Analyst, Trojan Secure

ABOUT THE DEPARTMENT

The University of Southern California (USC) is advancing its cybersecurity posture with a renewed focus on resilience, cyber risk management, and threat-informed defense. As a world-class research institution, USC is building a culture of security that supports its academic and research mission in a rapidly evolving threat landscape.

This role sits within a newly restructured cybersecurity organization that's leading this transformation. You'll join a team focused on scalable, proactive defense strategies, incident preparedness, and operational excellence-working alongside experts who are deeply committed to service, innovation, and impact.

If you're driven by purpose, thrive in complexity, and want to help shape the future of cybersecurity at a leading university, we invite you to bring your leadership to the table.

POSITION SUMMARY

As the Analyst, Trojan Secure you will be an integral member of the cybersecurity department while also collaborating with stakeholders across the university ecosystem, and reporting to the Manager, Cyber Governance and Training Performance. This is a full-time exempt position, eligible for all of USC's fantastic Benefits + Perks. This opportunity is remote.

The Analyst, Trojan Secure is responsible for enhancing the security posture of the university by promoting a culture of security awareness. Creates and delivers comprehensive security training programs for students, staff, and faculty. Designs and develops educational material. Organizes training sessions. Disseminates critical information to increase knowledge about cybersecurity risks and safety practices. Conducts regular audits. Collaborates with members of the Trojan Secure initiative (e.g., Attack Surface Management team).

The Analyst, Trojan Secure will:

• Designs, plans, and executes awareness campaigns and training programs to increase knowledge and understanding of cybersecurity threats and preventive measures. Develops engaging and informative security training content (e.g., presentations, user guides, training videos).

• Conducts regular security awareness training sessions for staff and students.

• Coordinates with other teams and stakeholders to validate widespread dissemination of cybersecurity information. Works with the Trojan Secure and other IT teams to stay updated on latest cybersecurity threats and trends.

• Evaluates the effectiveness of training programs through regular audits, surveys, and feedback. Regularly updates the cybersecurity awareness program based on the changing threat landscape and the needs of the university.

• Provides guidance and support in case of security incidents (e.g., preventive/corrective measures). Validates all mandatory cybersecurity training is up-to-date and compliant with relevant rules and regulations.

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

MINIMUM QUALIFICATIONS

Great candidates for the position of Analyst, Trojan Secure will meet the following qualifications:

• 2 year of experience in cybersecurity training and awareness.

• A bachelor's degree in Business Administration, Education, Human Resources Management, or Information Science.

• Strong ability to develop and coordinate security awareness programs and exercises to educate the university community on cybersecurity threats and best practices.

• Knowledge of social engineering tactics and the ability to design exercises that test and enhance the university's preparedness for cyber threats.

• Excellent communication and interpersonal skills to work effectively with cybersecurity teams, faculty, and students in promoting consistent security messaging.

• Familiarity with security frameworks (e.g., NIST, CIS Controls) and data protection regulations (e.g., FERPA, HIPAA) to ensure compliance with university policies.

• Ability to assess security awareness program effectiveness, analyze trends in cybersecurity threats, and recommend improvements to training initiatives.

PREFERRED QUALIFICATIONS

Exceptional candidates for the position of Analyst, Trojan Secure will also bring the following qualifications or more:

• 4 years of related experience.

• Strong understanding of cybersecurity principles and best practices.

• Proven experience in designing and delivering effective training programs.

• Ability to keep up to date with the latest cybersecurity threats and trends.

• Demonstrated excellent oral and written communication skills, with the ability to present complex technical information in an understandable way.

• Strong problem-solving skills and an investigative nature, to understand and communicate potential risks.

• Ability to collaborate effectively with a wide range of stakeholders across the university.

• Excellent organizational skills, with the ability to manage multiple tasks and projects simultaneously.

• Familiar with relevant security rules and regulations, validating all training is compliant.

• Proficient with tools and software used to create and deliver training materials.

• Passion for education and a strong desire to help others understand and manage cybersecurity risks.

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+, GIAC Security Awareness (GSAT).

In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC's Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS

The annual base salary range for this position is $91,578.77 to $118,136.66. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents' health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC's comprehensive benefits here.

Join the USC cybersecurity team within an environment of innovation and excellence.

Minimum Education: Bachelor's degree In Business Administration Or Education Or Human Resources Management Or Information Science Or in related field(s)
Addtional Education Requirements Combined experience/education as substitute for minimum education
Minimum Experience: 2 years in cybersecurity training and awareness.
Minimum Skills: Strong ability to develop and coordinate security awareness programs and exercises to educate the university community on cybersecurity threats and best practices. Knowledge of social engineering tactics and the ability to design exercises that test and enhance the university's preparedness for cyber threats. Excellent communication and interpersonal skills to work effectively with cybersecurity teams, faculty, and students in promoting consistent security messaging. Familiarity with security frameworks (e.g., NIST, CIS Controls) and data protection regulations (e.g., FERPA, HIPAA) to ensure compliance with university policies. Ability to assess security awareness program effectiveness, analyze trends in cybersecurity threats, and recommend improvements to training initiatives.
Preferred Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+, GIAC Security Awareness (GSAT).
Preferred Experience: 4 years
Preferred Skills: Strong understanding of cybersecurity principles and best practices. Proven experience in designing and delivering effective training programs. Ability to keep up to date with the latest cybersecurity threats and trends. Demonstrated excellent oral and written communication skills, with the ability to present complex technical information in an understandable way. Strong problem-solving skills and an investigative nature, to understand and communicate potential risks. Ability to collaborate effectively with a wide range of stakeholders across the university. Excellent organizational skills, with the ability to manage multiple tasks and projects simultaneously. Familiar with relevant security rules and regulations, validating all training is compliant. Proficient with tools and software used to create and deliver training materials. Passion for education and a strong desire to help others understand and manage cybersecurity risks.