Lead Security Analyst (Reg FT)

About The Position

Requirements

• A master's degree in Information Security or related field with 3 years work experience in information security management and/or related functions (such as IT audit and IT Risk Management) or a bachelor’s degree in Information Security or related field with at least six years of work experience in information security management and/or related functions.
• Hands-on team leadership and management experience.
• Must be highly analytical and effectively able to troubleshoot and prioritize needs, requirements and other issues.
• Excellent communications, teamwork, leadership and conflict management skills.
• Information security management qualifications, such as CISSP or CISM preferred.
• Ethical hacker certification or willingness to get certified.

Responsibilities

• Lead development, documentation and maintenance of information security policies, procedures, and standards across Information Technology Services and the college at large.
• Provide leadership for ongoing protection, detection and response services for college information resources and digital assets as identified in the college’s information security program and strategic plan.
• Monitor and routinely audit compliance to all information security procedures and policies, ensuring consistency of internal controls across departments.
• Manage and maintain information security tools such as SIEM, endpoint protection, vulnerability management systems, intrusion detection system and prevention systems (IDS/IPS) and other information security tools and cloud-based management consoles.
• Monitor changes in local, state, and federal regulations and accreditation standards affecting information security, and make recommendations to the Director of Technical Services and other college leaders on the need for policy changes.
• Liaison with and offer strategic direction throughout the organization on information security matters such as routine security activities plus emerging security risks and control technologies.
• Review, maintain, update, and recommend using a cloud computing checklist of all (SaaS, IaaS, PaaS) and other third-party hosted CCAC resources.
• Initiate, facilitate, and promote activities to create information security awareness throughout the college.
• Develop, implement and assess suitable information security awareness, training and educational activities.
• Lead the creation and maintenance of the information systems disaster recovery and business continuity plans; coordinate and conduct testing of these plans and the actual disaster recovery process.
• Independently perform risk assessments and work closely with the college internal auditor and other third-party auditors to preempt, mitigate, and respond to any audit findings that require action.
• Coordinate the annual audit of information security and make recommendations for improving security measures on-site and cloud.
• Monitor the internal control systems to ensure that appropriate access levels are maintained.
• Monitor, identify, and analyze security risks to determine their impact and relevance to the college’s assets.
• Conduct research, analyze data, reach conclusions, and make appropriate recommendations.
• Provide oversight for incident response for all college systems and information technology resources.
• Respond to security event escalations, and conduct detailed forensic analysis of potential incidents.
• Create and maintain all information system and software security certificate activities.
• Assist in system and software architecture and design to ensure that college assets are appropriately secure at all times.
• Lead and participate on projects that are related to Information Security at the college.
• Perform other duties as required or assigned.

Benefits

• Comprehensive Health Coverage: Access to an excellent health plan with a very low out-of-pocket expense network option.
• Generous Time Off: Enjoy a range of time-off benefits that are tailored to your position, along with a four-day workweek in the summer for an ideal work-life balance.
• Retirement Planning: Options include a 403(b) retirement plan with up to 10% employer match or a state-defined benefit pension.
• Financial Peace of Mind: Employer-paid benefits include group life insurance, short/long-term disability, and access to flexible spending accounts (FSAs).
• Wellness Support: Our Employee Assistance Program (EAP) is available for confidential support, with resources to address personal and professional challenges.
• Educational Support: Take advantage of tuition waivers, tuition reimbursement, Public Service Loan Forgiveness (PSLF) eligibility, and a variety of professional development opportunities to grow your career.
• Exclusive Employee Perks & Rewards: Save on theme parks, sporting events, electronics, and more!
• Additional Advantages: Free employee parking to make your commute easier.
• Remote Work Option: Hybrid (May be subject to change).