Vacancy expired!
Job Opening ID: 36954
Reports To: Assistant CISOWorking Title: IT Security EngineerDepartment: IT SecurityBargaining Unit: 99FLSA: ExemptPayroll Job Code: 007338Job Location: UCI Campus- IrvinePercent of Time: 100%Work Schedule: 8-5, M-FEmployee Class: CareerPosition Summary:The Office of Information Technology (OIT) is responsible for supporting the IT needs of UC Irvine faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Operations & Engineering team is responsible for providing central information security services, guidance and recommendations, incident response, and securing the infrastructure.Under the general supervision of the Assistant CISO, IT Security Operations & Engineering in the Office of Information Technology, the IT Security Engineer is responsible for technical management, uptime, reliability and effectiveness of a variety of IT Security-related enterprise systems with university-wide impact that detect threats and protect the confidentiality, integrity, and availability of university information. As a member of the SOC they also help detect and respond to security threats and perform incident response. They work with IT staff to design and implement appropriate security architecture and controls to reduce risk. They also communicate standards, best practices and advisories to the campus while maintaining appropriate documentation for a technical and non-technical audience.Compensation Range: Commensurate with experienceDepartment Website: https://www.oit.uci.edu/ Required:- Three (3) to five (5) years with BA/BS OR one (1) to three (3) years with MA/MS or equivalent combination of education and experience.
- Three (3) years of direct IT Security related work experience.
- Bachelor's degree in related area and / or equivalent experience / training.Working knowledge of enterprise next-generation Firewall, Intrusion Detection and Prevention, VPN technologies, and ability to administer the full lifecycle of the devices.
- Experience with both Cisco and Palo Alto products.
- Working knowledge of enterprise Security Information and Event Management (SIEM) systems or other proactive security event log alerting tools.
- Excellent problem solving skills and the ability to rapidly learn and apply new highly technical skills.
- Superb written and verbal communication skills and the ability to effectively communicate highly technical topics to a wide range of people.
- Demonstrated strong interpersonal skills; consistent history of building strong relationships with technical and non-technical consumers of IT services provided.
- Ability to work effectively with external vendors and all levels of technical staff, management, and stakeholders.
- Strong collaborator and team player who is customer service oriented, with a proven track record of working across a large distributed enterprise.
- Excellent planning, time management and organizational skills, ability to create effective project plans and timelines and present them in a group setting.
- Ability to work independently, keeping track of a number of continuing problems, requests, and projects.
- Ability to work on several tasks concurrently. Knowledge of various TCP/IP related attacks and common mitigation techniques.
- Knowledge of IPv6 and NAT technologies and their security implications.
- Knowledge and implementation of IT Security fundamentals including the CIS Critical Security Controls ("SANS Top 20") and NIST Cybersecurity Framework.
- Knowledge of ITIL and ITSM solutions.
- Experience using common project management, work tracking and reporting tools.
- Proven skills managing TCP/IP-based networking, and using common network troubleshooting tools and techniques.
- Ability to work within Linux, Windows, and Mac environments.
- Working knowledge of at least one high-level programming language, and skill in the design, writing, testing and debugging of computer programs or shell scripts. Examples: Perl, Python, PowerShell, Ruby, PHP, C, Java.
- Practical experience with common encryption and key management technologies.
- Comfortable using regular expressions (regex) syntax.
- Strong knowledge of network segmentation best practices using a risk-based approach.
- Experience being a member of a security incident response team and working within a SOC.
- Experience performing network and web application vulnerability scanning.
- Experience performing basic digital forensics on Unix/Linux and Windows platforms.
- Experience working within formal SDLC and change management processes.
- Experience with vendor software implementation, negotiation of contracts, and SOWs.
- Relevant information security certifications (e.g., CISSP) preferred or the ability to gain a certification within 6 months of hire.
- Proven skills diagramming computer networks using diagramming software such as Visio. Knowledge and understanding of wireless networking.
- Working knowledge of authentication systems, such as Radius, LDAP, Duo Security Multi-Factor authentication, MIT Kerberos, etc.
- Working knowledge of Microsoft Office and wiki software.
- Demonstrated experience creating spreadsheets, reports, charts, and presentations supporting project management, technical communications, etc.
- Windows and/or Active Directory system administration skills.
- Unix system administration skills, particularly in the Linux or Solaris environments.
- Experience using ServiceNow as both a request tracking and project management tool.
- Experience implementing technical security solutions in an AWS cloud environment.
- Knowledge of UC Irvine systems, policies and procedures.
- Knowledge of State and Federal Regulations and Requirements for data security and privacy. Knowledge of HIPAA, PCI-DSS, FERPA, GLBA, and other information and privacy compliance programs. Strong knowledge of ISO, NIST, FISMA and other and risk assessment frameworks.
- Familiarity with web development and programming languages i.e. Java, .NET, PHP, XML, Perl and HTML.
- Working knowledge of web application firewalls (WAF).
- Experience working with network connection logging technologies. Knowledge of email spam/virphishing mitigation at an enterprise level.
- Must pass a background check.
- Occasional over-time may be required.
- Must be able to work outside of normal business hours and occasionally on weekends.
- Background Check and Live Scan
- Legal Right to work in the United States
- Vaccination Policies
- Smoking and Tobacco Policy
- Drug Free Environment
- ID: #43593740
- State: California Irvine 92697 Irvine USA
- City: Irvine
- Salary: USD TBD TBD
- Job type: Permanent
- Showed: 2022-06-24
- Deadline: 2022-08-22
- Category: Et cetera