INFORMATION SECURITY ANALYST

POSITION SUMMARY The Information Security Analyst reports to Executive Director of ITSS (Information Technology Support Services) at the District Office. The work schedule is 12 months per year; 40 hours per week; Monday - Friday; 8:00 a.m. - 5:00 p.m. This position is represented by CSEA (California School Employees Association), Chapter 363. POSITION PURPOSE Reporting to Executive Director, ITSS or an assigned administrator, the Information Security Analyst performs complex work related to the District’s information security program including testing, analysis and evaluation of the integrity and confidentiality of enterprise systems, network, assets and communication technology throughout the District. The position monitors security systems and conducts periodic risk assessments to identify, troubleshoot, diagnose, resolve and report security problems and breaches; assists in coordinating and conducting investigations involving District technology resources, and assists with security awareness training. DISTINGUISHING CHARACTERISTICS This position focuses on threat and vulnerability management with exposure and support on all aspects of the cybersecurity practice. Incumbent in this position should have advanced knowledge on risk identification, protection and compliance, threat detection, incident response plan development and annual review, and recovery services to achieve business resilience. KEY DUTIES AND RESPONSIBILITIES Analyze, evaluate and implement security applications, policies, standards and procedures intended to prevent the unauthorized use, disclosure, modification, loss or destruction of data; work with the campus community and other staff to ensure the integrity and security of the information technology infrastructure. Lead the development, testing and implementation of information security products and control techniques in all locations throughout the District. Work with campus and district technology teams to ensure the security of all applications and assets. Monitor and review security systems and logs. Identify, troubleshoot, diagnose, resolve, document and report security problems and incidents; help coordinate and conduct investigations of suspected breaches; respond to emergency information security situations. Collaborate with application programming team and other IT staff to ensure production applications meet established security policies and standards. Assist with training and education on information security and privacy awareness topics for District administrators, faculty and staff; assist in the development of appropriate security-incident notification procedures for District management. Work with vendors to conduct vulnerability assessments to identify existing or potential electronic data and assets compromises and their sources; participate in investigative matters with appropriate law enforcement agencies. Perform audits and periodic inspections of District information systems to ensure security measures are functioning and effectively utilized and recommend appropriate remedial measures to eliminate or mitigate future system compromises. Review, evaluate, and recommend software products related to IT systems security, such as virus scanning and repair, encryption, firewalls, internet filtering and monitoring, intrusion detection, etc. Monitor and maintain the District’s security event information system (SEIM) and data loss prevention software. Manage security systems and policies including but not limited to servers, firewalls, email security, and Microsoft 365 environment. Recommend and implement security policies, protocols, practices and lead in creation of security training and guidance to staff. Assist in the secure management and maintenance of the District’s network authentication systems for wired and wireless network access. Review security practices and controls of third-party service providers that handle District sensitive data, and review security controls and features of third-party software systems. Ensure that maintenance, configuration, repair and patching of systems occurs on a scheduled and timely basis utilizing best practices in change management and consistent with policies and procedures. Keep current with latest emerging security issues and threats through list servers, blogs, newsletters, conferences, user groups, and networking and collaboration with peers in other institutions. Perform other duties reasonably related to the job classification. EMPLOYMENT STANDARD Knowledge of: Compliance and industry cybersecurity standards frameworks such as NIST 800 and ISO standards. Emerging technologies and the possible impact on existing information systems, instructional processes and business operations. Incident response best practices and software license compliance laws. Troubleshooting tools for computing hardware, servers and network equipment including but not limited to switches, routers, and firewalls. Enterprise resource planning systems, Microsoft 365 and Active Directory and Azure Active Directory. Principles of program design, coding, testing and implementation. Advanced knowledge of desktop and server operating systems including Windows and Linux. Disaster recovery and backup including business continuity planning. Principles of training, support, and services to end-users. General research techniques and data driven analytics. Modern office administrative practices and use of tools including computers, websites and other applications related to this job. Skills and Ability to: Apply current NIST and ISO standards to current operations. Respond to incidents and events in a timely manner. Prepare clear and concise system documentation and reports. Prioritize assigned tasks and projects. Communicate complicated technical issues and the risks they pose to stakeholders and management. Establish and maintain effective and cooperative working relationships with others. Analyze situations accurately and adopt effective course of action. Coordinate, develop, and implement projects. Work with attention to detail and independently with minimum supervision.

#J-18808-Ljbffr