Job Description

Responsible for conducting the day to day operations of information security and helping maintain compliance at GRCC. This position is part of a team, focused on providing exceptional service that exceeds user expectations. The proper candidate is a motivated self-starter with strong interpersonal skills, a desire to learn and expand technical proficiencies, and the ability to work within a collaborative, team-oriented environment.

---

Requisition ID: 697
Department: IT Security
Employee Group: Professional, Management, and Administration (PMA)
Schedule: 40 Hours/52 Weeks
Lead Cybersecurity Analyst Compensation: TP5 - $73,445 annually
Cybersecurity Analyst II Compensation: TP4 - $65,284 annually
Benefits: Full-Time
Reports to: Chief Information Security Officer
Posting Opens: 01/06/2025
Posting Closes: Open until filled. Initial candidate review will begin on 01/20/2025

---

COMPENSATION STATEMENT

Starting salaries will vary depending on the qualifications and experience of the selected candidate. This position will be filled at the Lead Cybersecurity Analyst, Job Level TP5 with a salary of $73,445 as the primary goal. The requirements listed below reflect the Lead Cybersecurity Analyst level expectation. Applicants with lesser experience and qualifications are encouraged to apply and may be considered if the primary goal is not met. Lesser-experienced candidates will be classified as a Cybersecurity Analyst II, Job Level TP4 with a salary of $65,284.

---

SHARED ESSENTIAL FUNCTIONS

• Performs Computer Security Incident Response activities such as investigating breaches, mitigating threats, as well as recording and reporting incidents
• Monitor, maintain, and analyze Intrusion Detection System (IDS), Endpoint Detection and Response (EDR) and other security tools to identify security issues for remediation
• Monitor Data Loss Prevention (DLP) systems and apply preventative controls per GRCC procedures
• Automates the collection, organization, analysis, archiving and reporting of all log data
• Evaluate and assess organizational risk
• Maintains an awareness of existing and proposed security standards, State and Federal legislation and regulations pertaining to information security and identifies regulatory changes that will affect information security policies, standards, procedures, controls, and recommends/implements appropriate changes
• Performs vulnerability and risk assessments for software, systems, user accounts, application access, and network shares
• Assist server and data owners in remediation of vulnerable systems as needed
• Prepares incident reports of analysis methodology and results
• Helps to develop communications, training, and actively promotes related campaigns for information security awareness
• Assists in creating and reviewing IT security policies/procedures
• Conducts regular vulnerability scans and uses security tools to meet IT Security objectives
• Help manage data in support of data governance and compliance
• Participates in special projects as required
• Assists in the configuration and maintenance of IT security systems and servers
• Conducts and assists with system audits as needed
• Other duties as assigned

---

Additional Functions for Lead Cybersecurity Analyst

• Helps lead the response to security incidents, including investigating breaches, mitigating threats, and coordinating with relevant stakeholders
• Responsible for documenting security incidents, responses, and resolutions for future reference and compliance purposes
• Collaborates with other IT teams, departments, and external partners to enhance the organization's overall security
• Continuously research and evaluate emerging security technologies and best practices to improve the organization's security posture
• Leads in performing vulnerability and overall risk assessments for software, systems, user accounts, application access, and network shares
• Leads in developing communications, training, and actively promotes related campaigns for information security awareness to both technical and non-technical stakeholders
• Provides guidance and leadership to the cybersecurity team, including training, mentoring, and task delegation
• Oversees the configuration and maintenance of IT security systems and servers
• Attends meetings as needed in order to provide IT security guidance to stakeholders
• Helps ensure campus wide compliance with standards and regulations such as PCI, HIPAA, GDPR, FERPA, etc.

---

JOB SPECIFICATIONS

Education Credentials

• Bachelor’s Degree in Information Assurance, Computer Science, or related field preferred
• IT security related certification(s) preferred

Additional Educational Credentials (Required for Lead Cybersecurity Analyst role):

• Must have an Associates or Bachelor’s Degree (Bachelor’s Degree in related field preferred)
• At minimum hold one (1) IT security related certification(s) (ISC2, GIAC, etc.)

Work Experience

• Proven experience in working with IT security system technologies
• Experience working as part of an IT security team preferred
• Minimum 3 years of experience working with Information Security

Additional Work Experience (Required for Lead Cybersecurity Analyst role):

• Proven experience in planning, organizing, and maintaining IT security system technologies
• Minimum 6 years of Information Security experience

---

Skills

• Knowledge of security policies, procedures and practices
• Knowledge of federal and state regulations relating to privacy and security of information
• Excellent oral and written communications skills and ability to effectively communicate with a diverse user group of students, faculty and staff
• Excellent analytical and troubleshooting skills
• Demonstrated ability to work independently and manage time effectively by utilizing work and project plans to meet deadlines
• Strong communication skills, team and customer-oriented focus with an ability to lead and motivate others
• Knowledge of data security administration principles, methods, and techniques
• Requires familiarity with domain structures, user authentication, and digital signatures
• Requires understanding of firewall theory and configuration
• Solid working knowledge of privacy and security laws and regulations, such as HIPAA, FERPA and the Payment Card Industry Data Security Standard (PCI-DSS)
• Working knowledge of network protocols and common services such as DNS, FTP, email, TCP/ICMP/UDP
• Working knowledge of Linux/Unix/Microsoft Servers, including scripting, and basic system administration
• Knowledge of signature development in intrusion detection products

Additional Skills (Required for Lead Cybersecurity Analyst role):

• Proven ability to mentor and transfer knowledge to others
• Advanced knowledge of data security administration principles, methods, and techniques
• Advanced incident response investigation skills
• Advanced knowledge of signature development and intrusion detection skills

Physical Demands

• Precise hand-eye coordination and fine motor skills are necessary for tasks such as configuring security settings, typing detailed reports, and performing data analysis
• While the job is predominantly desk-based, IT Security Analysts may occasionally need to move within the office to attend meetings, collaborate with colleagues, or access equipment in server rooms or data centers. This may involve walking, standing, or climbing short flights of stairs
• The role may occasionally require lifting or carrying lightweight equipment such as laptops, mobile devices, or cables

Mental Demands

• Must manage stress effectively to make sound decisions under pressure such as during security incidents
• Must be able to maintain confidentiality and use good judgment in handling sensitive or difficult situations
• Must possess strong analytical skills to evaluate complex systems, identify vulnerabilities, and assess potential threats
• Must be detail oriented and be meticulous in your work
• Must be adept at troubleshooting and finding innovative solutions to resolve security issues promptly

Working Conditions

• This position is currently remote-work eligible per the College's Remote Work Policy Agreement
• GRCC will comply with any mandated health and safety requirements. Compliance information is available on our policies website.
• The work environment is typically indoors, within a climate-controlled office setting. Analysts may occasionally need to work in server rooms, which may have specific environmental conditions such as temperature and noise control
• Extensive use of a computer, including typing, using a mouse, and viewing a computer screen, is a fundamental aspect of the job
• Job duties may necessitate the candidate to be available for on-call or at least reachable during emergencies, such as cybersecurity incidents

BENEFITS

• Health Coverage: Six health insurance plan options, including one with no health insurance premiums.
• Time off: Enjoy substantial vacation time.
• Wellness Program: Access resources for physical and mental wellbeing, and an onsite gym membership
• Continuous Learning: Career development and educational opportunities.
• Retirement Plans: Secure your future with our retirement options, including the state retirement plan or a 401A with a 12% employer contribution.

---

NEXT STEPS / APPLICATION PROCESS

GRCC is only accepting online applications for this position at https://www.grcc.edu/jobs. Submit a cover letter and resume. The opportunity to apply for this position will close at the end of the day on the close date referenced at the top of this job posting. Individuals with diverse backgrounds are encouraged to apply. Grand Rapids Community College is an equal opportunity employer. Visa sponsorship is not available.

---

HIRING PROCESS

GRCC uses an Evidence Based Selection Process, where we make data driven hiring decisions to help mitigate bias throughout the hiring process. As part of this process, candidates will participate in assessments (cognitive and behavioral), reference checks and interviews.

Predictive Index Assessment (behavioral & cognitive) REQUIRED: In order to have your application considered, you must complete the assessments:

---

NONDISCRIMINATION STATEMENT

Grand Rapids Community College creates an inclusive learning and working environment that recognizes the value and dignity of each person. It is the policy and practice of GRCC to provide equal educational and employment opportunities regardless of age, race, color, religion, marital status, sex/gender, pregnancy, sexual orientation, gender identity, gender expression, height, weight, national origin, disability, political affiliation, familial status, veteran status or genetics in all programs, activities, services, employment and advancement including admissions to, access to, treatment in, or compensation in employment as required by state and federal law. GRCC is committed to reviewing all aspects of GRCC programs, activities, services and employment, including recruitment, selection, retention and promotion to identify and eliminate barriers in order to prevent discrimination on the basis of the listed protected characteristics. The college will not tolerate any form of retaliation against any person for bringing charges of discrimination or participating in an investigation. Further information may be obtained from the EEO Office or the Office of General Counsel, 143 Bostwick Avenue NE, Grand Rapids, MI 49503-3295.

*Please mention you saw this ad on DiversityInAcademe.*

Apply Now