St. John's University · 7 hours ago
Information Security Analyst
Queens, NY
Full-time
Hybrid
Mid, Senior Level
$84K/yr - $94K/yr
5+ years expSt. John's University, established in 1870, is seeking an Information Security Analyst to manage the security risk of the University’s data and infrastructure. The role involves overseeing security measures, protecting user credentials, and collaborating with IT leadership to ensure effective identity and access management.
Higher Education
Responsibilities
Manage the relationship with outsourced security vendors, including regular review of deliverables related to Identity Services controls and data access
Provide directions to identify, design, and execute security projects that improve detection, response, and access control capabilities
Collaborate with the Identity & Access Management team to ensure role definitions, access reviews, provisioning/deprovisioning processes, and segregation of duties policies are consistently applied
Support IAM lifecycle processes by monitoring and assisting with the automation of user access provisioning, changes, and terminations
Assist with the implementation and administration of IAM solutions, including role mining, entitlement reviews, and access certification campaigns
Run periodic incident response drills and include identity compromise scenarios and credential misuse as part of test planning
Assist with the integration of IAM services with systems such as Active Directory, cloud applications, learning management systems, and enterprise applications
Ensure access governance by monitoring elevated/privileged accounts and supporting the implementation of least privilege policies and just-in-time access where applicable
Review and respond to security alerts related to unauthorized access attempts, anomalous login behavior, or privilege escalation
Analyze the impact of identity-related vulnerabilities, including misconfigured permissions and weak credentials, and assist with remediation
Support security audits and compliance reporting by gathering identity and access data and providing evidence of policy adherence
Monitor systems and logs for suspicious activity, especially related to identity compromise or misuse of credentials
Manage cybersecurity awareness training, incorporating education around password hygiene, MFA, phishing, and identity theft
Partner with HR and IT teams to ensure identity lifecycle events (onboarding, offboarding, transfers) are securely and accurately reflected in system access
Participate in investigations and forensics activities involving identity compromise or unauthorized access
Qualification
Required
Five to seven years of working within information security, with demonstrated experience supporting Identity & Access Management systems (e.g., SailPoint, Okta, Azure AD, or equivalent)
Strong understanding of user identity lifecycle management, directory services (e.g., LDAP, Active Directory), RBAC, and access governance principles
Demonstrated experience with access reviews, entitlement management, and identity-related workflows
Demonstrated technical capabilities and excellent understanding of systems, networking, and technology infrastructure, including Firewalls, VPN, DLP, Web-Proxy, DNS/DHCP
Technical capabilities in systems, networking, and infrastructure, including security platforms such as Firewalls, VPNs, DLP, Web-Proxy, and DNS/DHCP
Familiarity with MFA, SSO, and federation technologies and protocols, such as SAML, OAuth, and SCIM
Experience writing JavaScript or equivalent programming language
Knowledge of scanning and compliance tools (e.g., Tenable, Qualys) and identity risk scoring
Familiarity with application security, encryption technologies, and current identity-related cyber threats
Understanding of the NIST framework and the components of the framework to evaluate risk
Organizational skills and attention to detail are critical, especially to managing open issues and items that are cross-team within the organization
Demonstrated experience working in collaboration with a team as an effective team member
Excellent interpersonal skills and ability to work with a diverse clientele
Demonstrated ability to communicate effectively verbally and in writing
Demonstrated ability to work independently
Be able to exercise good judgment, logic, and troubleshooting skills to anticipate and solve problems independently
Proven experience in handling multiple priorities simultaneously
Ability to work a flexible work schedule, including evenings and weekends, when necessary
Completed a bachelor's degree program or higher in business, computer science, or equivalent field
Non-bachelor's degrees are accepted with equivalent years of experience and relevant professional certifications
Preferred
CISSCP or other industry security certification a plus
Benefits
Medical
Dental
Life insurance
Long term disability insurance
Tuition remission
Generous 403(b) employer contribution
Employee assistance program
Liberal paid time off policies
Performing arts
Libraries
Bookstores
Dining facilities
Campus recreation
Sporting events
Company
St. John's University
St.
5001-10000 employees
H1B Sponsorship
St. John's University has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2024 (19)
2023 (7)
2022 (6)
2021 (9)
2020 (8)
Funding
Current Stage
Late StageLeadership Team
Dallas Maddox
Chief Data Officer
Elena M. Damiani, MBA, MA
Director of Media Planning and Partnerships
Recent News
Sports Business Journal
2025-09-19
2025-08-25
Company data provided by crunchbase