Job Title

Information Security Analyst

Classification

Information Technology Consultant - Career

AutoReqId

536158

Department

IT-Information Security

Sub-Division

IT-Information Technology

Salary Range

Classification Range $4,678 - $11,547 per month

(Hiring range depending on qualifications, not anticipated to exceed $4,678 - $5,000 per month)

Appointment Type

Temporary

Time Base

Full Time

Work Schedule

Monday – Friday, 8:00 AM – 5:00 PM; Occasional early morning, evening and/or weekend hours. This is a temporary position to end on or before June 30, 2025, with a possibility of renewal on an annual basis if funds or program needs exist.

About CSUF

Standing on 241 acres in the heart of Southern California, the University was founded in 1957 and has grown into a population of over 40,000 students. As Titans, we believe that diverse perspectives deepen our understanding. We are committed to giving students the support they need to graduate while responding to California’s revolving workforce needs. At California State University, Fullerton, we strive for continual improvement of students, staff, faculty, and administrators through orientations, training programs, and professional development opportunities. As part of the Titan Community, you have access to many campus facilities and services, including but not limited to the Grand Central Art Center in Santa Ana, the Arboretum and Botanical Garden at Cal State Fullerton, cultural events and performances in the Clayes Performing Arts Center, Cal State Fullerton Athletics sports events, Titan Recreation Center, and the Employee Wellness Program.

Job Summary

It is an exciting time to join Cal State Fullerton as we are an in-demand comprehensive university that is driven to shape the future of education and foster a vibrant community of diverse students, faculty, staff, and administrators who uphold values of inclusive excellence, free speech, and an environment free from discrimination. We are continuously seeking individuals from various career disciplines that share the University’s mission and core values. We warmly welcome you to consider joining the Titan Community where minds expand and opportunities flourish.
About the Position:

The Division of Information Technology (IT) strives to be a strategic, innovative, and best‐in‐class IT organization that provides a leading‐edge technology environment for students, faculty, and staff to advance the University’s mission, vision, and goals. We seek an exceptional individual to join our IT-Information Security team as the Information Security Analyst (Information Technology Consultant - Career). The ideal candidate in this role should have a positive attitude and an active, energetic mind characterized by highly ethical practices and a commitment to diversity, openness, flexibility, integrity, and kindness.

Reporting to the CSUF Information Security Officer (ISO), the Information Security Analyst is responsible for hands-on support of campus information security program initiatives including: information security policy development and maintenance; awareness and training activities; development and security assessment of IT architecture; security risk assessments and management including third party products, documentation and investigations, security tools administration and use; review/approval of change requests related to security controls, and coordination with other campuses and the Chancellor's Office. The Information Security Analyst is responsible for moderately complex security issues,digital forensics, vulnerability management, risk and security assessments, security operations and log analysis, configuration management, incident response, and inventory management. Responsible for promoting information security efforts to develop campus-wide security projects to reduce risk, develop Information Technology operational and technical controls, and promote information security policy and compliance to improve IT security posture. This position requires knowledge of CSU and campus information security policy and practices, security technical acumen and reporting requirements. Other duties as assigned.

Essential Qualifications

Bachelor’s degree from an accredited four-year college or university in Computer Science, Computer Information Systems, Information Systems, Telecommunications, Engineering, Engineering Technology, or a related field plus two years of relevant full-time experience or the equivalent part-time experience. Eight years of relevant full-time experience or an associate’s degree from an accredited college or university in a related field and four years of relevant full-time experience may be substituted for the previously listed education and experience requirement.

Functional knowledge of the specialty area is demonstrated by an understanding and use of advanced principles and theories. Ability to integrate work-related knowledge to address problems. Demonstrated competency in applying standard and non-standard technology applications and exploring and adapting to changing technology. Ability to independently apply technical judgment, recognize problems, use reasoning and logic to establish possible causes, interpret and apply theories and principles, generate alternative solutions, and implement a plan of action for the best resolution. Ability to develop solutions where precedents do not always exist. Ability to be proactive, anticipate outcomes and consequences of different approaches, and modify action plans. Demonstrated competence in interpreting and communicating information. Ability to use reflective listening skills when working with others. Ability to assist others in completing assignments and provide work direction and training to others on new skills and procedures. Ability to plan and work on shared projects.

A background check (including a criminal records check) must be completed satisfactorily and is required for employment. CSU will make a conditional offer of employment, which may be rescinded if the background check reveals disqualifying information, and/or it is discovered that the candidate knowingly withheld or falsified information. Failure to complete the background check satisfactorily may affect the continued employment of a current CSU employee who was conditionally offered the position.

Preferred Qualifications

Minimum five years progressive experience in computing and information security, including experience with Internet technology, cloud services, and security controls; Experience with developing security policy and conducting security awareness training; Information security and/or privacy certifications (CISSP, CEH, SANS, CIPT, CHSE); Knowledge of information security standards (e.g, ISO 17799/27002, etc.), rules and regulations/compliance related to information security and data confidentiality (e.g, GLBA, FERPA, HIPAA, PCI, etc.).

Experience providing risk assessments and security recommendations in higher education; Experience managing IT security audit processes and mitigation tracking; Extensive knowledge of risk assessments and risk registers for information security and privacy.

Experience with security penetration testing, web application vulnerability assessments; familiarity with Vulnerability Management tools such as Qualys, OpenVAS, Nessus; Experience administering security operations processes; Extensive knowledge of desktop, server, application, database, and network security principles for risk identification and analysis. Experience with common IT and security concepts, including firewall management, server management, web proxies, access control and authentication; Solid understanding of TCP/IP networking, common networking ports and protocols, traffic flow, OSI model, and defense-in-depth and common security best practices; Extensive experience in programming and systems architecture, with working experience with at least one scripting tool, Perl, Python, Ruby, and UNIX shell scripts; Strong knowledge of threat and abuse detection, investigation, and analysis methods and experience with SIEM tools. Knowledge of Linux and Windows operating systems.

Demonstrated commitment to training, self-study, and maintaining proficiency in the technical cybersecurity domain; Project management experience with demonstrated success in leading complex IT projects in non-profit/higher education environment preferred; Experience mapping business processes and translating needs into solutions; Excellent analytical and problem-solving skills; Work independently to solve complex computing problems while balancing multiple priorities with varying scope and timing. Be process-minded, detail-oriented and committed to timely response to security-related incidents; Work in a fast-paced environment with deadlines; Excellent interpersonal communication skills: the ability to work through conflict to reach viable and feasible business decisions; Very strong ability to reason logically and creatively to identify and resolve problems; Ability to read, write and speak fluently in English, and to be patient, diplomatic, and professional under all circumstances; Experience providing support to "highly visible" offices; Ability to relay technical information effectively to non-technical users; Function effectively as a member of a team and participate in activities and assignments that will benefit other members of the team or will contribute to the accomplishment of team objectives.

Special Working Conditions

Notice of Non-Discrimination on the Basis of Gender or Sex and Contact Information for Title IX Coordinator

Additional Information

California State University, Fullerton celebrates all forms of diversity and is deeply committed to fostering an inclusive environment where students, staff, administrators, and faculty thrive. Individuals interested in advancing the University’s strategic diversity goals are strongly encouraged to apply. Reasonable accommodations will be provided for qualified applicants with disabilities who self-disclose.

As of January 1, 2022, the CSU Out-of-State Employment Policy prohibits the hiring of employees to perform CSU-related work outside the state of California.

The person holding this position is considered a limited mandated reporter under the California Child Abuse and Neglect Reporting Act and must comply with the requirement outlined in CSU Executive Order 1083, revised July 21, 2017.

Multiple positions may be hired from this recruitment based on the strength of the applicant pool.
If you are applying for a staff position, please note that you are not eligible to work concurrently in a staff position and an Academic Student position such as a Graduate Assistant, Teaching Associate, Instructional Student Assistant, or Student Assistant position.
Regular attendance is considered an essential job function; the inability to meet attendance requirements may preclude the employee from retaining employment.

Employee/applicant who applies for a position may be required to successfully complete job-related performance test(s) as part of the selection process.
Online application/resume must be received by electronic submission on the final filing date by 9:00 PM (Pacific Standard Time)/midnight (Eastern Standard Time). Applicants who fail to complete all sections of the online application form will be disqualified from consideration.
California State University, Fullerton is not a sponsoring agency for staff or management positions (i.e., H1-B Visas).

Hiring Preference

On-Campus CSUEU Employees