| Position Title: | IT Information Security Analyst I | | | Location: | Big Rapids (Main Campus) | | | Department: | 54000 - Information Technology Services | | | Advertised Salary: | $45,000-$55,000 Depending upon education, experience, and other requirements. Comprehensive benefit package (health care, vacation, etc.) | | | FLSA: | Exempt | | | Temporary/Continuing: | Continuing | | | Part-Time/Full-Time: | Full-Time | | | Union Group: | N/A | | | Term of Position: | 12 Month | | | At Will/Just Cause: | Just Cause | | | Summary of Position: | Assists with monitoring, providing access, and analyzing threats to cyber security data and systems to ensure the safety and protection of information system assets under close supervision. Documents any security issues or breaches discovered. Assists in providing information security training. Assists the Information Security Manager with developing and implementing security strategies and best practices and monitoring compliance with IT procedures, university policy, and applicable law. Collaborates with IT Services staff to ensure university devices and data are appropriately protected. | | | Position Type: | Staff | | | Required Education: | Bachelor’s degree
| | | Required Work Experience: | One to two years in information security or IT related area with a strong working knowledge of operating systems, network utilities, and security software. Knowledge of security frameworks, HIPAA, FERPA, and PCI DSS. | | | Required Licenses and Certifications: | | | | Physical Demands: | - Office Environment
- Bending
- Carrying
- Moving
- Reaching
- Sitting
- Twisting
- Balancing
- Lifting
- Pulling/Pushing
- Repetitive Movement
- Standing
| | | Additional Education/Experiences to be Considered: | Preferred: Bachelor’s degree in Information Security or IT related field.
CISSP, SSCP, A+ certification, and/or Security+ certification. One-year experience.
| | | Essential Duties/Responsibilities: | Assists with monitoring of daily system operations using intrusion detection and prevention systems and assesses findings for remediation.
Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security procedures, policies, and best practices.
Documents and reports application security concerns and escalates security incidents in a timely manner to the appropriate personnel.
Assists with information security incident response and computer forensic activities.
Generates notification alerts for compromised assets.
Receives, processes, and implements security change requests.
Assists with vulnerability-scanning, analysis, and testing of security controls.
Assists in facilitating security awareness programs.
Completes work orders as assigned within the service management application.
Assists in the development and management of policies, standards, guidelines, and procedures related to information security.
Takes an active role in meetings, committees, projects, and outside professional groups as requested or assigned.
Performs work duties according to the university and department policies, procedures, standards, and guidelines
Researches and keeps abreast of testing tools, techniques, and process improvements in support of security topics.
Demonstrates an understanding of diversity, equity, and inclusion, especially in working relationships with students, faculty, staff and community members.
Any other duties assigned within the position classification area. | | | Marginal Duties/Responsibilities: | Performs system audits and vulnerability assessments, including user accounts, application access, server, file systems, and external web integrity scans to determine compliance.
Lift, move, and relocate computing equipment.
Provide occasional support resources to other units in IT Services as needed.
Other duties as assigned.
| | | Skills and Abilities: | Performs all duties in compliance with applicable University policies and procedures and state and federal requirements.
Responsible for maintaining the confidentiality of designated information.
Assists with training of student employees within the area of responsibility.
Supports the core values of the University.
Adapts readily to changing technology.
Analyzes problems logically; develop and test solutions thoroughly.
Communicates well, both orally and in writing.
Evaluates, selects, and implements security-related software and hardware.
Remains calm under pressure/during a crisis.
Works after hours as necessary, especially during security incidents and emergencies.
Works effectively with diverse university personnel.
Works independently and uses sound judgment.
Demonstrates commitment, experience and understanding for diversity, equity, and inclusion.
| | | Required Documents: | - Resume
- Cover Letter
- Unofficial Transcript 1
| | | Optional Documents: | | | | Special Instructions to Applicants: | Unofficial Transcript 1 (REQUIRED): Applicants must attach a copy of unofficial transcript of a Bachelor’s degree.
Transcript must include: Institution name, applicant name, date degree attained, degree awarded. Finalist will be required to submit an official transcript. | | Initial Application Review Date:
| January 13, 2023 | | | Open Until Position is Filled?: | Yes | | Posting Close Date:
| | | | EEO Statement: | Ferris State University, an Affirmative Action/Equal Opportunity employer, is committed to enhancing equity, inclusion, and diversity within its community. Ferris offers employment opportunities to qualified candidates seeking careers in a student-focused environment that values opportunity, collaboration, diversity and educational excellence. Learn more about the Ferris Mission and community at ferris.edu. The University actively seeks applications from women, minorities, individuals with disabilities, veterans, and other underrepresented groups. For more information on the University’s Policy on Non-Discrimination, visit: Ferris Non-Discrimination Statement. | | | | | | | | | | |
