What are the responsibilities and job description for the Cybersecurity Analyst position at Lewis & Clark?
Attention Current Lewis & Clark College Employees: In order to apply for posted positions, please close this window and log into Workday and click on Talent and Performance to apply internally.
Working at Lewis & Clark College
The campus is located on 137 acres of beautifully landscaped grounds in Portland’s southwest hills. Our strong commitment to sustainability is reinforced through recycling programs, energy conservation, alternative transportation options, and farm to fork initiatives. For benefit-eligible positions, we offer a competitive
benefits package
that includes options for health, dental, vision, tuition, life insurance, retirement and more.
Lewis & Clark College is committed to achieving a diverse workforce. Candidates from diverse backgrounds are encouraged to apply. All qualified applicants will receive consideration for employment without regard to status as a protected veteran or a qualified individual with a disability, or other protected status, such as race, religion, color, national origin, sex, gender identity, sexual orientation, marital status or age.
PRIMARY PURPOSE
The Cybersecurity Analyst within the Information Technology Department reports directly to the Information Security Officer. This role is primarily responsible for ensuring the security of institutional data, systems, and networks by enhancing security infrastructure, conducting risk assessments, responding to security incidents, and collaborating with cross-functional teams to strengthen the cybersecurity program. The ideal candidate will possess a strong understanding of industry-standard security frameworks, vulnerability management, and security operations. To be successful in this position, the individual must excel at effective communication, incident response, and the ability to prioritize and manage cybersecurity risks in a dynamic environment.
ESSENTIAL DUTIES
Security Assessment & Risk Management
- Conduct regular cybersecurity risk assessments for business processes, services, and technologies.
- Evaluate, recommend and implement security controls for existing and new systems to ensure compliance with industry standards.
- Develop metrics and reporting tools to assess and enhance the effectiveness of the security program.
- Collaborate with IT teams to prioritize security measures and support ongoing risk management efforts.
Threat Detection & Incident Response
- Monitor, investigate and respond to security alerts and inquiries; participating in the Information Technology and campus Incident Response team as needed.
- Manage and support the threat intelligence platform, working with third-party SOC and security services providers to detect and remediate threats.
System & Network Security
- Oversee the technical aspects of campus security software, including vulnerability management, asset visibility, and endpoint detection and response (EDR) systems.
- Support IT teams in maintaining secure network connectivity, both remote and onsite, ensuring the integrity of institutional data and systems.
- Administer security tools such as SIEM, vulnerability management systems, and endpoint detection and response platforms.
Collaboration & Communication
- Work with cross-functional teams to develop and refine the institution's cybersecurity program.
- Ensure clear and consistent communication of incident response procedures and security initiatives to stakeholders.
- Ensure consistent and detailed documentation of incident investigation and response.
- Participate in incident response teams, providing technical support and guidance during system or network compromises.
Other Duties as Assigned
KNOWLEDGE, SKILLS, ABILITIES, & BEHAVIORS
- Proficient in cybersecurity frameworks, including NIST Cybersecurity Framework (CSF) and NIST 800-171.
- Excellent understanding of vulnerability management, intrusion detection/prevention systems, and endpoint detection and response (EDR) technologies.
- Knowledge of network traffic analysis, firewall technologies, encryption, and remote access methods, and authentication analysis..
- Knowledgeable about cloud computing security concepts, specifically with AWS, GCP, and/or EntraID.
- Proficient in using security tools such as SIEM and SOC solutions, and centralized log solutions.
- Excellent technical troubleshooting skills, with the ability to identify, analyze, and resolve complex security issues.
- Superior communication skills, with the ability to clearly convey technical information to both technical and non-technical stakeholders.
- Extremely skilled in time management and the ability to effectively prioritize tasks in a high-pressure, fast-paced environment.
- Proficient in managing security incidents and ensuring a swift, well-documented response to investigations, threats, and incidents.
- Excellent ability to work independently and as part of a collaborative team, contributing to a shared understanding of cybersecurity priorities.
- Superior ability to quickly learn new technologies and tools, adapting to changing security landscapes.
- Extremely capable of using documentation and online resources to self-educate and stay current on security trends and solutions.
- Commitment to promoting inclusion in the workplace by fostering a respectful, collaborative environment for diverse teams.
- Excellent customer service and interpersonal skills, ensuring effective interactions with senior leaders, faculty, staff, and students.
- Superior problem-solving behavior, demonstrating a proactive and solutions-focused mindset when addressing security challenges.
- Extremely detail-oriented, ensuring that all security measures, practices, reports, and communications are accurate and thorough.
REQUIRED EDUCATION / EXPERIENCE
- Accredited college degree or equivalent work experience in a cybersecurity discipline.
- At least 3 years of experience working in an IT role, which may include responsibilities as a security professional or as an IT administrator (e.g., network, systems, application, or cloud administrator) with significant experience implementing or supporting security controls.
- Experience with vulnerability management systems, intrusion detection/prevention systems, and endpoint detection and response (EDR) technologies.
PREFERRED EDUCATION / EXPERIENCE
- Bachelor’s degree in Computer Science or a related field.
- At least 3 years of significant information security experience.
- Certification in or progress towards certification in an information security, risk, compliance, or related discipline (e.g., CISSP, SSCP, CSA , CASP, GESC, GCIA, CEH).
- Experience with SIEM and SOC solutions and best practice.
- Experience in security compliance and auditing.
WORK SCHEDULE
- Full Time
- 37.5 hours/week; this position requires availability outside of regular work hours to respond to emergencies as needed
- Benefits Eligible: Yes
- Travel: as needed to attend network and training events
- Hybrid
PAY RATE
- FLSA Status: Exempt
- The starting pay rate for this position is $85,000, with consideration given for relevant experience. Additionally, there is a pathway for candidates who do not meet all the qualifications to be hired at a lower starting rate, with the opportunity for incremental training and salary increases as they gain the necessary skills and experience.
PLEASE NOTE: This job posting is for INTERNAL candidates ONLY at this time.
PHYSICAL REQUIREMENTS
- General office environment
- Prolonged periods of sitting at a desk, working on a computer
- Communicate effectively via phone, email, online meetings, and in person
- Must be able to lift up to 15 pounds at times
Directions for Cover Letter
Please include a cover letter describing your interest in joining Lewis & Clark and the ways you can contribute to a culture of inclusion on our campus.
Lewis & Clark College adheres to a nondiscriminatory policy with respect to educational programs, activities, employment, and admission. We do not discriminate on the basis of actual or perceived race, color, sex, religion, age, marital status, national origin, the presence of any physical or sensory disability, veteran status, sexual orientation, gender identity, gender expression, or any other basis prohibited by applicable federal, state, and local laws. The Associate Vice President of Human Resources has been designated to handle inquiries regarding employment- and disability-related non-discrimination policies. Title IX inquiries may be directed to the Title IX coordinator or deputy Title IX coordinators
(
https://www.lclark.edu/about/title_ix_compliance
).
Reasonable Accommodation
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.
Background Check
Lewis & Clark College will conduct a background check on the finalist, which will include a criminal record check. If a conviction is discovered, a determination will be made whether the conviction is related to the position for which the individual is applying or would present safety or security risks before an employment decision is made. A criminal conviction does not necessarily automatically bar an applicant from employment.
Eligibility to Work
In order to comply with US Homeland Security Department regulations, all employees must complete an I-9 form in Workday prior to or no later than the first day of work and bring originals (no photocopies) of their supporting documentation to Human Resources no later than the 3rd business day of employment. Failure to have a completed I-9 form on file with the College will result in immediate termination of employment.
Salary : $85,000
