Security Analyst II, OTS

The Security Analyst II is an experienced security professional who works independently on moderately complex security initiatives and serves as a key contributor to Tyler Junior College's information security program. This role bridges foundational security operations and advanced security leadership by executing security controls, performing in-depth analysis, coordinating incident response activities, and supporting risk management and compliance efforts. Under general supervision, the Security Analyst II partners with Infrastructure, Applications, and business stakeholders to identify security risks, recommend remediation strategies, and improve security processes and technologies. The role escalates significant risks, incidents, and policy decisions to the Deputy CIO/CISO and may serve as a technical mentor to the Security Analyst I staff., * Perform information security risk analysis and vulnerability assessments across networks, systems, applications, and cloud environments.

• Analyze security alerts, log data, and network traffic generated by security technologies; validate findings and escalate confirmed incidents according to the incident response plan.
• Coordinate and assist with security incident investigations, including documentation of findings, root cause analysis, and remediation recommendations.
• Assist with the development, maintenance, and implementation of security programs and documentation to support compliance with TAC 202 standards, including:
• Information security plans
• Policies, procedures, and technology standards
• Vulnerability management program
• Incident response and risk management procedures
• Asset management and data classification standards
• User awareness and education initiatives
• Perform network and vulnerability scanning and work with technical teams to prioritize and track remediation efforts.
• Test, implement, and tune security hardware and software solutions.
• Identify gaps in security controls and recommend improvements based on risk and operational impact.
• Participate in internal and external audit and assessment activities and support remediation efforts.
• Stay current with state and federal security and privacy laws, emerging threats, and security best practices.

Secondary Responsibilities

• Research emerging threats, attacker techniques, and security technologies; recommend detection or control enhancements as appropriate.
• Assist with third-party risk assessments and vendor security reviews.
• Support documentation standards by creating and maintaining technical, procedural, and operational security documentation.
• Provide technical guidance and informal mentoring to junior security staff as needed.
• Identify opportunities for process improvement and collaborate with the team to implement enhancements.

Do you have a valid Driver's License license?, Do you have experience in macOS?, Do you have a Bachelor's degree?, Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time., Knowledge, Skills, and Abilities

• Collaboration and teamwork

• Information security analysis and risk assessment

• Incident response and investigation

• Vulnerability management and remediation tracking

• Log analysis and security monitoring

• Data analysis and problem-solving

• Technical documentation and reporting

• Project coordination and time management

• Written, verbal, and interpersonal communication

• Customer service and stakeholder engagement, Individual Contributor. May provide technical guidance or mentoring to junior staff. Work Environment: Regular work required outside of normal business hours. Physical Demands: Sitting, walking, standing, lifting, driving. Travel Required: Yes -Moderate If travel is required, the candidate must have and maintain a current, valid Texas driver's license and an acceptable driving record., Bachelor's degree in Information Systems, Computer Science, Information Security, or a related field An equivalent combination of education and experience may be used. Required Experience Three years of experience in a technology role or information security role. Preferred Qualifications

• IT security-related certification (e.g., Security+, CySA+, SSCP, GSEC, CEH)

• Willingness to pursue additional security certifications post-employment as required by regulations

Additional Job-Specific Requirements

• Working knowledge of information security policies, procedures, and risk concepts
• Experience with:

• Email protection technologies (spam filtering, URL protection, ETP)
• Vulnerability detection and analysis
• Change and configuration management concepts
• Cloud environments (IaaS, SaaS, IDaaS, PaaS)
• Log aggregation and analysis tools (e.g., Splunk, ELK)

• Technical knowledge of Linux, macOS, iOS, Android, and Windows operating systems
• Understanding of networking protocols and security technologies (DNS, DHCP, firewalls, IPS, proxies, etc.)
• Familiarity with threat intelligence and information-sharing tools
• Strong analytical, organizational, and documentation skills
• Ability to manage deadlines and coordinate across functional teams
• Strong self-starter with a team-oriented mindset, * Must exhibit a sensitivity to and an understanding of the diverse academic, socio-economic, cultural, and ethnic backgrounds of staff and students and to staff and students with disabilities.
• Regular and punctual attendance is an essential function of each employee.

NOTE: With or without reasonable accommodation, the individual in this position must possess the competencies and must be able to perform the essential functions and duties of the job as described above, including essential tasks requiring specific physical demands.

This is a security-sensitive position. Candidates will be subject to a criminal background check.

Pulled from the full job description

• 403(b)
• AD&D insurance
• Health insurance
• Vision insurance
• Dental insurance
• Life insurance
• Disability insurance