"Information Technology Specialist 3, Network Administrator & Cybersecurity Analyst"

Job Description

This position provides reliable, secure, productive, and convenient networked data sharing, printing, and communication services to faculty, staff, administrators, and students through the design, planning, installation, security, and maintenance of the College’s network systems and associated software. The position serves as a primary technical lead for network security and compliance, including implementation and operational support of security controls aligned with NIST 800-171, Minnesota State system security policies, and applicable legal and regulatory standards. The incumbent also assesses, maintains, and periodically upgrades cybersecurity controls and network infrastructure to ensure secure, compliant, and resilient operations.

PRINCIPLE RESPONSIBILITIES AND RESULTS

• Configure network equipment to provide secure and reliable network services
• Install and configure routers, switches, virtual private network equipment, other network equipment, as needed, following State of MN, Minnesota State Colleges and Universities (Minnesota State), and standard industry guidelines and practices.
• Identify, evaluate, and recommend equipment and applications that will enhance the overall reliability or manageability of the network.
• Evaluate network security needs across all campus networks.
• Test and evaluate new network services and evaluate network and software security.
• Monitor network security through SIEM tools such as MDE, MDI, and Splunk to identify and resolve security network security issues.
• Configure and maintain internal firewalls and VPN devices.
• Evaluate and implement network security configurations that support compliance with NIST 800-171, Minnesota State security requirements, and industry best practices.
• Monitor network security through SIEM tools and respond to cybersecurity alerts.
• Implement secure configurations for routers, switches, firewalls, and VPN devices.
• Design campus-wide network services that provide reliable and secure data services. Analyze college operations and procedures associated with network and data security.
• Identify network services needed to support college operations and changes to comply with data and network security policies and procedures.
• Identify the equipment and applications needed to best provide the identified services within the parameters outlined in policies and procedures.
• Conduct design reviews and risk assessments to ensure proposed solutions meet security, compliance, and operational requirements.
• Align network architecture with evolving cybersecurity standards and NIST control families.
• Troubleshoot problems associated with network performance problems.
• Use diagnostics and forensic tools to identify security-related anomalies.
• Recommend preventive security measures to reduce recurring threats and vulnerabilities.
• Protect reliable data backup services to protect against electronic data loss.
• Identify and evaluate all resources needed to backup server-based data and applications.
• Install and configure backup software.
• Establish and follow industry standard data backup procedures.
• Ensure the equipment and procedures operate adequately to restore all data in the event of a server failure or major disaster.
• Ensure backup procedures align with NIST guidelines and Minnesota State system requirements for data protection.
• Monitor campus-wide network traffic and performance to ensure the design and configuration is functioning as expected.
• Establish and maintain a baseline of network performance for comparison during troubleshooting problems.
• Monitor network equipment logs to detect unauthorized attempts to access network resources.
• Monitor network performance and adjust network design and equipment configurations, as needed, to improve data flow performance and/or security. Patch systems as soon as vulnerabilities are known and patches become available.
• Lead or participate in incident response investigations in cooperation with Minnesota State IT Security.
• Monitor network services to ensure bandwidth provisions and other network compliance to the College's acceptable use policy.
• Report all security violations to supervisors and appropriate Minnesota State agencies.
• Conduct ongoing review of cybersecurity logs and correlated events through SIEM platforms.
• Participate in incident response activities with Minnesota State IT Security.
• Establish and maintain all documentation necessary to allow the maintenance and restoration of all network services in the network administrator's absence.
• Establish documentation relating to network services to include equipment specifications and configurations, software license and registration information, campus-wide network designs, including diagrams, as appropriate, resource locations and installation procedures, referencing technical or user manuals, as appropriate, any customizations and configuration details and system-level passwords or other security information needed to access all network equipment.
• Maintain system documentation that supports audits, NIST compliance reviews, and security assessments.
• Maintain currency In Industry trends and developments and other duties as assigned.
• Maintain currency in industry trends and developments in the area of network equipment, monitoring, and troubleshooting strategies.
• Monitor and resolve Help Desk tickets and walk-in IT Assist Southeast Information technology
• Perform other related duties as assigned to ensure the smooth functioning of the department and maintain the reputation of the organization as a viable business partner.
• Maintain awareness of evolving cybersecurity threats and mitigation strategies.
• Analyze incident patterns and recommend corrective actions.

Salary Range

$69,697.00-$114,569.00 Compensation will be determined based on the candidate’s experience, education, and qualifications as they relate to the requirements of the position.

Minimum Qualifications

• Three years of work experience in network administration in a Microsoft, Cisco, and/or Ubiquity networking environment.
• Advanced working knowledge of network hardware, software and protocol; cloud-based servers, wireless networks and services; management practices to include network operating systems, networking essentials (switching/routing including design, configuration and implementation and network security issues and practices).
• Installation, configuration and maintenance of network equipment along with technical skills sufficient to maintain, troubleshoot, and develop enhancements that equipment and related software.
• Knowledge of industry standard design principles for data networks including the use of network address translation (NAT), virtual local area network (VLAN), virtual private network (VPN) and data encryption.
• Knowledge of network protocols such as TCP/IP, UDP, IPsec ESP and AH, L2TP, VLAN 802.IQ, VTP and related IP packet information.
• Experience writing documentation including establishing and maintaining system design and configuration documentation along with being able to present information and ideas to group(s) of people.
• Ability to look at a problem, identify the issue, and repair with minimal downtime, either independently or as part of a team.
• Knowledge of cybersecurity frameworks, including NIST 800-171, CIS Controls, or equivalent.
• Knowledge of legal and regulatory standards impacting network security (e.g., FERPA, GLBA, Minnesota Government Data Practices Act).
• Experience implementing secure configurations, monitoring security events, and managing compliance-related documentation.
• Understanding of risk assessment processes and application of security controls.

Preferred Qualification

• Bachelor's degree or higher in information technology, computer science, computer information systems, or other related degree.
• One year or more of IT experience in higher education – preferably in the Minnesota State system.
• Possession of industry certifications relating to job description.
• Demonstrated experience with cloud networking security on modern cloud solutions (e.g. Azure, AWS, GDP)
• Proficiency with SIEM tools such as Microsoft Defender Endpoint and/or Microsoft Defender for Identity and/or Splunk
• Experience leading or participating in incident response and forensics investigations.
• Knowledge of industry trends and developments in network systems and services

Work Shift

Monday through Friday, day shift, with occasional evenings and weekends based on project needs and operational demands.