St. John's University logo

Information Security Analyst

St. John's University
Full-time
On-site
New York City, New York, United States
$83,600 - $94,050 USD yearly
Cybersecurity & Compliance

St. John’s, established in 1870, has two New York City campuses; international locations in Rome, Italy; Limerick, Ireland; and Paris, France; and study abroad locations around the world. The Princeton Review and other top rankings consistently recognize the University’s outstanding academics, diverse student body, dynamic internship, and volunteer opportunities, focus on student life, and diverse study abroad offerings. St. John’s University offers more than 100 undergraduate and graduate programs in its six colleges and schools, with a growing number of programs offered online. The University is accredited by the Middle States Commission on Higher Education and 12 other major academic and professional associations. 

 

A dedication to diversity, equity and inclusion is at the heart of our mission.  As a Catholic and Vincentian university, St. John’s is committed to institutionalizing practices of inclusive excellence to ensure that we welcome and celebrate the intrinsic worth of all members of our community.  We will become an even stronger university as we enhance equity at every level of our institution. Our graduates will excel in the competencies and values needed for leadership and service in a rapidly evolving world. 

 

Department: Information Technology 

Specific Job Title: Information Security Analyst – Identity & Access Mgmt Focus 

Reports toAssociate Director, Systems & Security Architect 

Campus:Queens 

 

Job Summary:

The Information Security Analyst is responsible for managing the security risk of the University’data and infrastructure and the user identity ecosystem. The candidate will oversee the implementation of the various security measures and tools, whether outsourced or in-house, and help safeguard technical assets against a cyber-attack. The role is highly collaborative, involving frequent interaction with various members in the IT organization. 

In addition to overseeing the implementation of various security measures and tools, the Analyst plays a key role in protecting user credentials, access privileges, and authentication systems, which includes supporting the Identity & Access Management (IAM) platform to ensure proper user provisioning, access governance, and role-based access control (RBAC) across systems. 

The role is highly collaborative, involving regular interaction with IT leadership, application owners, and external partners. The Information Security Analyst will monitor security threats, lead vulnerability remediation efforts, and support security operations while also contributing to the development and ongoing maintenance of the IAM lifecycle. 

The candidate will participate in any security investigations and incident management drills, helping analyze security-related data from a wide range of security products and devices. 

 

Essential Functions: 

  • Manage the relationship with outsourced security vendors, including regular review of deliverables related to Identity Services controls and data access. 

  • Provide directions to identify, design, and execute security projects that improve detection, response, and access control capabilities. 

  • Collaborate with the Identity & Access Management team to ensure role definitions, access reviews, provisioning/deprovisioning processes, and segregation of duties policies are consistently applied. 

  • Support IAM lifecycle processes by monitoring and assisting with the automation of user access provisioning, changes, and terminations. 

  • Assist with the implementation and administration of IAM solutions, including role mining, entitlement reviews, and access certification campaigns. 

  • Run periodic incident response drills and include identity compromise scenarios and credential misuse as part of test planning. 

  • Assist with the integration of IAM services with systems such as Active Directory, cloud applications, learning management systems, and enterprise applications. 

  • Ensure access governance by monitoring elevated/privileged accounts and supporting the implementation of least privilege policies and just-in-time access where applicable. 

  • Review and respond to security alerts related to unauthorized access attempts, anomalous login behavior, or privilege escalation. 

  • Analyze the impact of identity-related vulnerabilities, including misconfigured permissions and weak credentials, and assist with remediation. 

  • Support security audits and compliance reporting by gathering identity and access data and providing evidence of policy adherence. 

  • Monitor systems and logs for suspicious activity, especially related to identity compromise or misuse of credentials. 

  • Manage cybersecurity awareness training, incorporating education around password hygiene, MFA, phishing, and identity theft. 

  • Partner with HR and IT teams to ensure identity lifecycle events (onboarding, offboarding, transfers) are securely and accurately reflected in system access. 

  • Participate in investigations and forensics activities involving identity compromise or unauthorized access. 

 

Competencies: 

The candidate should have: 

  • Five to seven years of working within information security, with demonstrated experience supporting Identity & Access Management systems (e.g., SailPoint, Okta, Azure AD, or equivalent). 

  • Strong understanding of user identity lifecycle management, directory services (e.g., LDAP, Active Directory), RBAC, and access governance principles. 

  • Demonstrated experience with access reviews, entitlement management, and identity-related workflows. 

  • Demonstrated technical capabilities and excellent understanding of systems, networking, and technology infrastructure, including Firewalls, VPN, DLP, Web-Proxy, DNS/DHCP 

  • Technical capabilities in systems, networking, and infrastructure, including security platforms such as Firewalls, VPNs, DLP, Web-Proxy, and DNS/DHCP. 

  • Familiarity with MFA, SSO, and federation technologies and protocols, such as SAML, OAuth, and SCIM. 

  • Experience writing JavaScript or equivalent programming language 

  • Knowledge of scanning and compliance tools (e.g., Tenable, Qualys) and identity risk scoring. 

  • Familiarity with application security, encryption technologies, and current identity-related cyber threats. 

  • Understanding of the NIST framework and the components of the framework to evaluate risk. 

  • Organizational skills and attention to detail are critical, especially to managing open issues and items that are cross-team within the organization. 

  • Demonstrated experience working in collaboration with a team as an effective team member. 

  • Excellent interpersonal skills and ability to work with a diverse clientele.  

  • Demonstrated ability to communicate effectively verbally and in writing.  

  • Demonstrated ability to work independently.  

  • Be able to exercise good judgment, logic, and troubleshooting skills to anticipate and solve problems independently.  

  • Proven experience in handling multiple priorities simultaneously.  

  • Ability to work a flexible work schedule, including evenings and weekends, when necessary. 

 

Work Environment: 

The candidate can work in a hybrid posture (mix of remote and on-site). 

 

Position Type/Expected Hours of Work: 

This position is full-time, Monday through Friday, 8:30 am to 4:30 pm. At times the candidate may be required to work later hours and/or weekends as needed in the event of any major issues. 

 

Required Education and Experience:  

  • Completed a bachelor's degree program or higher in business, computer science, or equivalent field.  

  • Non-bachelor’s degrees are accepted with equivalent years of experience and relevant professional certifications.  

 

Additional Eligibility Qualifications:  

  • CISSCP or other industry security certification a plus. 

 

In compliance with NYC’s Pay Transparency Act, the annual salary range for this position is $83,600 - $94,050. St. John’s University considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, education/training, key skills, internal peer equity, as well as market and organizational considerations when extending an offer.  

 

*Important Note- St. John’s is NOT an E-Verify Employer  

 

St. John’s offers a competitive compensation program which is commensurate with your qualifications, experience, and contingent upon the departmental budget. We also offer an extremely comprehensive benefits program to meet the diverse needs of our workforce. Along with exceptional benefits such as medical, dental, life insurance, long term disability insurance, tuition remission, generous 403(b) employer contribution, employee assistance program, and liberal paid time off policies, faculty and staff can also enjoy St. John’s performing arts, libraries, bookstores, dining facilities, campus recreation and sporting events 

 

Any offer of employment is subject to receipt by St. John’s University of satisfactory references, verification of employment and education. 

 

St. John’s University is an Equal Opportunity Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national or ethnic origin, age, status as an individual with a disability, protected veteran status, or any other characteristic protected by law.