Information Security Analyst

About The Position

Requirements

• Bachelor’s degree in Computer Science or a closely related field, OR an Associate’s degree combined with 2–4 years of experience in information security or IT operations.
• Ability to establish and maintain cooperative and effective working relationships with other members of the college and community, displaying cultural competence as well as emotional intelligence.
• Demonstrated commitment to the college’s core values of respect and inclusion, sustainability, integrity, collaboration, humor and well-being, innovation and quality. Bachelor's degree in information technology, Cybersecurity, Computer Science, or related field..
• Understanding of cybersecurity principles, tools, and compliance frameworks.
• Experience with Microsoft Azure, Active Directory, and security monitoring tools.
• Experience in information security and/or IT risk management with a focus on security performance and reliability
• Familiarity multiple risk management concepts, frameworks, and standards (CSC, NIST, ISO, COBIT)
• Excellent analytical, communication, documentation, and collaboration skills.
• Possesses relevant industry certifications such as CEH, CISA, CCET, Network+, Security+, CySa+, or Microsoft SC-900, demonstrating foundational and specialized knowledge in cybersecurity.
• Demonstrated understanding of the NIST Cybersecurity framework and auditing security controls identified in NIST800-171 and NIST SP800-53A.
• Knowledgeable on ITIL process management.

Nice To Haves

• Experience in higher education or public sector environments.
• English and Spanish verbal and written communication proficiency.
• Demonstrated multicultural competence.

Responsibilities

• Incident Management: Monitor, triage, and respond to cybersecurity threats and incidents across network, application, identity, and cloud layers.
• Vulnerability Management: Participate in vulnerability assessments and penetration testing to identify and remediate security weaknesses.
• Security Operations: Manage and maintain security tools (e.g., SIEM, IDS/IPS, vulnerability scanners), ensuring daily monitoring and compliance.
• Facilitate the integration of SOC/Managed Security Services activities with the broader Information Security team, ensuring consistent application of ITIL processes such as Incident Management, Problem Management, and Event Management.
• Identity Management: Support Office 365 email account management tasks, including user permissions, credential hand-offs, mailbox access provisioning, and coordination with identity and access management processes."
• Compliance & Risk Management: Assist in legal and regulatory compliance efforts; conduct risk assessments and support audit activities.
• Service Request Management: Handle, triage, and manage tier 2 level and up security-related tickets and requests from stakeholders, ensuring timely resolution and escalation as needed.
• Knowledge Management: Detect opportunities to develop, improve, and maintain security documentation, including knowledgebase articles and process guides.
• Process Improvement: Assist with the development and continual improvement of security-related processes, automation initiatives, and reporting tools.
• Cloud Support: Support secure cloud infrastructure through systems auditing and account lifecycle management.
• Collaboration & Training: Collaborate with IT and academic departments to ensure secure deployment of new technologies; provide security awareness training to staff and students.
• Reporting: Prepare and present reports on security incidents, vulnerabilities, compliance status, and process improvements to leadership.
• Professional Development: Stay current with emerging security threats, trends, best practices, and ITIL service management principles.
• Perform related duties as assigned.