Security Analyst

Department: Information Technology

For the purposes of ACU’s Background Check and
Self-Reporting Policy, this position is classified as security sensitive.

Position Class: Exempt/Full Time

The key
principles of this job are to:

• Support ACU’s Mission: Educate students for Christian service and leadership throughout the
  world.
• Support ACU’s 21st Century Vision: Become a premier university for the education of Christ-centered, global
  leaders.

Scope: This position reports to the Director of Information Security and is responsible for managing the
University’s information security by researching, developing, testing, and implementing policies, procedures, resources, and
training.

Basic Responsibilities: These are the four major functions of the job.

• Manage hardware and software
  protection tools and resources
• Investigate suspicious activity and identify appropriate responses
• Develop, recommend, and
  maintain security policies and procedures
• Promote information security awareness through training, communications, and
  reporting.

Essential Duties include the following to be done in cooperation with the Director of Information Security and
other IT teams. Other duties may be assigned. Reasonable accommodations may be made to enable individuals with disabilities to perform the
essential function.

A. Manage hardware and software protection tools and resources

• Manage and maintain firewalls, IDS,
  IPS
• Manage and maintain vulnerability assessment systems
• Manage and maintain security information and event management
  system
• Manage and maintain VPN and remote access.
• Research, recommend, and implement security solutions to safeguard ACU
  assets

B. Investigate suspicious activity and identify appropriate responses

• Maintain signatures or threat intelligence
  recommendations to identify suspicious activity
• Manage monitoring and alerting procedures to ensure timely identification of
  suspicious activity
• Coordinate with administrators from other IT groups and appropriate campus personnel to determine an appropriate
  response to suspicious activity
• Execute an Incident Response Plan

C. Develop, recommend, and maintain security policies and
procedures

• Periodically review university policies and procedures pertaining to information security
• Develop and recommend
  changes or new policies and/or procedures to enhance the university’s security posture
• Participate or coordinate periodic security
  audits, assessments, or reviews
• Chair or facilitate the occasional Information Security working group to address areas of concern
  identified in the periodic security audit, assessment, or review

D. Promote information security awareness through training,
communications, and reporting

• Periodically present security topics and best practices to campus groups
• Coordinate with the IT
  Support Center, providing appropriate security materials and observations that can be disseminated through various mediums (social, blogs,
  or print)
• Manage security awareness campaigns and training resources
• Produce regular reports and metrics related to security
  trends, events, and the university’s security posture
• Coordinate tabletop exercises with members of the university’s IT
  team

Professional Development Requirements: These are the minimal skills needed to succeed at this job.

Skills
Required:

• Technical aptitude
• Strong oral and written communication skills.
• Strong organizational skills, ability to
  work on multiple tasks simultaneously.
• Knowledge of client and server operating systems like Windows, Linux, and Mac
  OS.
• Ability to analyze and resolve difficult technology problems.
• Ability to extract and utilize complex information from
  technical documentation.

Training Modules:

• Information Technology and Security professional
  certifications.
• Attendance at security-related conferences and training

Qualifications:

ACU is affiliated
with the fellowship of the Church of Christ. This position requires the employee to be a professing Christian and to be willing to support
the Christian mission of ACU.

Professional:

• Bachelor’s Degree in computer related field or equivalent experience
• 1-3
  years experience system administration in a multi-user environment
• 1-3 years experience with wide and local area network
  technologies
• Experience with Information Security knowledge areas, such as, Firewalls, Vulnerability Management, IAM, and NIST
  standards is preferred.

Personal:

• Ability to handle sensitive information in a discreet, responsible manner
• Ability
  to communicate complex issues in common terms
• High level of problem-solving and technical troubleshooting
• Ability to work in
  a team-oriented environment

Physical Demands:

• Must be able to work at a computer for extended periods of
  time.
• Must be able to work extended hours as the need arises. This includes on-call rotation and performing software maintenance and
  updates outside of working hours.

ACU does not unlawfully discriminate on the basis of race, color, age, sex, disability, genetic
information, national or ethnic origin in employment opportunities, in keeping with applicable state and federal law.

ACU is
committed to maintaining a safe and secure campus environment and protecting the university’s financial and physical assets. Therefore,
Abilene Christian University conducts background checks on all candidates for employment in security sensitive positions. As a current
employee, it will be determined if you need an additional background check upon your hire.