"Sr. Information Security Analyst"

Oversee the daily operational aspects of managing and monitoring the safeguarding of campus information assets. This includes, but is not limited to, managing all security platforms used by the information security office, vulnerability assessment and remediation auditing, development and maintenance of all information security documentation, administration of security awareness training, and ongoing maintenance of the information security web portal.

1. Manage the configuration and maintenance for all security platforms used by the information security office including local appliances/servers and/or secure cloud-based solutions. Perform updates to on-premises systems while managing best practice configurations to ensure full capabilities of security platforms are implemented. Develop and maintain documentation for all security platforms. (30%)
2. Manage vulnerability assessments and remediation auditing. Scan systems and network with available tools to discover and document vulnerabilities. Work with stakeholders to remediate identified vulnerabilities. Provide an ongoing assessment and archive of all identified vulnerabilities with documented remediation steps that were implemented. (20%)
3. Develop and maintain all Information Security documentation such as policies and standards in accordance with industry standard best practices. Research in-scope compliance mandates to ensure appropriate language is included to conform with compliance requirements. (20%)
4. Manage the administration and configuration of the Information Security Education and Awareness Training program. Provide reporting as needed to ensure compliance with annual policy requirements. (15%)
5. Develop and maintain the Information Security Office web portal to provide security related content that is organized and up to date. (10%)
6. Collaborate with Emergency Management on business continuity planning (BCP) for all identified departments. Assist with the technical administration of the BCP platform to ensure Emergency Management has appropriate access and ability to perform BCP functions. Work with department staff to assist with any BCP platform questions. (5%)

MARGINAL DUTIES: All other duties as assigned.

• Bachelor's Degree from an accredited institution required
• Three to five years of experience in enterprise application management, system administration or data analysis, or an equivalent combination of education and experience.
• Advanced proficiency with Microsoft (365, Defender, Graph, Azure, etc).
• Advanced proficiency with Enterprise Application Management.
• Advanced proficiency with Powershell/Scripting.
• Intermediate proficiency with Privileged Access/Endpoint Management, Log Data Analysis, and iPaaS/REST API's.
• Good oral and written communication skills
• Knowledge of IP layers and protocols
• Knowledge of Windows, Apple and Unix operating systems
• Ability to work independently
• Ability to work with confidential and sensitive information
• Industry certification required