Cyber Security Analyst
Description:
Description
The Cyber Security Analyst (CSA) is responsible for securing South Suburban College's information systems by proactively identifying and mitigating threats. Reporting to the Executive Director of Information Technology, the CSA plays a key role in monitoring, analyzing, configuring, and securing networks, systems, and applications. This role involves close collaboration with teams across Network Systems Academic Computing and Information Technology to ensure that systems are not only securely designed, developed, and deployed but also properly configured and managed to maintain strong security and risk management controls.
Examples of Duties
Monitor institutional systems and networks to proactively detect and mitigate cyber threats.
Collaborate with the Security Operations Center (SOC) to resolve security incidents efficiently.
Coordinate with Academic Computing and Network Systems teams on critical software and firmware updates beyond the regular patch cycle.
Manage account lifecycle and security settings within Azure AD and on-premises Microsoft Active Directory Infrastructure.
Provide security expertise and consultation to internal technical and non-technical teams.
Investigate and respond to real-time alerts and suspicious activity.
Analyze security reports for policy violations or compliance issues.
Track emerging cybersecurity threats and recommend risk mitigation strategies.
Conduct and manage vulnerability assessments and across systems and networks.
Oversee annual cybersecurity assessments and penetration testing.
Evaluate new security technologies for potential enterprise implementation.
Configure and manage the institution's security systems and policies, to ensure protection of campus-wide IT infrastructure.
Ensures compliance with state and federal law regarding information security.
Periodically review and update institutional information security policies. Create new security policy and procedure documents as necessary.
Develop and deliver regular group training sessions for staff on cybersecurity awareness, safe computing practices, and emerging threats. Other duties may be assigned.
Typical Qualifications
Bachelor's degree in Information Technology or a related field, or equivalent industry training and certifications.
3-5 years of experience in a cybersecurity or IT-related role.
Solid understanding of enterprise-class technologies (firewalls, routers, switches, wireless access points, VPNs).
In-depth knowledge of Microsoft technologies: Azure, Active Directory, SQL Server, Office 365, Windows Server and Desktop OS.
Proficiency in PowerShell scripting
Experience with Microsoft Defender, Microsoft Intune, Microsoft Purview, SentinelOne Singularity XDR, SolarWinds Orion, Cisco Umbrella.
Strong written and verbal communication skills, with the ability to convey security concepts to both technical and non-technical audiences.
Familiarity with security and compliance frameworks: NIST, ISACA, COBIT, ISO.
Self-driven problem-solver with the ability to work independently.
Strong interpersonal and collaboration skills, with the ability to work effectively across departments and with stakeholders at all levels.
Must successfully pass a criminal background check.Preferred Qualifications
One or more of the following certifications: CompTIA Network+, CompTIA Security+, CEH, CISM, CISSP, GSEC.
Experience managing and securing on-premises and cloud-hosted systems.
Experience with application and database security best practices.
Supplemental Information
This is a regular full-time technical professional exempt position for 40 hours a week, 52 weeks a year. Board approval is required. The annual salary comes with the following employee benefits:
•$15,600 Flexible Health Benefit
•15 Vacation, 12 Medical and 3 Personal Days Earned within First Year of Employment
•16 Holidays, 5 Winter Break Days, 4-Day Summer Workweek