Security Analyst

**Job Title**
- Security Analyst**Permanent Full-Time Excluded Position**

**8:30am to 4:30pm / Monday to Friday**

**(Telecommuting Options Available)**

**Grade 9 ($77,408 to $103,211 per annum)**
- Emily Carr University of Art + Design is a school of students, faculty, thinkers and makers unlike any other. Established in 1925, we are the only specialized, accredited, public, post-secondary university in British Columbia solely devoted to education and research in the creative sector and its associated knowledge economy. We merge research, critical theory and studio practice in an interdisciplinary environment, strengthening our work by the integration of our personal and professional practices. Our strategy, facilities, partnerships and resources are intentionally student-centred to foster dialogue, expression and open connections in support of the next generation of creative and cultural leaders.- The Security Analyst supports and maintains the University’s information security management program and environment, including development, deployment, and use of information security solutions, as well as planning and implementation of information security related projects. The Security Analyst is responsible for the administration, implementation, and support of cybersecurity related standard operating procedures and vulnerability management for all
- **IT** assets, including local and remote cloud-based systems and environments. The Analyst will work closely with the Information Security Officer and internal IT teams to provide cybersecurity related technical support to all members of the University.
- **Benefits of Joining the Emily Carr Community**:

- Enrollment in a comprehensive benefits package, including Dental Coverage, Extended Health, Disability Coverage and Life Insurance.
- Membership in the College Pension Plan.
- Access to personalized telecommuting options.
- Competitive Vacation and Professional Development benefits.

**Some Typical Duties Include**:

- Maintains and implements technical security controls and processes in support of the University’s Information Security Management System.
- Creates, monitors, and maintains local and cloud security configurations and local group policies for users and systems across University domains including Microsoft 365 Security and Compliance Centers.
- Acts as a source of technical information security support for the ITS team in the administration and design of all new systems, configurations, and the administration of cloud services, system security patch management, review of system logs, user account management, and monitoring performance and capacity issues related to system availability.
- Maintains and supports cybersecurity management infrastructure, collaborates, and coordinates with infrastructure teams for server, storage, and network setup.
- Keeps current with cybersecurity related changes and current issues and communicates those changes to relevant stakeholders in the organization.
- Provides support for developing information security awareness training materials for the community.
- Assists in providing threat, risk, and privacy impact analysis for various local and cloud-based systems.
- Monitors and maintains the security and integrity of all IT systems, communication channels, and data, including confidential and privileged information.
- Implements controls related to malware, spam, phishing, unauthorized system access, security system policies, user, and computer accounts and multi-domain IT vulnerability management.
- Monitors and responds to information security related service requests.
- Assists in the development and implementation of cybersecurity related University policies.
- Maintains documentation in wiki format for area issues.
- Performs other related duties as required.

**Required Qualifications**
- Bachelor’s Degree in computer science or a related field.
- Minimum five years’ technical experience in information security.
- Or an equivalent combination of education and experience.
- System and network diagnostic and problem-solving skills.
- Knowledge of IT security solutions and tools for Windows, Linux, and VMware environments.
- Knowledge of IT security best practices, processes, frameworks, and tools.
- Knowledge of network segmentation, VLANs, and enterprise networks in the context of cybersecurity.
- Familiarity with cloud services such as Azure and **AWS** in the context of compliance and security.
- Strong data analysis and problem-solving skills.
- Familiarity with IDS/IPS, **DLP**, security event monitoring, vulnerability assessment, acls and IT forensics.
- Certifications: professional security and information technology certifications are an asset.
- Proven system diagnostic and problem-solving skills.
- Ability to exercise initiative and creative problem-solving to deliver and support a wide range of technology solutions.
- Ability to analyze, validate, specify, and verify business objectives,