Code
5371
PCLS
N5008
Pay Grade
120
Exempt
Yes
ORP
No
EEO Code
5
Title
Information Technology Security Analyst
Description

The Information Technology Security Analyst is an integral part of the information security and privacy team primarily responsible for information security threat hunting, active defense of university assets, and incident response using a variety of tools and techniques. Using threat intelligence from cybersecurity news and alert feeds, the Security Analyst will critically analyze logs and alerts from a variety of security related devices and systems in our Security Information Event and Management (SIEM) to identify threats and take appropriate action to safeguard university information assets.

Examples

Daily operational tasks include supporting the MSU IT Security program such as assisting with incident response and investigation, threat hunting, and supporting security services (e.g. intrusion detection monitoring, network vulnerability scanning, event logging, security awareness training, etc.). Monitors threat intelligence feeds and daily security news, as well as review campus network activity (using network flowlogs, firewall data, and vulnerability scan information) to create, modify, or remove IDS alerts to minimize false positives and extract actionable information.

Applies security knowledge, skills, and abilities on assignments, projects, and programs at the discretion of the Chief Information Security Officer. Contributes to and maintain documentation. Creates technical documentation for both internal and external audiences.

Performs other related duties and participate in special projects as assigned.

Physical Condition
Experience

Minimum 1 years of professional IT experience within IS Security which includes demonstrated experience in assessing, monitoring and maintaining, and evaluating information security policies and systems, including hardware, firmware and software. Demonstrated knowledge in IT security, network engineering, enterprise system administration, (e.g. Linux, Microsoft Windows, Microsoft Azure, AWS), or IT auditing. Network forensic analysis with a strong understanding of network protocols. Ability to perform network packet analysis. (e.g. Wireshark, tcpdump). Ability to clearly communicate technical information to non-technical audiences orally and in writing.

 

Preferred: Experience working in IT security and experience with Microsoft security suites (e.g. MS 365 security center, MS Azure, MS Defender Security center). Experience with Palo Alto, Fortinet, or other next generation firewall systems: Network+, Security+, SANS certification, Splunk Fundamentals, IT risk assessmentLinux, Python, Perl, mariadb, and MySQL

Knowledge

Demonstrated knowledge in IT security, network engineering, enterprise system administration, (e.g. Linux, Microsoft Windows, Microsoft Azure, AWS), or IT auditing. Network forensic analysis with a strong understanding of network protocols. Ability to perform network packet analysis. (e.g. Wireshark, tcpdump). Ability to clearly communicate technical information to non-technical audiences orally and in writing.

Education

Bachelor Degree in CS, IT or related field. Security focused curriculum or Security Training Certifications

Additional Requirements

Requires the ability to work well with diverse populations and maintain positive working relationships with students, faculty, staff, and the community. Requires good interpersonal skills. Must be able to perform detailed work accurately and to work effectively with others. Must be dependable and have a positive attitude towards the work environment. Requires good verbal and written communication skills as well as keyboarding skills. *Regular reliable attendance is required. *This position is designated as security sensitive (high) and requires a criminal background check.

Standard Requirements

Requires the ability to maintain positive working relationships with students, faculty, staff, and the community. Must adhere to University’s core values: People-Centered, Community, Integrity, Visionary, and Connections, per the MSU Texas Values Journey. Personal cell phone usage may be required to complete position duties, including multi-function authentication requirements. Regular reliable attendance is required.

This position is designated as security sensitive (Mod) and requires a criminal background check. Position is designated as a Responsible Employee as outlined by Title IX. May serve as Campus Security Authority as outlined by the Clery Act.

Last Updated 09-23-2021