Assistant CISO, IT Security Operations & Engineering 8/21/2020
JOB DESCRIPTIONAPPLY Updated: Aug 20, 2020
Location: UC Irvine Campus
Department: OIT CENTRAL SERVICES
Job Opening ID: 10134
Reports To: Chief Information Security Officer
Working Title: Assistant CISO, IT Security Operations & Engineering
Department: OIT Central Services
Bargaining Unit: 99
Job Code: 5937
Job Location: UCI Campus
Percent of Time: 100%
Work Schedule: 8-5, M-F
Employee Class: Career
Under the direction of the Chief Information Security Officer in the Office of Information Technology, the Assistant CISO, IT Security Operations & Engineering Manager supervises and leads a subset of IT Security team members focused primarily on various IT Security operational activities and act as Security Operations Center (SOC) Manager. They oversee the daily operations of key IT Security systems and processes, ensuring the uptime, reliability, and effectiveness of these processes. They manage the workload of the group and coordinate appropriate coverage of critical services. They lead response to new security threats, incident response, and investigation of possible breach. They effectively track and communicate work progress to management and ensure that resources are optimally used. They manage relationships with customers, service owners, and vendors. They work with CISO to plan the portfolio of projects and align with the information security strategic plan.
Receives assignments in the form of objectives with goals and the process by which to meet goals. Provides direction to staff according to established policies and management guidance. Administers policies that directly affect subordinate staff. Recommends changes to department policies and practices. Identifies risks and responds accordingly. Provide priority setting and work flow analysis.
The Office of Information Technology (OIT) is responsible for supporting the IT needs of UC Irvine faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Operations & Engineering I team is responsible for providing central security services, guidance and recommendations, incident response, and securing the infrastructure.
Commensurate with experience
Five (5) to ten (10) years relevant experience with a BA/BS OR three (3) to five (5) years with a MA/MS, OR one (1) to three (3) years with Ph.D., OR equivalent experience in a related field of Computer Science and/or Business Administration.
Five (5) years of direct IT Security operations work experience.
Knowledge of IT Security fundamentals including the CIS "SANS Top 20" Critical Security
Controls and NIST Cybersecurity Framework.
Experience leading a security incident response team.
Experience with security device management and SIEM.
Experience with threat management.
Ability to work within both a Linux and Windows environment.
Experience with team leadership, employee supervision and performance management.
Experience using common project management, work tracking and reporting tools. Knowledge of ITIL and ITSM solutions.
Experience working within formal SDLC and change management processes.
Experience supporting the uptime and reliability of critical production services.
Excellent critical thinking, persuasion / negotiation, mentoring, leadership / management and problem solving abilities.
Proficient in preparation of formal reports, dashboards, and documentation.
Experience with vendor software implementation, negotiation of contracts, and SOWs.
Superb written and verbal communication skills and the ability to create effective project plans and timelines and present them in a group setting.
Leadership experience with a proven track record of collaborating, negotiating, and working with multiple groups across a large distributed enterprise.
Demonstrated strong interpersonal skills; consistent history of building strong relationships with technical and non-technical consumers of IT services provided.
Excellent planning, time management and organizational skills.
Excellent problem solving skills and the ability to rapidly learn and apply skills.
Valid California Driver's license.
Experience leading and managing a Security Operations Center.
Direct experience with applications, databases, and systems security threat mitigation.
Python and/or Perl scripting experience.
Knowledge of various TCP/IP related attacks and common mitigation techniques.
Strong knowledge of network segmentation best practices using a risk-based approach.
Experience using ServiceNow as both a request tracking and project management tool.
Experience implementing technical security solutions in an AWS cloud environment.
Knowledge of UC Irvine systems, policies and procedures.
Knowledge of State and Federal Regulations and Requirements for data and privacy.
Knowledge of HIPAA, PCI-DSS, FERPA, GLBA, and other information and privacy compliance programs.
Knowledge of ISO, NIST, FISMA and other and risk assessment frameworks.
Relevant information certifications (e.g., CISSP, CISA, CISM, CRISC, or GIAC) preferred or the ability to gain a certification after hire.
Occasional over-time may be required.
Must be able to work outside of normal business hours and occasionally on weekends.
Must possess a valid California Driver's License and participate in the DMV Pull Notice Program.
Final candidate subject to background check. As a federal contractor, UC Irvine is required to use E-Verify to confirm the work status of individuals assigned to perform substantial work under certain federal contracts/subcontracts.
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500. Share: mail
Apply for this Job