IT Security Analyst, Senior

Req Id: 30873

Job Title: IT Security Analyst, Senior

Job Description:

• The IT Security Risk Analyst performs information security risk assessment and compliance consulting services with limited supervision. This position will focus on executing research information assurance responsibilities, many at the direction of the Information Systems Security Officer. Generally, this includes performing IT solution risk assessments, assessing research technology control plans and testing for compliance, writing and updating system security plans (SSPs) and plan of action and milestones (POAMs), contributing to policy updates and reviewing exceptions, and providing security consulting as needed. You will also perform security and compliance (e.g., HIPAA, FERPA, GLBA, PCI, and other relevant regulations or standards) risk assessments as required by the University and as requested by departments in order to improve information security posture. You will provide security consulting on appropriate administrative, technical, and physical security controls for implementation to address security and compliance requirements. This position includes analyzing and interpreting information to document findings that are presented to management and technical staff. You will promote awareness of security policies, tools, methodologies, and best practices.

This position will help secure and enable innovative research at Purdue University.

This is a hybrid position where you will work mostly remote and periodically on site at a Purdue campus or office.

About Us:

When you join Purdue University, you join a community that keeps moving forward. For more than 150 years, we've been known for not only our groundbreaking work in STEM research, but also for our collective imagination, ingenuity and innovation.

What We're Looking For:

Education and Experience Needed

• A Bachelor's degree in relevant field, including Business, Computer Science, Engineering, Computer/Information Technology, or Information Security

• At least Four (4) years of progressive information technology experience that includes information security and/or compliance responsibilities

• Equivalent combination of education and/or experience may be accepted

• Must be a U.S. person

Skills Needed:

• Demonstrated ability in documenting controls, information security, or technology control plans

• Experience addressing IT security risks as an IT professional

• Demonstrated ability to address difficult and complex problems

• Experience influencing others regarding information security policies, practices, and procedures

• Analysis, decision making, problem solving and customer service skills

• Keen attention to detail

• A broad understanding of technology

• Ability to:

• work independently with limited supervision and within a team environment

• communicate effectively with both technical and non-technical audiences at various levels within the organization

• learn new information and put to practical use quickly

• work on site for assessments

• coach and mentor more junior professionals or student workers

Preferred

• Higher education work experience

• Experience in performing information security risk and/or compliance assessments

• Experience with common information security standards (e.g., CMMC and NIST 800-171)

• Experience writing system security plans, POAMs, and reviewing technology control programs

• Technical security certifications or certification progress (e.g., certification pending additional experience) in information security, risk management, or a related discipline (e.g., CISSP and GIAC)

Additional Information:

• Purdue University will not sponsor employment authorization for this position

• A background check will be required for employment in this position

• FLSA: Exempt (Not Eligible for Overtime)

• Retirement Eligibility: Defined Contribution Waiting Period

• Purdue University is an EEO/AA employer fully committed to achieving a diverse workforce. All individuals, including minorities, women, individuals with disabilities, and veterans are encouraged to apply

• Benefit Statement: Purdue University offers a substantial Benefit Package including medical, dental, and vision insurance as well as a generous paid time off package for sick and vacation days

Who We Are:

Purdue is a community built on collaboration, with global perspectives, Boilermaker pride and endless opportunity to live, learn and grow. Join us and contribute to our culture.

Apply now

Posting Start Date: 3/22/24