Information Security Analyst (Information Security Analyst II)

San Diego State University is seeking a detail-oriented and collaborative Information Security Analyst to join the Information Technology Security Office (ITSO). In this role, you will help protect the university’s digital environment by strengthening endpoint security, monitoring threats, and supporting compliance efforts. You’ll work closely with campus partners to ensure secure systems that support teaching, research, and student success across the university. Key Responsibilities: Endpoint Security & System Protection Implement, manage, and continuously improve endpoint security controls across university devices. Monitor and strengthen protections such as malware defense, system configurations, and access controls. Partner with IT teams to deploy secure solutions that balance security with operational needs. Vulnerability Management & Compliance Conduct vulnerability scans, assess risks, and coordinate timely remediation efforts. Manage patching processes and ensure systems meet security and compliance standards. Monitor and report on system compliance, identifying and addressing gaps. Security Monitoring & Incident Response Analyze security alerts and logs to detect, investigate, and respond to potential threats. Support incident response efforts, including containment, documentation, and follow-up actions. Help improve response procedures and security playbooks. Reporting, Documentation & Collaboration Develop dashboards and reports to communicate security posture and trends. Maintain documentation to support audit readiness and operational continuity. Provide guidance to campus stakeholders on secure practices and data protection. Governance & Risk Support Contribute to security standards, risk assessments, and compliance initiatives. Support audit processes and ensure alignment with CSU and regulatory requirements. Why Join Us? Mission-driven work – Help safeguard systems that support student learning, research, and innovation. Collaborative culture – Work alongside a supportive IT and campus community. Impact at scale – Protect a large, complex university environment with real-world security challenges. Growth opportunities – Build expertise in cybersecurity, compliance, and emerging technologies. Position Information This is a full-time (1.0 time-base), benefits eligible, permanent/probationary position. This position is designated as exempt under FLSA and is not eligible for overtime compensation. Standard SDSU work hours are Monday – Friday, 8:00 a.m. to 4:30 p.m., but may vary based on operational needs. This position is eligible for telecommuting up to 3 days per week, following a training period during which on-site presence is required. Department Summary The Information Technology Security Office (ITSO), reporting to the Chief Information Officer (CIO), is part of the IT division. ITSO provides campus-wide core technology and security services, collaborating with university departments, external auxiliary organizations, and the CSU Chancellor's Office to support core technology and security services across the campus. The SDSU OneIT Community is vital to the university’s success by delivering core technology services across our campuses, colleges, administrative areas, and auxiliary units. Our mission is to support innovation in teaching, research, and service by strategically developing infrastructure, responsibly managing IT assets, actively engaging with our community, and fostering collaboration. Guided by our Vice President for Information Technology/Chief Information Officer, we uphold SDSU’s commitment to learning, discovery, and engagement, with our core values—service, collaboration, respect, integrity, innovation, and professionalism—permeating every aspect of our work. For more information regarding the Information Technology Security Office, click here .