security, cloud application and infrastructure security, endpoint security, vulnerability management, network and host-based firewalls, and intrusion detection and prevention capabilities. The Office of Information Security is responsible for the security of the college’s information resources, as well as identity and access management, and the campus card access and security camera systems.

The Information Security Analyst supports and is supported by other members of the security and access management team, others in the IT department, and our students, faculty, staff, vendors, and service providers to implement appropriate and reasonable security protections for Ithaca College.

SUPERVISION:

This position reports to the Information Security Officer and has no supervisory responsibilities for staff but may supervise student employees.

ESSENTIAL DUTIES:

Duties may include but are not limited to the following. Other duties may be assigned.

1. Develop and maintain deep technical knowledge of security threats and detection techniques related to network equipment, endpoint and server systems and software, other connected devices, websites and applications, and cloud services.

2. Perform monitoring and security operations, including threat hunting and incident detection, assessment, and response. Manage alert queues. Determine which events and alerts warrant attention, and respond or escalate as appropriate.

3. Fulfill service requests from end users, IT staff, public safety, legal counsel, HR, and other departments, some of which are related to investigations.

4. Manage, enhance, and use on-premises and cloud-based security information and event management (SIEM), threat intelligence, and security orchestration automation and response (SOAR) systems and services. Identify additional logs and other information needed, integrate with various systems, and create queries, dashboards, alerts, and workflows.

5. As part of the Incident Response Team, assist the Information Security Officer with incident response activities, including initial assessments, escalations, and coordination with legal and service providers, and law enforcement.

6. Monitor firewall and intrusion detection and prevention logs, and create alerts and workflows for network, host, and hypervisor-based firewall systems.

7. Monitor and handle alerts related to protections against known and novel malware and other threats to client and server systems. Technologies include endpoint security/anti-virus software and features like attack-surface reduction, exploit protection, and application control.

8. Monitor cloud security capabilities, including cloud access security broker (CASB), information protection, data loss prevention, and email encryption.

9. Perform threat and vulnerability assessments on networks, systems, web sites, and applications, and work with staff and faculty to eliminate vulnerabilities found or otherwise mitigate associated risks. Monitor for compliance with security standards and configuration baselines.

10. Manage projects related to security and access management.

11. Develop, analyze, and present scheduled and ad hoc reports, and make recommendations based on the data from various sources.

12. Develop and maintain security documentation.

13. Apply broad technical background and the visibility provided by security technologies to support various troubleshooting efforts by others in IT.

14. Develop and demonstrate a multicultural awareness and contribute to cultivating an inclusive, diverse, and respectful College community. Demonstrate civil and inclusive behavior when interacting with staff, faculty, students and visitors to the College. Promote a flexible, collaborative and inclusive work and living environment and engage in educational opportunities to increase awareness and understanding of diversity and inclusion.

QUALIFICATIONS:

Required:

  • Bachelor's degree or equivalent experience, and a minimum of two years’ experience in information security, systems administration, network engineering, and/or other technical support. Equivalent experience may include a combination of education, training, security certification, and directly-related technical experience.
  • Technical understanding of information security; technical knowledge of Microsoft Windows, Apple OS X, and/or Linux operating systems
  • Technical knowledge of how systems communicate across networks
  • Strong written and verbal communication skills and interpersonal skills, including the ability to communicate effectively on technical issues with non-technical personnel; and demonstrated ability to work both independently and collaboratively and across organizational boundaries


Preferred:

  • Technical security certifications, such as those from GIAC
  • Work experience in a higher education environment
  • Experience with a variety of contemporary security technologies, applications, and enterprise management systems


WORK ENVIRONMENT:

Most of the work of the incumbent is carried out within a generally accessible, safe, indoor environment. The incumbent will be required to operate a personal computer and associated equipment as well as other office equipment used in the day-to-day office operations. The incumbent will be required to attend meetings, workshops and conferences on and off campus during and outside of normal business hours. Working remotely is a possibility for this position. The incumbent will be required to respond to technical emergencies both during and outside of normal business hours.

To apply, please submit cover letter, resume and list of three professional references.

Visa sponsorship is not provided for this position.

Ithaca College is committed to building a diverse academic community and encourages members of underrepresented groups to apply. Experience that contributes to the diversity of the college is appreciated.

Similar jobs

Similar jobs