Position Summary
Located 45 minutes from the Nation’s Capital, nestled in a history-rich community of southern Maryland, The College of Southern Maryland (CSM) is a two-time Aspen Award-winning institution (top 15% of Community Colleges) with academic programs in over 100 disciplines. CSM is among America’s top 100 producers of Minority Associate Degrees in twenty categories, according to Diverse Issues in Higher Education. CSM offers excellent health insurance benefits; State Retirement Pension plan; wellness programs; Code Green early closure Fridays in the summer; college closure for spring break and several major holidays, including the week between Christmas and New Year; and for several days in March for Spring Break. We are an innovative institution committed to student success and well known for our flexibility to meet student and community needs.
The Network Security Analyst conducts many functions to ensure the confidentiality, integrity, and availability of data and systems throughout the college’s network. The individual in this position is responsible for vulnerability management, security awareness, incident response and maintaining and keeping the CSM network secure. The Network Security Analyst reports to the Assistant Director of Network Security.
The College of Southern Maryland conducts background checks in order to ensure the safety and well-being of the College's staff and students. The final candidate for this position will be subject to the following background checks: Criminal History Check and Sex Offender Registry Check.
This position is open until filled. The College of Southern Maryland is an Equal Opportunity Employer.
Specific Duties and Responsibilities
Essential Functions:
- Assist with development, implementation, and maintenance of IT security solutions including firewalls, vulnerability scanning solutions, and intrusion detection/prevention systems
- Assist the organization with ensuring that Information and Student Privacy Laws and Policies are developed and enforced at the College
- Collaborates with administrative staff in the development and maintenance of the CSM information security program and information security policy
- Investigation and identification of potential information security incidents
- Perform reviews of network security architecture, information security administration and policy
- Providing periodic reporting on information security issues
- Supports Monthly Phishing campaigns to test employees' security awareness. Manages CSM's Security Awareness Program. Ensures all employees complete the mandatory training
- Provides security awareness training for faculty, staff and students
- Reviews new system designs and major modifications for security implications prior to implementation
- Collaborates with Network Project Team in identifying network and system vulnerabilities, and the appropriate solutions to eliminate or minimize their potential effects
- Helps maintain proper documentation of the college’s cybersecurity program
- Helps design and support the business continuity and disaster recovery plans for the enterprise.
- Maintains up-to-date knowledge of available and emerging network and security technologies through professional reading, attending industry conferences, and professional development (training, education, and participation in professional associations)
- Reviews advisories posted through CERT, NIPC (National Infrastructure Protection Center), Center for Internet Security, SANS and FBI and recommends appropriate security improvements to the Assistant Director of Network Security.
- Collaborates with ITS staff in the evaluation of new software and hardware systems, particularly as they relate to security
- Collaborates with administrative staff in ensuring that departments have fulfilled their information security responsibilities
Additional Duties:- Performs other related work as required.
Minimum Education and Training
- BA/BS degree, or equivalent and at least two years Network Security experience or four years of experience in network security, engineering, administration, and microcomputer support preferred
Minimum Qualifications and Standards Required
Knowledge, Skills and Abilities:
- Experience with Security software, including but not limited to continuity of operations, disaster recovery, firewalls, network monitoring
- Experience developing and supporting network security administration and reporting
- Experience developing and supporting a cybersecurity program and cybersecurity assessments
- Working knowledge of Windows, and Linux operating systems.
- Knowledge of backup and recovery processes
- Ability to adapt quickly to rapidly changing technology
- Ability to translate technical terms for non-technical persons
- Excellent communications (written and oral), customer service and problem-solving skills
- Experience working and supporting technical teams
- Strong analysis and troubleshooting skills
- Experience with open source and commercial security tools such as vulnerability assessment tools
- Preferred Knowledge:
- Deployment experience with enterprise-class security solutions:
- Firewalls
- Host and Network-based Intrusion Detection solutions
- Enterprise VPN solutions
- Vulnerability Management solutions
- Experience developing security strategy, policies, and standards is preferred
- Incident Response & Disaster Recovery Skills
- Experience with Active Directory and Group Policy
- Industry certification in Information Technology, i.e. (CISSP, Security+, GIAC, GSEC, GCIH)
Physical Requirements:
The work is sedentary work which requires exerting up to 10 pounds of force occasionally and/or negligible amount of force frequently or constantly.