IT Security Analyst

The network security analyst will plan and implement security measures to protect computer systems, networks, and data. They will monitor the network for security threats and unauthorized access, conduct regular scheduled security audits, prepare security status reports, educate users on computer security, assist with security documentation for users, and assist in disaster recovery and gathering evidence regarding cybercrimes. The network security analyst will also assist the network team with activities including selection and procurement of network infrastructure products and tools not limited to IPS, DLP, AntiVirus, and Policy - or other duties as assigned. A sought after candidate will be very organized with skills in project management, report writing, business analysis, solution implementation skills, and the ability to work under policy guidance. ADDITIONAL DUTIES -Work occasional long and/or irregular hours -Work to be performed at the office/on and off campus The data center, the disaster recovery site, construction sites, etc. -May require occasional travel -Work in both environmentally controlled and non-environmentally controlled environments -Will be required to maintain a cellular or other electronic communication device due to the communication expectations of the position Environmental Hazards: Work is in both controlled and uncontrolled environmental areas. Physical Requirements: Ability to lift and carry equipment up to 50 lbs, able to perform work in very tight places, able to climb ladders and work overhead, stoop, reach, stand, walk, finger, grasp, feel, talk, hear, see, and perform repetitive motions with or without reasonable accommodations. (If you are viewing this job posting outside of the actual OSU job application website, please go to jobs.okstate.edu to apply and submit a resume.) Special Instructions to Applicants IMPORTANT! APPLICANTS PLEASE READ! For full consideration, please ensure all employment history is correct and complete. An Edit button (on the right) is available which allows you to add information. In addition, OSU Medicine’s Customer Service Philosophy is: “We enrich lives by providing compassionate care and amazing service to every life we touch.” We achieve our service standards with employee behaviors centered on safety, courtesy, presentation, and efficiency. Safety is: -Be aware of environment -Be intentional in your actions -Ensure accuracy -Mitigate potential hazards Courtesy is: -Welcome and actively engage in a friendly and respectful manner -Be responsive, polite, and helpful -Smile -Demonstrate care and concern -Show appreciation and say “Thank You” Presentation is: -Be professional -Have a clean and neat appearance -Maintain a clean and organized work area -Remember what you represent at all times Efficiency is: -Respond to needs in a timely manner -Organize and prioritize your work -Be available and respect others’ time -Be innovative Education & Experience Position Qualifications: Required: - Bachelor's degree or equivalent experience - At least three (3) years of experience working in information technology consisting of multiple technology platforms - Must have a high level of personal integrity and ethical standards - Excellent verbal and written communication skills - Ability to analyze processes, apply regulations and standards, and identify and communicate risks, security controls, and solutions - Understanding of IT infrastructure - Knowledge of HIPAA law as it pertains to security Preferred: - Bachelor’s Degree in Computer Science, MSIS, Technical Writing, or related field - Three (3) years of information security experience including conducting risk assessments/audits/reviews of information systems with the goal of assessing and/or mitigating information security threats/risks within a large university environment - Experience with security requirements, systems, and security architecture, as related to compliance standards; such as found in FISMA, FERPA, HIPPA, PCI-Standards, or other regulatory act(s) or bodies - Experience in developing policies and procedures related to regulatory compliance and information security - Experience with securing and hardening applications and databases - Possess one or more of the following: Security Essentials Certification (GSEC); Certified Information Systems Auditor (CISA); Certified Fraud Examiner (CFE); Microsoft Certified IT Professional (MCITP); Microsoft Certified Technology Specialist (MCTS) - Knowledge and understanding of the role of information security in system design/architecture and implementation, including network security, information security audits, security awareness training, and information security risk management. Possess a strong knowledge and understanding of information security compliance and auditing techniques with experience conducting risk assessments and using risk assessment tools.

Salary : $54,000 - $82,000