Security Analyst (26-27)

IDEA Public Schools•El Paso, TX

About The Position

This is a vacancy for the 26-27 school year with a target start date of July 1, 2026 Mission: The role of the Security Analyst is to utilize current Information Security policies, standards and guidelines to implement and maintain operational security controls to protect all of IDEA’s technology resources including networks, systems, data centers, endpoints and applications to prevent loss of data or malicious acts. Supervisory Responsibilities: None Location: This is a full-time position based in Texas, with preference given to candidates who live in Austin, El Paso, Houston, Permian Basin (Midland/Odessa), Rio Grande Valley, San Antonio, and Tarrant County (Fort Worth), or who are willing to relocate. Travel Expectations: 1-2 times a year What You’ll Do – Accountabilities Essential Duties: Implement, enforce, and continuously maintain enterprise security policies, standards, and baseline configurations across networks, systems, endpoints, data centers, and applications to protect IDEA’s technology environment. Configure, administer, and monitor operational security platforms—including endpoint protection, email security, firewalls, VPN, cloud security, and vulnerability scanning tools—to detect and prevent security incidents and malicious activity. Lead endpoint security architecture and daily operations across Intune, Google Workspace, Apple School Manager, and AWS-related environments, ensuring secure and compliant device lifecycle management. Troubleshoot and resolve network and security-related issues while supporting maintenance, upgrades, and performance optimization to sustain high availability and organizational uptime targets. Strengthen cybersecurity maturity by managing access controls, firewall/ACL policies, and vulnerability remediation efforts, while partnering with managed security providers on escalations and incident response actions. Produce and maintain accurate technical documentation for major security initiatives, including maintenance plans, scan results, incident response playbooks, implementation records, and operational procedures. Meet service delivery expectations by prioritizing and resolving Helpdesk tickets within established timelines and providing proactive, customer-focused communication and support to end users and stakeholders. Additional Duties and Responsibilities: Additional Duties and Responsibilities include providing dedicated support for CTE devices and instructional applications to ensure secure setup, reliable performance, and instructional readiness across campuses. The Security Analyst also supports and oversees student safety and device monitoring workflows in Senso (Teams Supervision), including policy-aligned monitoring, escalation, and documentation of concerns. This role partners with campus and district teams to prepare and support district assessment testing, including device readiness checks, network/access validation, secure browser requirements, and rapid troubleshooting during testing windows. Additional responsibilities include coordinating security patching and vulnerability remediation on endpoints and critical systems, maintaining asset and configuration inventories for audits and compliance reporting, and delivering basic cybersecurity awareness guidance to staff to reinforce secure technology practices.

Requirements

An associate’s degree in Information Technology, Cybersecurity, Computer Science, or a related technology field
Minimum of 3 years of professional IT or Information Security experience in a multi-site environment.
Strong incident triage and escalation judgment in fast-paced K–12 environments
Ability to correlate logs/events across SIEM, endpoint, network, and cloud tools
Working knowledge of identity and access management (SSO, MFA, conditional access, RBAC)
Experience with secure configuration baselines and hardening standards (CIS/NIST-aligned)
Scripting/automation fundamentals (PowerShell or Python) for reporting, remediation, and task efficiency
Data analysis and security metrics reporting for audits, leadership updates, and compliance tracking
Change management discipline, including risk/impact assessment and rollback planning
Strong technical documentation skills (runbooks, diagrams, SOPs, incident timelines)
Vendor coordination and third-party risk follow-up for security tools and managed services
Cross-functional collaboration with Instructional Technology, Testing, Helpdesk, and Campus Ops teams
Excellent communication skills for translating technical risk to non-technical stakeholders
High ownership, prioritization, and time management across tickets, projects, and incidents
Knowledge of student data privacy expectations and regulatory awareness (FERPA/COPPA best practices)
Ability to support after-hours maintenance, emergency response, and testing cutover windows
Intune management of large scale Enterprise environment

Nice To Haves

Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related technology field
5 years of professional IT or Information Security experience in a multi-site environment.

Responsibilities

Implement, enforce, and continuously maintain enterprise security policies, standards, and baseline configurations across networks, systems, endpoints, data centers, and applications to protect IDEA’s technology environment.
Configure, administer, and monitor operational security platforms—including endpoint protection, email security, firewalls, VPN, cloud security, and vulnerability scanning tools—to detect and prevent security incidents and malicious activity.
Lead endpoint security architecture and daily operations across Intune, Google Workspace, Apple School Manager, and AWS-related environments, ensuring secure and compliant device lifecycle management.
Troubleshoot and resolve network and security-related issues while supporting maintenance, upgrades, and performance optimization to sustain high availability and organizational uptime targets.
Strengthen cybersecurity maturity by managing access controls, firewall/ACL policies, and vulnerability remediation efforts, while partnering with managed security providers on escalations and incident response actions.
Produce and maintain accurate technical documentation for major security initiatives, including maintenance plans, scan results, incident response playbooks, implementation records, and operational procedures.
Meet service delivery expectations by prioritizing and resolving Helpdesk tickets within established timelines and providing proactive, customer-focused communication and support to end users and stakeholders.
Provide dedicated support for CTE devices and instructional applications to ensure secure setup, reliable performance, and instructional readiness across campuses.
Supports and oversees student safety and device monitoring workflows in Senso (Teams Supervision), including policy-aligned monitoring, escalation, and documentation of concerns.
Partners with campus and district teams to prepare and support district assessment testing, including device readiness checks, network/access validation, secure browser requirements, and rapid troubleshooting during testing windows.
Coordinating security patching and vulnerability remediation on endpoints and critical systems, maintaining asset and configuration inventories for audits and compliance reporting, and delivering basic cybersecurity awareness guidance to staff to reinforce secure technology practices.