Cybersecurity Specialist presso Carl Sandburg College, IL
Carl Sandburg College, IL · Galesburg, Stati Uniti d'America · Onsite
- Professional
- Ufficio in Galesburg
About the Department
Purpose/position code/classification/level/work relationships
- Provide departmental and administrative support for the entire College community.
- MIDTIC18210
- Confidential, Level I
- Non-exempt, non-bargaining unit
- Reports to: Chief Information Officer
- Principal working relationships: IT staff, faculty, staff, and students
Position Duties
- Monitor security logs, alerts, and reports from intrusion detection/prevention systems (IDS/IPS), firewalls, and Microsoft 365 security tools.
- Escalate suspicious activities and assist with incident response investigations.
- Document findings and contribute to playbooks and runbooks for recurring alerts.
- Conduct periodic audits of physical security (locks, keycard systems, cameras).
- Provide basic end-user support related to security best practices.
- Stay up to date with emerging cyber threats, vulnerabilities, and security advisories, applying updates or mitigation strategies.
- Support access control reviews and user account audits to ensure compliance with least privilege principles.
- Participate in tabletop exercises and security awareness training initiatives.
- Other duties as assigned.
- The delivery and tracking of annual staff and student cybersecurity awareness training.
- Developing educational materials, phishing awareness campaigns, and knowledge base articles.
- Maintaining secure access to network closets, server rooms, and other sensitive areas.
- Enforcing and documenting physical access policies.
- Compliance of security frameworks and state/federal regulations (e.g., SOPPA, FERPA, PCI DSS).
- Vulnerability management by scanning systems, analyzing results, and tracking remediation with IT teams.
- Maintain a working knowledge of the college’s emergency procedures and actively participate in the college risk-management program.
- Monitor conditions, events and circumstances that present risk to the college community. Intervene and/or report as specified in the college’s risk-management plan.
Minimum Qualifications
- Associate’s degree in Cybersecurity, Information Technology, or related field OR equivalent experience/industry certification (e.g., CompTIA Security+) required.
- Foundational knowledge of cybersecurity concepts (e.g., phishing, malware, firewalls, authentication).
- Basic understanding of networking concepts (IP, VLANs, switches, routers).
- Strong organizational and communication skills.
- Ability to handle sensitive information with discretion.
- Experience with Microsoft 365 security tools (Entra ID, Defender, Exchange Online) preferred.
- Familiarity with SIEM tools or log monitoring platforms preferred.
- Hands-on experience with intrusion detection/prevention or endpoint security tools preferred.
- Exposure to compliance requirements in education or public sector preferred.
- Spanish or French proficiency preferred.
Other Qualifications
Physical requirements to perform job functions
- Basic dexterity skills (computer work, telephoning, and other office equipment).
- General physical effort required includes sitting, bending, reaching, and some lifting (20 lbs. or less) and the ability to place a work order for anything over that limit