Job Title: Information Security Analyst
Location: District Office
Payment Rate: In accordance with the USD 443 Salary Schedule
FLSA Status: Exempt
Reports To: Executive Director of Technology
PURPOSE: The Information Security Analyst will play a critical role in safeguarding the digital assets and sensitive information of Dodge City Public Schools USD#443. This role involves developing, implementing, and managing security policies and procedures to protect the confidentiality, integrity, and availability of data and technology resources. The Information Security Analyst will work collaboratively with IT staff, administrators, and other stakeholders to ensure a secure and compliant environment.
EMPLOYMENT QUALIFICATIONS:
Education:
Bachelor's degree in information security, computer science, or a related field.
Relevant industry certifications such as CISSP, CISM, or CompTIA Security+.
Experience:
Experience in conducting security audits and assessments.
Knowledge of relevant laws and regulations pertaining to data security and privacy.
Experience working in an educational environment or school district.
Knowledge of student data protection and Family Educational Rights and Privacy Act (FERPA) requirements.
Familiarity with cloud security and mobile device management
KNOWLEDGE, SKILLS, & ABILITIES:
Strong understanding of information security principles and best practices.
Proficiency in using security tools and technologies.
Excellent communication and problem-solving skills.
Ability to work independently and in a team.
DUTIES & RESPONSIBILITIES:
Security Policies and Procedures: Develop, maintain, and enforce information security policies, standards, and procedures to ensure the protection of data and resources.
Security Audits and Assessments: Supervise and arrange regular security assessments and vulnerability scans to identify and address potential security risks.
Incident Response: Develop and implement an incident response plan, and lead investigations and remediation efforts in the event of a security breach or incident.
Security Awareness Training: Supervise and arrange the development of security awareness training programs for staff and inform students to promote a culture of security.
Access Control: Assist in managing user access to systems, networks, and applications, ensuring the principle of least privilege.
Threat Monitoring: Implement and monitor intrusion detection and prevention systems, firewall logs, and other security tools to detect and respond to threats in real-time.
Security Compliance: Ensure compliance with relevant laws, regulations, and industry standards (e.g., FERPA, HIPAA, NIST, CIS).
Security Architecture: Collaborate with IT teams to design, implement, and maintain secure network and system architecture.
Security Tools: Research, recommend, and implement security tools and technologies to enhance the security posture.
Security Reporting: Prepare and present security reports to management, detailing the state of the security environment and recommendations for improvement.
Security Patch Management: Monitor and manage the application of security patches and updates to software and hardware.
Education and Certifications
Performs other duties as assigned.
PHYSICAL REQUIREMENTS & WORK ENVIRONMENT:
While performing the duties of this job, the employee is regularly required to sit; use hands to finger, handle, or feel and talk and hear.
The employee is occasionally required to stand; walk and reach with hands and arms.
The employee must regularly lift and /or move up to 25 pounds.
Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and the ability to adjust focus.
The work environment is in an office setting.
The noise level in the work environment is usually moderate.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
