Information Security Analyst (Information Security Analyst II)

Position Summary

San Diego State University is seeking a detail-oriented and collaborative Information Security Analyst to join the Information Technology Security Office (ITSO). In this role, you will help protect the university's digital environment by strengthening endpoint security, monitoring threats, and supporting compliance efforts. You'll work closely with campus partners to ensure secure systems that support teaching, research, and student success across the university.

Key Responsibilities:

• Endpoint Security & System Protection
  • Implement, manage, and continuously improve endpoint security controls across university devices.
  • Monitor and strengthen protections such as malware defense, system configurations, and access controls.
  • Partner with IT teams to deploy secure solutions that balance security with operational needs.
• Vulnerability Management & Compliance
  • Conduct vulnerability scans, assess risks, and coordinate timely remediation efforts.
  • Manage patching processes and ensure systems meet security and compliance standards.
  • Monitor and report on system compliance, identifying and addressing gaps.
• Security Monitoring & Incident Response
  • Analyze security alerts and logs to detect, investigate, and respond to potential threats.
  • Support incident response efforts, including containment, documentation, and follow-up actions.
  • Help improve response procedures and security playbooks.
• Reporting, Documentation & Collaboration
  • Develop dashboards and reports to communicate security posture and trends.
  • Maintain documentation to support audit readiness and operational continuity.
  • Provide guidance to campus stakeholders on secure practices and data protection.
• Governance & Risk Support
  • Contribute to security standards, risk assessments, and compliance initiatives.
  • Support audit processes and ensure alignment with CSU and regulatory requirements.

Why Join Us?

• Mission-driven work - Help safeguard systems that support student learning, research, and innovation.
• Collaborative culture - Work alongside a supportive IT and campus community.
• Impact at scale - Protect a large, complex university environment with real-world security challenges.
• Growth opportunities - Build expertise in cybersecurity, compliance, and emerging technologies.

Position Information

• This is a full-time (1.0 time-base), benefits eligible, permanent/probationary position.
• This position is designated as exempt under FLSA and is not eligible for overtime compensation.
• Standard SDSU work hours are Monday - Friday, 8:00 a.m. to 4:30 p.m., but may vary based on operational needs.
• This position is eligible for telecommuting up to 3 days per week, following a training period during which on-site presence is required.

Department Summary

The Information Technology Security Office (ITSO), reporting to the Chief Information Officer (CIO), is part of the IT division. ITSO provides campus-wide core technology and security services, collaborating with university departments, external auxiliary organizations, and the CSU Chancellor's Office to support core technology and security services across the campus.

The SDSU OneIT Community is vital to the university's success by delivering core technology services across our campuses, colleges, administrative areas, and auxiliary units. Our mission is to support innovation in teaching, research, and service by strategically developing infrastructure, responsibly managing IT assets, actively engaging with our community, and fostering collaboration. Guided by our Vice President for Information Technology/Chief Information Officer, we uphold SDSU's commitment to learning, discovery, and engagement, with our core values-service, collaboration, respect, integrity, innovation, and professionalism-permeating every aspect of our work.

For more information regarding the Information Technology Security Office, click here.

Education and Experience

An equivalent to a bachelor's degree in a related field and two years of relevant experience. Additional experience which demonstrates acquired and successfully applied knowledge and abilities shown above may be substituted for the required education on a year-for-year basis. An advanced degree in a related field may be substituted for the required experience on a year-for-year basis.

Key Qualifications

• Experience with Windows endpoint management and automation tools (e.g., scripting, device management platforms, provisioning solutions).
• Knowledge of Windows endpoint configuration and policy management (e.g., Group Policy or similar tools).
• Experience supporting Windows system updates, patch management, and endpoint security tools (e.g., antivirus, EDR).
• Familiarity with Windows-based enterprise identity and access management systems (e.g., Active Directory or similar).
• Ability to translate technical requirements into actionable security and operational tasks.
• Working knowledge of common cybersecurity frameworks and standards (e.g., PCI-DSS, CIS Controls, NIST).
• Strong problem-solving skills with the ability to manage and prioritize multiple technical tasks.
• Effective communication skills with the ability to collaborate across technical and non-technical teams.
• Preferred experience supporting Jamf or similar endpoint management platforms and third-party application patching systems.
• Preferred experience with vulnerability management processes, including validation, remediation coordination, and exception handling.
• Preferred experience with endpoint security operations, including incident triage, evidence preservation, and ticket/workflow management.
• Preferred familiarity with endpoint security baselines/benchmarks and applying configuration hardening at scale, along with the ability to report on metrics and communicate findings to varied audiences.

Compensation and Benefits

San Diego State University offers competitive compensation and a comprehensive benefits package designed to support your well-being and professional growth.

Compensation:
Step placement will be determined based on relevant qualifications and professional experience, in alignment with the department's budget and equity guidelines.

• Initial step placement is not expected to exceed Step 1 ($6,492/month).
• Salary step placement for internal applicants will follow the CSUEU Collective Bargaining Agreement.
• CSU Classification Salary Range: $6,492-$9,458 per month (Step 1-Step 20).
• Future increases, including step advancements, are subject to contract negotiations

Full Benefits Package Includes:

• Generous Time Off: 15 paid holidays, vacation, and sick leave.
• Retirement: CalPERS pension plan with retiree healthcare, and reciprocal agreements with other California public retirement systems, including the UC.
• Health Coverage: Medical, dental, and vision options at low or no cost.
• Education Support: CSU tuition fee waiver for employees and eligible dependents.
• Optional Offerings: FlexCash, life and disability insurance, legal and pet plans.
• Campus & Community: Access to the library, campus events, employee groups, and volunteer and social activities.

Our benefits are a significant part of total compensation. Learn more at the SDSU Benefits Overview.

Supplemental Information

Apply by April 2, 2026, to ensure full consideration. Applications submitted after this date will be reviewed on an as-needed basis, and the position will remain open until filled.