POSITION DESCRIPTION
TITLE:
FLSA STATUS:
Security Analyst
Exempt
CATEGORY:
GRADE:
Professional
H (Technology Support)
JOB SUMMARY: Responsible for assisting the Manager in implementing and enforcing security policies
and procedures in accordance with federal, state, and institutional directives. Act as a focal point for all
identity and access management issues. Implement and monitor security measures to safeguard data on the
District’s Information System.
ESSENTIAL FUNCTIONS:
YEARLY
PERCENT OF
TIME
15%
1.
Participate in system security evaluations and in incident response and
reporting.
2.
Establish information protection roles, responsibilities and practices for
all users of the Information System.
15%
3.
Develop policies, standards and practices for identity and access
management to protect and monitor access to the System and associate
enterprise-level data stores.
15%
4.
Review computer logs and messages to identify and report any possible
violations of security.
10%
5.
Assist with the identification of security vulnerabilities, both internal and
external to the department.
10%
6.
Perform threat assessments and advise on best practices for secure
application development to diminish associated risks.
10%
7.
Assist in the development, training, and maintenance of an adequate
Security Awareness Program.
10%
8.
Assist in communicating and implement security policies and procedures
for Information Technology systems.
10%
9.
Assist with special projects as needed.
5%
REPORTING RELATIONSHIP: Manager, Information Technology Security
ESSENTIAL QUALIFICATIONS:
EDUCATION: Bachelor’s degree in a related field.
Effective: 11/01/06
Page 1 of 2
EXPERIENCE: Two (2) years related experience.
SPECIAL SKILLS AND ABILITIES:
1.
Skills/Abilities: Experience and knowledge of information protection principles such as
identity management, authentication, authorization, encryption, vulnerability assessment and
remediation, firewall concepts, audit trails/logs and best practices for administering data
commingling. Knowledge of El Paso Community College information protection policies and
standards, including records retention, privacy, and protection of intellectual property.
Knowledge of risk management techniques and application. Experience with the data
warehouse, data mart, document management and imaging, and related technologies/systems
and the business processes they support. Excellent communication and persuasive skills; oral,
written presentations. Awareness of physical safeguards and contract language protection for
intellectual property.
2.
Equipment Used: Personal computer and a variety of equipment associated with a general
office environment.
3. Software Used: A variety of word processing, spreadsheet, database, e-mail, and
presentation software.
PHYSICAL REQUIREMENTS:
Duties require little physical effort in work with light (up to 10lbs), easy to handle materials.
Duties performed causes light fatigue of eyes, fingers, or other faculties due to long periods of
standing, sitting, and/or repetitive motion.
INTERPERSONAL SKILLS:
Alternative or combined skills in understanding, counseling, and/or influencing people are
important in achieving job objectives, causing action, understanding others, or changing behavior;
and, skills of persuasiveness or assertiveness, as well as sensitivity to the point of view of others.
WORKING CONDITIONS:
Job is performed in general office or comparable working area with occasional distractions such as
noise, interruptions, or congested work areas with exposure to some disagreeable elements.
Effective: 11/01/06
Page 2 of 2