Operations Security Analyst (Network Analyst III)

Operations Security Analyst (Network Analyst III)

Job No: 501427
Work Type: Staff
Location: Dominguez Hills
Categories: Unit 9 - CSUEU - Technical Support Services, Temporary, Full Time, Information Systems & Technology

Position Information

This is a full-time, temporary position

** Successful candidates in these temporary appointments may be appointed from a few days up to one year depending on the assignment. Temporary appointments must end on or before the end of the fiscal year (June 30th of the following year), with the possibility of renewal.

Special Working Conditions

This position may require the incumbent to be on-call 24/7 to assist in revolving emergency or urgent issues. The incumbent is required to maintain contact with their campus outside of their normal working hours on a regular basis via the separate On-Call Procedures. Remote contact shall include telephone, cell phone, wireless data access device, remote monitoring of any hardware or software device, and/or electronic mail notification regarding the status of a campus system. Must be willing to travel and attend training programs off-site.

Conditions of Employment

Satisfactory completion of a background check (including a criminal records check) is required for employment. CSU will make a conditional offer of employment, which may be rescinded if the background check reveals disqualifying information, and/or it is discovered that the candidate knowingly withheld or falsified information. Failure to satisfactorily complete the background check may affect the continued employment of a current CSU employee who was conditionally offered the position.

Salary Information

The application deadline is Tuesday, July 6, 2021.

The salary range for this classification is: $6,249 - $12,100 monthly.

Major Duties

Under the general direction of the Information Security Officer, this position develops and maintains information security services and operations. Primary activities include assisting in the development of information security services; daily operational monitoring of security vulnerabilities, events, and incidents; performing risk assessments, and collaborating with functional and technical staff to identify and document security requirements.

Qualifications

Required Education and Experience:

Five years of professional related experience with a Bachelor degree in computer science or related field and professional information security certification such as Certified Information Systems Security Professional (CISSP), Systems Security Certified Practitioner
(SSCP), Certified Information Systems Auditor (CISA) or a master's degree in computer science or related field.

• Experience performing forensic analysis.
• Experience responding to security audits.
• Ability to conduct information security risk assessment.
• Knowledge of relational or key-value database engines such as Oracle, MySQL, SQLite, Red is, Riak, Cassandra, Hadoop/H Base.
• Demonstrated experience using a common scripting language (e.g. Perl, Python, php)
• Experience developing and maintaining software in C, C++, or Java.

Preferred Qualifications: Masters degree in computer science

Required Knowledge, Skills, and Abilities:

• Ability to apply campus information security policy and standards to develop specific security requirements. Ability to apply security models and frameworks to ensure appropriate security is maintained.
• Ability to design network vulnerability scans and provide remediation alternatives.
• Demonstrated experience assessing security risks against established standards and evaluating the effectiveness of controls.
• Demonstrated experience identifying emerging vulnerabilities and evaluating associated risks and threats.
• Advanced knowledge of database application and database security.
• Thorough working knowledge of software development life cycle (SDLC), structured programming and object-oriented design and development techniques, and change management.
• Thorough working knowledge of testing practices and application debugging and troubleshooting procedures.
• Demonstrated experience with Linux and UNIX operating systems and ability to use Windows and iOS operating systems. Ability to identify and implement critical maintenance fixes and to isolate and correct malfunctions, including interface problems.
• Ability to independently identify, assess impact, and develop recovery strategies and documentation for application or system failures.
• Working knowledge of common software application packages and tools for performance monitoring and issues tracking.
• Demonstrated ability to research and evaluate new technologies and software to meet user needs.
• Demonstrated ability to work with technical and non-technical staff to identify user requirements and translate them into technology-based solutions.
• Significant ability to use creative problem-solving skills and apply effective technical solutions.
• Excellent verbal and written communication skills, including the ability to prepare and deliver formal and informal documentation, presentations, and training to a variety of end-users.
• Excellent organizational and time management skills with the ability to set own priorities to coordinate multiple assignments with fluctuating and time-sensitive deadlines.
• Ability to foster and maintain positive and professional working relationships; ability to effectively handle interpersonal interactions at all levels and respond appropriately to conflicts and problems.
• Ability to provide lead work direction and train others.
• Interest and ability to maintain and enhance technical currency.
• General knowledge of requirements for accessibility and other relevant regulatory compliance.

Responsibilities

50% Application Administration and Maintaining Security Operation

• Design, Develop, Implement, and support technical security and network controls and assist with the development and implementation of the campus information security program.
• Provide technical design, analysis, support, and troubleshooting of assigned network applications, tools, and interfaces. Maintain and support assigned systems to ensure minimal downtime and loss of productivity and service.
• Performs daily operation tasks including checking campus Anti-Virus Console, Firewall Security rules, Secureworks, Cloud Broker, Perpetration Scanner, Web Scanner, Vulnerability Scanner, Compliance Scanner, and other software as assigned.
• Design, build, develop, implement, and perform network vulnerability scans, PCI Scanning, and provide remediation alternatives.
• Prepare and maintain documentation, including an inventory of campus confidential data and other high-risk information assets. Create guidelines for complying with campus requirements, either by devising solutions or by documenting practices already in use on campus.
• Analyze and implement functional requirements; research, design, develop, test, and implement applications, modifications, and interfaces. Use technology tools appropriately for application development and support.
• Install, implement, test, and troubleshoot software as needed including testing new software packages for deployment.
• Use System Development Life Cycle (SDLC) methodologies and procedures to facilitate application source code management and modifications.
• Analyze and implement network system, user system, and application needs; recommend and implement appropriate solutions. Develop and conduct user needs assessments.
• Analyze and implement security requirements and develop and implement procedures to meet these requirements. Regularly review assigned responsibilities to identify and manage security risks. Escalate security issues as appropriate.

40% Consultation, Collaboration, Support

• Consult and collaborate with functional and technical staff to identify and document requirements of software and network deployment and routine security operation.
• Determine, evaluate and implement alternative approaches to meet user needs and recommend optimal solutions.
• Provide support to campus employees regarding security concerns.
• Perform ongoing information security risk assessments throughout campus.
• Develop training materials and conduct training sessions and presentations.
• Document assignment status as required by supervisor. Escalate problems or unexpected resource requirements. Apply general knowledge of requirements for accessibility compliance where appropriate.
• Provide training to other employees as needed and provide lead work direction to student assistants.
• Use available resources to maintain and enhance technical currency. Maintain and develop interpersonal skills.
• Perform other job-related duties and special projects as assigned on IT project management software (Wrike).

10% Perform other duties as assigned.

Closing Statement

California State University, Dominguez Hills, is strongly committed to achieving excellence through a diverse workforce.

California State University Dominguez Hills is an Affirmative Action/Equal Opportunity Employer. We consider qualified applicants for employment without regard to race, religion, color, national origin, ancestry, age, sex, gender, gender identity, gender expression, sexual orientation, genetic information, medical condition, disability, marital status, or protected veteran status. For more information or definition of these terms, please visit:

https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf

https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf

Individuals with disabilities requesting accommodations under the Americans with Disabilities Act (ADA) may call the Human Resources Office at (310) 243-3771.

Clery Act crime statistics for CSUDH are available at https://www.csudh.edu/dhpd/clery/crime-stats/ , or by calling University Police at (310) 243-3639. Upon appointment, all candidates must furnish proof of eligibility to work in the U.S.

The California State University is Smoke and Tobacco-Free. Smoking, Vaping, and other Tobacco use are Not Permitted anywhere on University property. Education Code 42356, CCR Title 5, Article 9


Applications Close: 06 Jul 2021

To apply, visit: https://careers.csudh.edu/en-us/job/501427/operations-security-analyst-network-analyst-iii

jeid-5869b35d74fadf4dbf4faca5947cbc7b