Job Details

This ad is expired.
California State University, Fresno
  • Position Number: 1612349
  • Location: Fresno, California
  • Position Type: Computer and Information Technology
Job Title: Information Security Analyst (Network Analyst - Foundation or Career)
Job ID: 13783
Full/ Part Time: Full-Time
Job Code: 0430
Department: Information Security


To view full job description including minimum qualifications and to apply online: http://jobs.csufresno.edu/

Salary:

Network Analyst- Foundation Level:
Salary Range: $3,470 - $6,681 per month (Anticipated Hiring Range: $3,585 - $4,167 per month)
Note: This is a full-time, probationary, non-exempt position.

Network Analyst- Career Level:
Salary Range: $4,372 - $10,792 per month (Anticipated Hiring Range: $5,000 - $7,000 per month)

Note: This is a full-time, probationary, exempt position.

Note: Incumbent may be classified as either Foundation or Career level depending on qualifications and experience.

Overview:

This position assists the Information Security Officer (ISO) in developing and maintaining a comprehensive security program for Fresno State. Provides functional and technical support to campus personnel in support of ongoing assessment of campus security posture and protection of electronically and physically stored information assets across campus systems, per Fresno State and CSU compliance requirements, objectives and policies. Utilizes advanced communication and listening skills while working with campus Risk Management and legal counsel. Oversees activity for confidential processes and practices. Reviews, updates, and potentially creates university-wide policy relating to information security. Supports design, implementation, configuration, and maintenance, physical and virtual tools to mitigate risk to the university and its computing endpoints. Other duties include Information Security Team responsibilities such as developing firewall rules, analyzing metrics, researching issues and reporting results.

The position is required to monitor the trouble ticket system for questions/problems needing immediate response during business hours. A strong commitment to customer service, quality workmanship, and continuous technical improvement are essential to the position.

General Expectations:
At the Foundation Level, the entry-level Information Security Analyst professional will work on assignments that are generally routine in nature, under direct lead direction, and with general autonomy. The entry-level professional should grow proficient with routine assignments and should be able to grow into more responsibilities to handle more complex assignments and projects, with more and more general lead direction and will grow to handle work assignments and projects with more and more autonomy.

At the Career Level, the experienced Information Security Analyst professional knows how to apply theory and knows how to put theory into practice with in-depth understanding of the information security and privacy field and will demonstrate proficiency in many aspects of the field. The experienced professional will independently perform the full range of responsibilities within the information security field where analysis requires evaluation and professional judgment in selecting methods and techniques for obtaining solutions and resolving non-routine problems, often times requiring significant decision-making. Work and actions may affect organization objectives and campus goals. This professional will work under general lead oversight or general supervision, will receive minimal oversight on day-to-day work, and will receive general direction on new assignments. Occasionally evenings and weekends are expected. Some travel is expected.

Position Summary:

Major Duties of the job include:
At the Network Analyst - Foundation level, incumbent will assist and support the Network Analyst - Career with the following duties and responsibilities:

50% Information Security Analytics, Monitoring, Program Assessment and Compliance
  • Develops and operates log analysis tools
  • Analyze operational processes and create recommendations to improve compliance with information security standards
  • Analyze risk and evaluate technical controls
  • Reviews logs and automated monitoring to detect and address information security threats as they arise
  • Analyze, develop, and interpret operations and processes related to security policy, practices and assessment
  • Compliance
    o Review and evaluate compliance based on policy and practice controls, reporting results to the Information Security team
    o Implementation, maintenance, and enforcement of operational procedures and practices to ensure compliance with campus and CSU policies in standards including but not limited to security awareness training for campus; management of incident prevention, detection and incidents response; and business continuity and disaster recovery
    o Assists with audits

    40% Information Security Operations, Documentation, Training, and Incident Response
  • Provides Tier 3 support for Help Desk, Desktop Services Group, or Information Technology Liaison initiated tickets
  • Assists ISO in forensic investigations and incident response
  • Lock, implement holds, and archive accounts as indicated by Information Security Office procedures
  • Escalates issues to vendor and community support resources where appropriate
  • Creates and maintains appropriate documentation for procedures
  • Training
    o Advise, document, implement training for assessing information security technologies and/or operational practices
    o Builds and deploys effective training materials and tracks assignment and completion of information security training
    o Provide in-person information security training to end users
  • Implement solutions that provide detection, prevention, containment, and deterrence mechanisms to protect and maintain the integrity of campus data, infrastructure, systems, applications, and physical assets
  • Maintain security applications and systems such as firewall, SIEM, log aggregation, scanning and analysis

    10% Team Work and Communication
  • Works closely with Help Desk to make sure they are aware of changes and new processes
  • Maintains positive, professional and constructive working relationships with technical staff across campus; communicates effectively
  • Works with the other units within Information Technology Services to present a consistent and effective set of services to the campus community, and ensure the success of the entire unit
  • Creates and maintains content for the Information Security website and communication with the division, the campus, and the community

    Secondary Duties of the job include:
  • Other duties as assigned

    Knowledge, Skills, and Abilities:

    At the Network Analyst - Foundation level:
  • Knowledge of information security best practices, policy compliance, and technological controls
  • Knowledge of information security practices and concepts, including intrusion detection/prevention, access controls, risk analysis, vulnerability scanning, and data encryption
  • Demonstrated experience with enterprise systems optimization and performance tuning
  • Demonstrated exceptional customer relationship skills and client relationship management skills
  • Strong organizational skills; excellent written, verbal, and interpersonal communication skills; excellent collaboration skills and successful experience working effectively in team-based, cross-organizational environments; these are needed to work effectively with a wide variety of staff, outside consultants, and vendors
  • Excellent analytical and process-oriented skills
  • Excellent documentation skills
  • Excellent capability to effectively communicate with both technical and non-technical audiences
  • Ability to:
    o Work with a high degree of autonomy and with a high level of accountability and follow-through with emphasis on delivering timely results
    o Investigate information security events discretely
    o Work collaboratively with Fresno State, CSU personnel, and consultants
  • A history of timely, regular attendance and positive performance evaluations
    At the Network Analyst - Career level, in additional to the Foundation level required knowledge, skills, and abilities:
  • In-depth knowledge of information security best practices, policy compliance, and technological controls
  • In-depth knowledge of information security practices and concepts, including intrusion detection/prevention, access controls, risk analysis, vulnerability scanning, and data encryption

    Education and Experience:

    At the Network Analyst - Foundation level:
  • Bachelor's degree (BS) from an accredited college or university in Information Systems, Computer Science, Information Security, Cybersecurity, or a closely related field; additional relevant experience can be substituted for academic work
  • One year of experience in information systems as a information security analyst, system administrator, application developer, or network administrator
    At the Network Analyst - Career level, in addition to the Foundation level required education and experience:
  • Five years' experience in information systems as a system administrator, application developer, or network administrator
  • A minimum of two years' experience with application and network security
  • A minimum of two years' experience researching, analyzing, and recommending information security solutions
  • A minimum of two years' experience identifying, assessing, and remediating technical security vulnerabilities
  • Experience with large-scale infrastructure architecture

    Preferred Skills:

    At the Network Analyst - Foundation level:
  • Advanced degree in the field of information security or cyber security
  • A minimum of two years of experience in the field of information security or cyber security strongly desired
  • Professional training in information security and security certifications, such as CISSP, CISM, GIAC, GSEC, or CompTIA Security+ are strongly desired
  • Strong deployment, implementation and configuration experience with next-generation firewalls, such as those from Palo Alto Networks
  • Strong deployment, implementation and configuration experience with log aggregation tools, such as Splunk or LogRhythm
  • Expertise with ITIL or a similar framework, especially Change Management, Service Management, Problem Management
  • Change Management experience or certification
  • Project Management experience or certification
  • Experience in a higher education environment or a large, complex organization
  • Excellent emotional intelligence and self-awareness

    At the Network Analyst - Career level, in additional to the Foundation level preferred skills:
  • A minimum of five years of experience in the field of information security or cyber security strongly desired





    Copyright 2017 Jobelephant.com Inc. All rights reserved.

    Posted by the FREE value-added recruitment advertising agency


    jeid-e142957cede9924295d6e4a5bab0a695