Information Security Analyst II
Published Date: Sep 26, 2024
Location: US
Company: Los Angeles Unified School District
SALARY DETAILS
APPLICATION OPEN DATE
8/28/2024
INFORMATION ABOUT LAUSD
LAUSD Employees: Please be advised that all LAUSD employees must sign in to the GlobalProtect Virtual Private Network (VPN) in order to submit an application from an external network outside of an LAUSD location. For assistance with installing the GlobalProtect virtual network, please contact Information Technology Services at (213) 443-1300 or (213) 241-5200.
We are LAUSD. We are at the forefront of innovation in public education, focused on a clear and inspiring vision of the future for all of our students as they venture forward on their journey as lifelong learners. Here, you will have the opportunity to exercise your potential in a role supporting the business of education. Our work directly contributes toward the goal of ensuring that our students graduate ready for the world – ready to thrive in college, career and life.
LAUSD is the second largest school district in the nation with an enrollment of nearly 575,000 students. We serve an area totaling 710 square miles, with over 1,190 schools and educational centers, and we employ over 74,000 individuals, making us one of the largest employers in our city.
DEPARTMENT OR SCHOOL SITE
The District's Information Technology Division (ITD) has 600+ staff members, including programmers, network engineers, project managers, and administrative staff - all of whom provide support to the schools and LAUSD's business/functional units in a professional, forward thinking, and challenging environment. Technologies supported range from personal systems to enterprise-wide systems and applications.
The IT Division's offices are located at the District Headquarters building in downtown Los Angeles.
PROJECT
An IT Security Analyst II plans, administers, reviews, and analyzes Visit us at www.lausdjobs.org incident response processes of the District including policies, procedures and standards for compliance to ensure the District’s security posture is adequate.
BENEFITS
Insurance: Paid premiums for your choice of several medical, dental, vision, and life insurance plans. Retirement: Membership in the California Public Employee Retirement System (CalPERS).
Vacation: Full-time employees earn up to two weeks of paid vacation to start. Three weeks after five years of year-round paid service.
Paid Holidays: Up to 13 days.
JOB DUTIES/RESPONSIBILITIES
The following list includes the essential job duties/responsibilities of this classification:
- Manages, monitors, reviews, analyzes, and prioritizes real-time end-to-end security log data across various operational IT support units and correlates them with forensic network data to determine if and when incidents occur.
- Leads and coordinates the IT incident response team and performs IT incident response activities including incident preparation, analysis, documentation, notification, containment, evidence gathering, eradication, recovery, and post-incident.
- Develops step-by-step response procedures for IT incidents resulting from different types of common IT service interruptions, attack vectors, and vulnerabilities.
- Conducts periodic testing of cyber security incident management plan to test critical components and cross-departmental dependencies.
- Evaluates scheduled IT changes proposed by various functional IT groups at regular change control board meetings to identify potential security impacts and approval.
- Conducts white and black box penetration tests to identify hardware and software assets that are vulnerable to attack, potential impact, and recommended countermeasures.
- Reviews information security plan and program code to ensure that the development and modification of applications are aligned with security and privacy practices.
- Performs detailed technical security evaluations of information systems, solution architectures, physical security designs, vendor solicitations, contracts, and proposals to ensure that IT assets are aligned with internal and external security requirements.
- Develops training content and trains technical support staff on best security practices relative to their technical area of responsibility and approved tools and procedures.
- Performs related duties as assigned.
MINIMUM REQUIREMENTS
EDUCATION:
Graduation from a recognized college or university with a bachelor’s degree, preferably in information security, information systems, information technology, computer science, software engineering, or a related field. Qualifying experience in addition to that required may be substituted on a year-for-year basis provided that the requirement of a high school diploma or equivalent is met.
EXPERIENCE:
Four years of professional- level experience in IT security operations which included security monitoring, change control, vulnerability management, secure software development, and/or other information security responsibilities. One year of the above experience must have included experience in IT incident management.
SPECIAL:
A GIAC Security Essentials (GSEC) certification or equivalent certification is preferred.
A valid California Driver License.
Use of an automobile.
SPECIAL NOTES:
Employees in the class are subject to call at any hour.
This class description is not a complete statement of essential functions, responsibilities, or requirements. Entrance requirements are representative of the minimum level of knowledge, skill, and/or abilities. To the extent permitted by law, management retains the discretion to add or change typical duties of a position at any time, as long as such addition or change is reasonably related to existing duties.
DESIRABLE QUALIFICATIONS
Knowledge of:
Concepts, procedures and frameworks relating to IT incident management such as ISO 27035, NIST 800-61, CSIRT, RFC 2350, ITIL, or COBIT 5
Logging analysis techniques and indicators of compromise using SEIM, network behavior analysis tools, antivirus, network packet analyzers and malware analysis and forensic tools
Essential components of each IT architecture layer including core IT infrastructure layer, applications layer, network layer, computing layer, physical layer, and storage layer
Methods for integrating security into the design, requirements, development and testing phases of the software development lifecycle
Incident response processes and procedures
Concepts, procedures and controls relating to ISO 27001, NIST 800, and other industry accepted Information Security frameworks
Core security tools including but not limited to IDS, SIEM, Firewalls, Vulnerability Assessment tools, configurations compliance, etc.
Threat actors and how they operate, keeping up to date with their techniques
Security tools including, but not limited to firewalls, forensic, fuzzers, port scanners, vulnerability scanners, encryption tools, anti-malware, packet analyzers, and exploitation kits
Information security concepts, approaches, standards, methods and techniques used to manage an Information Security Management Program
Microsoft Windows operating system and relevant software
Ability to:
Perform complex analysis of threat trends, vulnerability, and intrusion detection on systems
Analyze technical outputs and recommend process improvements at an enterprise level
Analyze and interpret technical data, written materials, oral communications and contracts
Distinguish between real anomalous behaviors from network event noise
Troubleshoot and resolve information security issues in an efficient and effective manner
Exercise good judgment in making decisions
Formulate innovative recommendations for process improvement and enhance organizational effectiveness
Problem solve and work within established timeframes to deliver timely results with minimal supervision
Establish and maintain effective working relationship with District personnel and the public
Maintain confidentiality, impartiality and objectivity
Communicate effectively both verbally and in writing
EMPLOYMENT SELECTION PROCESS
The selection process for this position will tentatively consist of a Technical Project and/or a Technical Interview. The employment examination process is intended to measure your job-related experience and evaluate your qualifications beyond the minimum requirements. For this reason, it is recommended that your application materials clearly show all of your relevant background and specialized skills, knowledge, and abilities.
We anticipate receiving a number of well qualified applicants for this position; therefore, there will be a competitive employment selection process. The hiring departments have requested that we proceed with Visit us at www.lausdjobs.org the selection process in an expeditious and timely manner. To honor this request we will be adhering to a pre-planned employment assessment schedule.
Selection and promotion are based on a competitive employment assessment process. Candidates who pass all parts of the assessment process are placed on a hiring (eligibility) list based on their assessment score. Hiring departments may make job offers to candidates on the top three ranks of the hiring list. Eligibility typically lasts for 12 months. The hiring list resulting from this assessment process may be used to fill open positions in related job classifications.
Please be sure to include correspondence from @lausd.net as an approved sender so that messages aren't accidentally placed into your spam/junk e-mail folder.
For more information about the LAUSD employment assessment process, visit the hiring process section of our website at https://careers.lausd.org.
APPLICATION PROCESS
ADDITIONAL POSTING INFORMATION
The Los Angeles Unified School District is committed to providing a working and learning environment free from discrimination, harassment, intimidation, abusive conduct, or bullying. The District prohibits discrimination, harassment, intimidation, abusive conduct or bullying based on actual or perceived race or ethnicity, gender/sex (including gender identity, gender expression, pregnancy, childbirth, breastfeeding/lactation status and related medical conditions), sexual orientation, religion, color, national origin (including language use restrictions and possession of a driver’s license issued under Vehicle Code), ancestry, immigration status, physical or mental disability (including clinical depression and bipolar disorder, HIV/AIDS, hepatitis, epilepsy, seizure disorder, diabetes, multiple sclerosis, and heart disease), medical condition (cancer related and genetic characteristics), military and veteran status, marital status, registered domestic partner status, age (40 and above), genetic information, political belief or affiliation (unless union related), a person's association with a person or group with one or more of these actual or perceived characteristics, or any other basis protected by federal, state or local law, ordinance, or regulation in any program or activity it conducts or to which it provides significant assistance.
For inquiries or complaints contact our Equal Opportunity Section, (213) 241-7685. Selection and promotion are based on a competitive employment assessment process. Candidates who pass all parts of the assessment process are placed on a hiring (eligibility) list based on their assessment score. Hiring departments may make job offers to candidates on the top three ranks of the hiring list. Eligibility typically lasts for 12 months. The hiring list resulting from this assessment process may be used to fill open positions in related job classifications.
Follow us on:
https://twitter.com/lausdjobs
https://www.facebook.com/LAUSDjobs/
https://www.linkedin.com/groups/1997274
https://www.instagram.com/lausdjobs/