Information Security Analyst

at  Douglas College

WORK ARRANGEMENTS

This regular, full-time (35 hours per week) position is available starting December 9, 2024. Regular hours of work are Monday to Friday, 8:30 am – 4:30 pm. Shift days and times may change depending on the Department’s need. Occasional evening work may be required. The position is located at the Coquitlam/New Westminster campus; however, successful candidate must be available for occasional work at the New Westminster/Coquitlam campus.

WHAT DOUGLAS OFFERS

DO what you love. Be good at it. That’s how Douglas College defines a great career. It’s a philosophy that resonates through our classrooms, our offices and our boardrooms. It inspires our students and drives us to make Douglas College one of BC’s Top Employers. We love what we do. And we’re looking for passionate, motivated people to join us in making one of Canada’s best colleges even better.

THE ROLE

To function as an information security technical specialist and to work with system administrators to ensure that systems are designed, implemented and maintained using accepted information security principles. The duties may include design, implementation and maintenance of information security tools, server hardware, software, and Data Centre technologies present in a medium sized information technology environment. The day to day activities will be a combination of operational and project work as well as developing and deploying new information security solutions.

RESPONSIBILITIES

1. Working with the Manager, IT Security, the Security Analyst will:
   a. Implement security tools, monitor logs, and investigate anomalies
   b. Develop and maintain guidelines for securing servers, workstations, etc.
   c. Conduct information security assessments and reviews
   d. Investigate internal and external information security incidents
   e. Ensure compliance with Douglas College information security standards, policies, and procedures
   f. Train others on best practices in information security
   g. Conduct information security research
   h. Adapt quickly to new situations and remain calm under pressure
2. Administers and provides operational support for college information security systems
   a. installs, configures and maintains operating system software;
   b. creates and maintains user accounts;
   c. ensures server logging and log auditing;
   d. ensures the availability of server resources (memory, disk, CPU cycles);
   e. ensures server and system security, including system hardening, upgrades, security patches, virus scanning and malware protection;
   f. monitors, identifies and remediates issues related to the performance, availability, security and capacity planning of servers;
   g. maintains the documentation of server hardware and operating systems;
3. Provides technical and operational support for information security in software applications and systems.
   a. installs, configures and maintains software applications;
   b. maintains the documentation of software applications;
   c. performs scripting and programming as required;
   d. provides a liaison with all teams in ITS regarding issues related to application and server security.
4. Remains current in the information security field
   a. Knowledge of securing networks, servers, workstations and applications
   b. Configuration of firewall rule sets, IPS / IDS systems, and malware / virus detection systems
   c. Knowledge of Unix and Windows system administration
5. Provides leadership to and active engagement with,
   a. technology projects;
   b. technology teams;
   c. professional services resources with projects and teams;
   d. creation and maintenance of development and ‘sandbox’ environments;
   e. research and development of new technologies that may contribute to College Strategic Directions;
   f. integration of databases and systems to ensure relevant information is available where needed;
   g. process analysis, revision and automation

TO BE SUCCESSFUL IN THIS ROLE YOU WILL NEED

1. Successful completion of a two-year diploma program or bachelor’s degree in Computer Information Systems at a recognized post-secondary institution, supplemented by three years’ of directly related work experience. An equivalent combination of education and experience in computer systems administration, operating systems, directory services, software applications, and programming may be considered.
2. CISSP, GIAC, or similar security-related certification.
3. Fluent in English, both verbal and written.
4. Demonstrated ability in:
   a. Securing networks, servers, workstations and applications.
   b. Configuration and monitoring of firewall rule sets, IPS / IDS systems, malware / virus detection systems and other security prevention / detection systems.
   c. Administration of Linux and Windows systems.
   d. Use of network sniffers and analysis of captured information.
   e. Scripting languages (e.g. shell, powershell, python).
   f. Keeping abreast of current information security knowledge.
   g. Establishing and maintaining computer system specific documentation and operational procedures.
5. Proven skills in:
   a. Problem-solving and analytical skills.
   b. Organization, time management, and multi-tasking.
   c. Interpersonal relationships.
   d. Working effectively with others in a team environment.
   e. Communicating effectively in person, on the phone, and in writing with all stakeholders.
   f. Working independently with minimal supervision.
   g. Establishing priorities and achieving deadlines.
6. This position required sound judgment and adherence to confidentiality in the application of policies and procedures.