Information Security Analyst

About the position

The Information Security Analyst will be responsible for assisting the Chief Information Security Officer/Director of Information Security in developing and maintaining Binghamton University's information security capabilities, implementing security controls, responding to information security incidents, and monitoring administrative, academic systems and the University network for policy enforcement and compliance. The Information Security Analyst will work with cross-functional teams to design and implement security initiatives; and serve as a resource person on specific information security technologies and technology-related compliance requirements. The Information Security Analyst reports to the Chief Information Security Officer/Director of Information Security and works closely with Information Technology Services (ITS) leadership to build awareness and implementation of security controls, within the department and across the University.

Responsibilities

• Triage, process, and close out technical client requests
• Track and ensure adequate and timely resolution to all audit and risk assessment findings or issues relating to information security
• Recommend remediation strategies and technologies for mitigating risks
• Evaluate current and future requirements and develop or recommend technical and operational solutions accordingly
• Support and manage risk mitigation tools as needed
• Develop specifications and standards for equipment, software, and procedures in support of University policies
• Investigate internal and external reports of information security issues
• Assist in analyzing results from intrusion detection systems, intrusion prevention systems, network mapping software, log analysis, and other tools to detect, respond to, and mitigate information security-related vulnerabilities and incidents
• Maintain audit and oversight of processes, procedures, and tools used to ensure security controls
• Maintain metrics and prepare reports
• Perform trend and root cause analysis
• Liaison with various University constituencies on behalf of the CISO as needed
• Serve as a resource person in assessing systems, processes, and projects against compliance requirements, control objectives, and security best practices

Requirements

• Bachelor's degree or Bachelor's degree completion by January 2025, or Associates degree plus 2 years' experience. Relevant certifications may be substituted for 2 years' experience.
• Demonstrated competence in information security concepts
• Demonstrated strong written and oral communication skills
• Effective problem-solving, interpersonal, and multitasking skills
• Ability to work with multiple constituencies within a culturally diverse environment
• Excellent interpersonal skills, strong analytical skills, demonstrated ability to work in a team environment, and the ability to deal with ambiguity in a changing business

Nice-to-haves

• Experience with cybersecurity
• Experience with Incident Management/Response
• Experience with Endpoint Detection and Response, Carbon Black EDR
• Experience with Splunk or log files
• A demonstrated understanding of network topologies, architectures, protocols, and addressing schemes. Network management experience is desirable
• Knowledge of and a demonstrated ability to operate Unix and Windows-based security tools (e.g., nmap, Snort, group policy)
• Programming or scripting languages (e.g., python, php, ruby, bash)
• Experience with Data Loss Prevention (DLP)
• Knowledge or experience in regulatory compliance frameworks such as NIST, PCI-DSS, FERPA, GLBA, HIPAA, DFARS, CMMC, ITAR
• Experience working in a large complex academic organization or experience in health care or research environment
• A portfolio of web applications/projects that demonstrate required skills