Job Posting -- Boston College Security Analyst

[David Escalante <david.escalante () BC EDU>]

This is being posted to several lists -- apologies for cross-postings.
Job description below.

If you are interested in this position and wish to apply, go to
http://www.bc.edu, and on the "Quick Links" pull-down, choose "Job
Opportunities", then click "Go".  This will bring you to the Human
Resources page with instructions for applying.  When scanning the list
of available jobs, the reference number for this particular position is
#1470.
--
David Escalante
Boston College
---------------------------------------------------------------------------------

Job Description:
The Information Security Analyst is responsible for multiple day-to-day
security tasks, in addition to various short and medium term information
security projects, as part of supporting the entire Boston College
community's information security needs. Day-to-day tasks include cyber
incident response, evaluation of requests for security changes, and
monitoring of various security devices and audit logs. This also
involves providing ongoing support and advice to IT staff and end users
on a variety of security issues, and ensuring that Boston College's
security policy and procedures are adhered to.

Project work includes investigating, evaluating, and deploying security
solutions to meet Boston College's needs. The needs will be defined in
the context of an ongoing ISO 17799 security best practices
implementation. Project activities will include attending meetings and
working with others to determine requirements and deploy appropriate
solutions. Project activities will also include developing and
implementing new security policies and procedures, and recommending
strategies to prevent security exposures and prevent intrusions with
guidance from the Director of Policy and Security.

Requirements:
Bachelors Degree or equivalent along with two to three years experience
in Information Security.

Candidate must also have:
- Strong technical knowledge in multiple domains of information security
including  policy development, access control systems,
telecommunications, network, and Internet security, legal & regulatory
compliance.
- Strong project management and writing skills.
- Knowledge of operating system security for servers and desktops, plus
network
security and application security.
- Coding skills in C, Java, or PERL a plus.
- Must be able to work with and influence people at multiple levels
within a major university.
- Must be able to work independently and within a team setting.