Salary: $51,520.00 - $73,872.00 Annually
Location : 4525 Education Park Drive, Schnecksville, PA
Job Type: FT
Job Number: 202400316
Department: President's Office
Division: Information Technology
Opening Date: 07/17/2026
Closing Date: Continuous
Job Title
Job Title:Endpoint Security Analyst
Work Schedule:Full time, 40 hours per week. Must be availability to work nights, weekends, and off hours as needed.
(The standard work week is Monday through Friday, 8:00 AM to 5:00 PM. Exempt professionals, are expected to maintain a flexible schedule to ensure all responsibilities and collegiate needs are met, including occasional work outside of core business hours.)
Summary
The Endpoint Security Analyst is responsible for the security,integrity, and operational health of the institution's end-user computing environment. This includes the engineering and management of security controls for workstations (PC/Mac), mobile devices, and networked peripherals such as printers. The position works closely with the IT Support team to uphold academic productivity while maintaining a robust defense against evolving threats.
Reports to Assistant Director of Network and Security.
Work Experience
Essential Duties and Responsibilities
- Endpoint Protection Management: Administer and optimize Endpoint Detection and Response (EDR) and Next-Generation Antivirus (NGAV) solutions across all college-owned end-user devices.
- Device Lifecycle Security:Implement and maintain secure configuration baselines(e.g.,CIS Benchmarks) for workstations and mobile devices using unified endpoint management(UEM) tools like Jamf, SCCM, and WSUS.
- Workstation Management: Maintain standardized configurations for classroom and administrative work stations to ensure a consistent experience and prevent unauthorized persistent changes to software and settings.
- Vulnerability & Patch Management: Identify,prioritize,and automate the remediation of vulnerabilities on end-user hardware, including third-party application patching and firmware updates for networked printers, end-user workstations (Mac/PC), mobile devices, and other end user devices.
- Secure Process Best Practices:Implement and advocate for secure workflows, such a Follow-Me or authenticated release printing, to prevent sensitive information exposure,reduce waste, and create efficiencies.
- General Print Administration & Support: Provide high-level support for the college's networked printing environment, ensuring high availability of services while managing driver deployment and printer configuration via centralized management tools.
- Print Infrastructure Security: Secure the printing environment by hardening device firmware, disabling insecure protocols(e.g.,Telnet,FTP),and ensuring all print traffic is encrypted across the campus network.
- Incident Triage: Serve as the primary security escalation point for the IT Support desk,investigating alerts from endpoint sensors and performing initial forensic analysis of potentially compromised devices.
- Security Automation: Develop scripts (PowerShell, Bash,or Python) to automate routine security audits and the deployment of security agents acros the enterprise.
- Compliance&Reporting: Monitor and report on end point compliance with federal and state regulations(e.g.,FERPA, GLBA )and institutional security policies.
- Maintains and updates an operational manual.
- Performs other duties/special projects as assigned.
Lehigh Carbon Community College provides the following benefits to full-time staff:
1. Health Insurance -Medical benefit/Prescription Drug/ and Dental benefit plans covering full-time staff, spouse, and dependents.
2. Vision
3. Flexible Spending Account
4. Life and Accidental Death Dismemberment - A term life and A.D. &D. insurance policy equal to two times the employee's salary will be provided.
5. Long-Term Disability Insurance
6. Vacation/Sick/Personal Choice Days
7. Employee Assistance Program
8. Education Assistance Program
9. Tuition Waiver for Lehigh Carbon Community College
10. Retirement
11. Bereavement Leave
12. 13 Paid Holidays
01
Do you have a high school diploma or equivalent?
02
Do you have ComptIA Security+, CySA+ or related cybersecurity certification? (If not in possession, must acquire within first 6 months of employment.)
03
Do you have over 3 years of experience in IT support or systems administration with a heavy focus on endpoint security and device management?
04
Do you have in-depth knowledge of Windows, macOS, iOS, and Android security architectures?
Required Question