INFORMATION SYSTEMS SECURITY ANALYST

SUMMARY:

The Information Systems Security Analyst is responsible for regulating access to computer data files and preventing unauthorized modification, destruction, or disclosure of information. The position is governed by state and federal laws and institution policy.

TYPICAL FUNCTIONS:

Implements intrusion detection and avoidance measures, such as logging, firewalling, activity monitors, virus scanners, or other intrusion detection methods.

Reviews logging information for assigned systems and devices for abnormal or irregular use characteristic of unauthorized access or denial service.

Assists users in the detection and recovery from security intrusions on their computer systems.

Performs security audits on portions of the network as directed by the Associate Director of Computing Services.

Contacts appropriate personnel in the event of a security intrusion or policy violation.

Contacts users with audit information and assists with techniques to eliminate or minimize vulnerabilities.

Performs other duties as assigned.

KNOWLEDGE, ABILITIES, AND SKILLS:

Knowledge of communications’ protocols and standards related to security. Knowledge of information protection methodologies and concepts. Knowledge of server administration as applied to network and internet security. Knowledge of information protection standards, guidelines, and applied procedures. Ability to identify potential security breaches and implement counter measures. Ability to interface with individuals at all levels of the organization and to establish effective working relationships. Ability to work with sensitive information and maintain confidential of such data and information.

MINIMUM EDUCATION AND/OR EXPERIENCE:

The formal education of a bachelor’s degree in computer science, information systems, or related field; plus two years of experience in computer operations, data applications, systems analysis, or data base management.

Additional requirements determined by the agency for recruiting purposes require review and approval by the Arkansas Division of Higher Education.

OTHER JOB RELATED EDUCATION AND/OR EXPERIENCE MAY BE SUBSTITUTED FOR ALL OR PART OF THESE BASIC REQUIREMENTS, EXCEPT FOR CERTIFICATION OR LICENSURE REQUIREMENTS, UPON APPROVAL OF THE QUALIFICATIONS REVIEW COMMITTEE.