Senior Information Security Analyst (2-Year Term)
National Education AssociationIf you would enjoy working in a dynamic environment and are looking for an opportunity to become part of a stellar team of professionals, we invite you to apply online today.
Posting Period:
March 14, 2026 - Until FilledEmployee Type:
NEASO NEA Staff Organization, OO114 Information Technology Services Department (ITS)Position Type:
Regular (fixed-term) (Fixed Term)Salary Range:
$102,062.00 - $158,178.00Rank:
NEASO Rank 7Position Details:
This 2-year Term position supports the NEA’s strategic objective to focus the energy and resources of its 3 million members toward the promotion of public education by providing high level safety of Information Technology assets and to protect systems from intentional or inadvertent access, harm, or destruction.
Position Summary: Individual will demonstrates ownership, accountability, and a security-first mindset while responding quickly to security incidents and escalations. Responsibilities include assisting in the development and implementation of security standards, procedures and guidelines for multiple platforms and diverse systems environment. Responsibilities will also include scans and analysis of scan reports related to PCI compliance and completing necessary PCI related documentation for submission to bank(s) to assert compliance with PCI standards. The incumbent updates, maintains, and documents security controls and works collaboratively with other teams to ensure that new and existing infrastructure, software, hardware, architecture, and applications are developed and deployed in a secure manner. The incumbent will assis in the development and management of security for one or more IT functional areas; implementing and maintaining security technology solutions which may include encryption, firewalls, identity management solutions and associated authentication (AuthN), authorization (AuthZ) , intrusion detection, and gateway security controls and other associated security related technology. Other duties include: analyzing and preparing status reports on security matters; monitoring and recommending solutions for correcting issues related to security technology performance and capabilities, security breech response, etc. To carry out responsibilities, the incumbent uses a personal computer, associated software, and other office technology.
MINIMUM EDUCATION: Bachelor degree in Computer Science, or Information Security (or related discipline) or an equivalent combination of education and experience from which comparable knowledge and skills may be acquired. MINIMUM QUALIFICTIONS: Five or more years experience working directly with Identity Management Platforms such as OKTA, PING, CyberArk, Microsoft Entra - including knowledge of SAML2, Oauth, and other open standard protocols used for modern authentication and authorization Five or more years experience in the security aspects relating to multiple platforms, operating systems, software, communications and network protocols. Five or more years experience with networking and security technologies such as IPSEC (Internet Security Protocol), VPN (Virtual Private Network), routers, switches, firewalls, intrusion detection and prevention, data leakage, WAF (Web Application Firewall). OTHER REQUIREMENTS: Experience with some aspects of information security and compliance, such as PCI, SOX, and HIPAA requirements for information systems and industry best practices such as ISO17799/27011, NIST (National Institute of Standards and Technology). Some travel required (15-20 overnights per year).
SELECTION CRITERIA: TIER 1 (Essential): Extensive knowledge of business operations. Experience in identifying underlying principles, reasons, or facts of information or data into separate parts. .Demonstrated experience with information security and compliance, such as PCI, SOX, and HIPAA requirements for information systems and industry best practices such as ISO17799/27011, National Institute of Standards and Technology (NIST).
Demonstrated experience building secure access with Identity and Access Management systems such as OKTA, PING, CyberArk, Microsoft Entra including knowledge of SAML2, Oauth, and other open standard protocols used for modern authentication and authorization.
Experience with security and risk frameworks, standards and best practices.
Demonstrated experience in monitoring and reviewing information from materials, events, or the environment, to detect or assess security related problems. Broad knowledge of security on SaaS solutions, access methodologies, and security procedures. Successful references. TIER 2 (Significant): Knowledge of industry best practice standards pertaining to Information Security and data privacy. Significant experience in collaborating with others for purposes of identifying, defining and solving problems. Effective interpersonal and customer service skills to interact with all levels of staff. Ability to work independently and collaboratively with team members (internal and external to the organization.) TIER 3 (Desirable): Familiarity with business objectives and strategies. Ability to analyze information using logic to address work-related issues and problems.
In compliance with the Americans with Disabilities Act (ADA), the following is provided: The position involves skill in using a computer and/or laptop; oral and written communication skills; skills in proofreading and editing; use of clear and articulate speech; interpersonal relations skills; reasoning and problem-solving skills; ability to work in a fast-paced environment; ability to sit for long periods, stoop, bend, reach and carry light materials (up to 10 lbs.); and ability to travel by various methods of transportation, e.g., airplane, car.
NEA is an equal opportunity/affirmative action employer and encourages applications from all qualified candidates regardless of gender, race, ethnicity, age, sexual orientation, marital status, religion, or disability. Know Your Rights: Workplace Discrimination is Illegal. Careers at NEA (myworkdayjobs.com)
NEA Participates in E-Verify. Read more here E-Verify Participation & Right to Work.
NEA complies with the DC Wage Transparency Act of 2023.