The information security analyst is responsible for supporting the College’s Information Security team with an emphasis on monitoring security assets for vulnerabilities or potential incidents. Using security tools in place, the analyst will support the evaluation and remediation of day-to-day alerts and will conduct tier 1 information security ticket handling, resolution, or escalation. In this role, the analyst will review daily threat intelligence, support the management and maintenance of security information and event monitoring (SIEM) tools, and maintain baseline configuration standards and controls related to operational risk management for the Grinnell College Systems Security Plan (SSP). The analyst will work with the lead analyst to assist in the vulnerability management process and produce metrics to support the program.  

This position is eligible to be fully remote. 

In Information Technology Services, a collaborative, inclusive, and engaging work environment is the cornerstone of our culture. We take our role in supporting the mission of Grinnell College seriously, but we seriously have a lot of fun too! We're looking to add people to our team who want to make a difference every day. To find out more, visit IT Open Positions.

You will: 

• conduct tier 1 information security ticket handling, resolution, or escalation. 
• support the College’s Information Security team with an emphasis on monitoring security assets for vulnerabilities or potential incidents.  
• support the evaluation and remediation of day-to-day alerts from information security tools in place.
• design and develop solutions to address business needs and opportunities.  
• review daily threat intelligence.  
• support the management and maintenance of security tools with an emphasis on security information and event monitoring (SIEM) tools. 
• maintain baseline configuration standards and controls related to operational risk management for the Grinnell College Systems Security Plan (SSP). 
• assist with the review of technical deployments for risk prior to deployment across the campus.  
• work with the lead analyst to assist with the vulnerability management process and produce metrics to support the program.
• love the great benefits!

You are: 

• educated. You have at least an associate's degree or equivalent from a two-year college or technical school, or equivalent work experience. 
• experienced. You have at least one year of experience working as an analyst or a similar type position with included penetration testing. You may also have had experience working in a technical environment in network engineering, systems administration, application development, or support of database management. Your previous positions capitalized on your strong knowledge of network system and application security best practices.  
• connected to the Information security community. You know the value of staying on top of information security industry information and you participate or have membership in professional cyber security organizations (e.g., GIAC Security Essentials, Certified Ethical Hacker, Microsoft Technology Associate Security Essentials, or CompTIA Security +) or would be interested in doing so.  
• analytical and strategy-driven. You love to use your analytical skills to solve complex problems and enjoy the thrill of using creative strategies to find ways to reduce or remediate risk.  
• detailed. You’re not one to miss a single detail. As a matter of fact, you revel in the details. Researching, documenting, and uncovering all the nuances of a situation is exciting to you. Your desire to implement best practice standards is paramount to your work. 
• motivated and self-directed. You’re a team player yet able to work under your own initiative, are flexible to changing requirements, are well organized, and strive for excellence in all you do. 
• collaborative and a diversity champion. You are instinctively inclusive and collaborative, respecting and embracing the diversity of our community.  
• a good communicator. You demonstrate clear and accurately written and verbal communication skills and can translate material and ideas into user-friendly language. 

Grinnell College is an E-Verify Employer

We use E-Verify to check employment eligibility of our new hires. E-Verify is an Internet-based system operated by the Department of Homeland Security (DHS) and the United States Citizenship and Immigration Services (USCIS). The system allows employers like Grinnell College to verify the employment eligibility of its employees, regardless of citizenship. Based on the information provided on Form I-9, E-Verify confirms this information with DHS and Social Security Administration (SSA) records.