We are located approximately 20 miles north of Boston and parking is free. We are also accessible by commuter rail on the Newburyport/Rockport line. Come and explore Endicott’s seaside locale where employees are an important part of the bustling campus community!

Please apply today if this opportunity looks like the right fit for you.

.

Reporting to the Director of Infrastructure Services, the Information Security Analyst works alongside the Senior Security Analyst and the rest of the Infrastructure team to protect the college’s information and infrastructure from internal and external threats.  The position also works in conjunction with the Director of the Information Security Program to align the college’s technology with the constantly evolving policies and procedures related to information security.

The daily responsibilities of this job include evaluating the risk, requirements, and solutions related to security; provides strategic and technical guidance in the design, implementation and documentation of appropriate security processes for campus-wide information systems; recommends and monitors computing practices to prevent and to recover from security breaches; designs and maintains critical campus security infrastructure, and assists in the coordination and handling of security incidents when such breaches occur. 

About Endicott College

Endicott College is a vibrant community located on Boston’s North Shore, with a beautiful oceanfront campus in Beverly, Massachusetts. We’re known for combining academic excellence with hands-on learning, and we take pride in fostering a supportive environment for both students and employees. 

Working at Endicott means joining a close-knit campus community where your contributions matter and where collaboration, creativity, and professional growth are valued.

To learn more about our employee benefits click here.

45% of Time:  Monitor internal and external systems for abnormalities.

• Monitor SIEM and other log aggregators for potential abnormalities or errors.

• Prepare reports that take note of security breaches and the extent of the damage caused by these breaches.

• Monitor the company’s networks to keep an eye out for any security breaches and investigate it if one does occur.

• Manage systems owned by the Information Security Team.

25% of Time: Conduct internal and external testing

• Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack.

• Install software that is created to protect sensitive information, such as firewalls and data encryption programs.

20% of Time: Research and Training

• Assesses new security technologies to determine potential value for the enterprise. 

• Research the latest in information technology security trends to keep up to date with the subject and use the latest technology to protect information.

• Attend conferences and training several times per year to network with security professionals at other organizations.

• Provide technical expertise regarding security-related concepts to operational teams within campus technology.

10% Incident Response Planning & Response

• Review, investigate, and respond to real-time alerts within the environment.

• Assist the Senior Analyst in developing a plan for remediation.

• Work with the Senior Security Analyst and Director of the Information Security Program to regularly test the security plan for best standards and practices.

Community Engagement
Be an active participant in the life of the College by attending and supporting key events like Commencement, Homecoming, and other all-hands-on-deck gatherings. Show a spirit of collaboration and community involvement, including volunteering when possible.

Other Duties

• Other duties as assigned

Reports to the Director of Infrastructure Services and will work alongside the Senior Security Analyst 

No supervisory responsibilities.

Core Competencies

Reliability

able to get the job done, available and engaged with the job and the Endicott community

Leadership

able to establish a vision and set direction for the Workday roadmap and governance

Organization

organizes time and resources well so that work is done efficiently and on time

Communication Skills  

has clear, effective and efficient ways of communicating, both orally and in writing

Adaptability

shows a willingness to adopt new ideas and to do things differently

Follow Through

takes ownership of projects and sees them through fruition

Customer Service

the employee anticipates the needs and responds to queries in a timely, competent, and approachable manner

Initiative/Personal Leadership

identifies opportunities for improvement and actively contributes to solutions

Team Player

shows a willingness to collaborate and share information, knowledge and experience with team members

Knowledge/Skills/Abilities

• Bachelor’s degree in computer science, business or a related field required.
• Minimum of five years of Information Technology experience, with some focus on Information Security.
• Knowledge and familiarity in applying industry-standard IT security frameworks (NIST, ISO, etc.).
• Knowledge of key regulatory frameworks including GLBA, FERPA, HIPAA, PCI, GDPR and MA 201 CMR 17.00.
• Ability to work with a team, and to be able to collaborate with stakeholders, even without direct authority.

Preferred Qualifications:

• Experience working in higher education settings.
• One or more relevant professional certifications (e.g., CISSP, CISM, etc.).