Updated: Jul 21, 2021
Location: UC Irvine Campus
Department: IT Security
Job Opening ID: 19596Reports To: Assistant CISO, IT Security Operations & EngineeringWorking Title: IT Security EngineerDepartment: OIT IT SecurityBargaining Unit: 99FLSA: ExemptPayroll Job Code: 007338Job Location: UCI Campus- IrvinePercent of Time: 100%Work Schedule: 8-5, M-FEmployee Class: Career Position Summary: The Office of Information Technology (OIT) is responsible for supporting the IT needs of UC Irvine faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education, and community service goals of the University. The IT Security Operations & Engineering team is responsible for providing central information security services, guidance and recommendations, incident response, and securing the infrastructure. Under general supervision of the Assistant CISO, IT Security Operations & Engineering, the IT Security Engineer is responsible for technical management, uptime, reliability, and effectiveness of a variety of IT Security-related enterprise systems with university-wide impact that detect threats and protect the confidentiality, integrity, and availability of university information. As a member of the SOC they also help detect and respond to security threats and perform incident response. They work with IT staff to design and implement appropriate security architecture and controls to reduce risk. They also communicate standards, best practices and advisories to the campus while maintaining appropriate documentation for a technical and non-technical audience. Compensation Range: Commensurate with experience Department Website: https://www.oit.uci.edu/
Required: Three (3) years of direct IT Security related work experience.Three (3) to five (5) years with BA/BS OR one (1) to three (3) years with MA/MS or equivalent combination of education and experience.Working knowledge of enterprise next-generation Firewall, Intrusion Detection and Prevention, VPN technologies, and ability to administer the full lifecycle of the devices.Experience with both Cisco and Palo Alto products.Working knowledge of enterprise Security Information and Event Management (SIEM) systems or other proactive security event log alerting tools.Experience performing network and web application vulnerability scanning.Proven skills managing TCP/IP-based networking and using common network troubleshooting tools and techniques.Knowledge of various TCP/IP related attacks and common mitigation techniques.Knowledge of IPv6 and NAT technologies and their security implications.Strong knowledge of network segmentation best practices using a risk-based approach.Ability to work within Linux, Windows, and Mac environments.Experience being a member of a security incident response team and working within a SOC.Practical experience with common encryption and key management technologies.Knowledge and implementation of IT Security fundamentals including the CIS Critical Security Controls (“SANS Top 20”) and NIST Cybersecurity Framework.Knowledge of ITIL and ITSM solutions. Experience using common project management, work tracking and reporting tools.Experience working within formal SDLC and change management processes.Experience with vendor software implementation, negotiation of contracts, and SOWs. Excellent problem-solving skills and the ability to rapidly learn and apply new highly technical skills.Superb written and verbal communication skills and the ability to effectively communicate highly technical topics to a wide range of people.Demonstrated strong interpersonal skills; consistent history of building strong relationships with technical and non-technical consumers of IT services provided.Ability to work effectively with external vendors and all levels of technical staff, management, and stakeholders.Strong collaborator and team player who is customer service oriented, with a proven track record of working across a large, distributed enterprise.Excellent planning, time management and organizational skills, ability to create effective project plans and timelines and present them in a group setting.Ability to work independently, keeping track of a number of continuing problems, requests, and projects.Ability to work on several tasks concurrently.Working knowledge of at least one high-level programming language, and skill in the design, writing, testing, and debugging of computer programs or shell scripts.Examples: Perl, Python, PowerShell, Ruby, PHP, C, Java.Working knowledge of authentication systems, such as Radius, LDAP, Duo Security Multi-Factor authentication, MIT Kerberos, etc. Preferred: Experience performing basic digital forensics on Unix/Linux and Windows platforms.Comfortable using regular expressions (regex) syntax.Strong knowledge of ISO, NIST, FISMA and other and risk assessment frameworks.Familiarity with web development and programming languages i.e., Java, .NET, PHP, XML, Perl and HTML.Working knowledge of web application firewalls (WAF).Experience working with network connection logging technologies.Knowledge of email spam/virus/phishing mitigation at an enterprise level.Windows and/or Active Directory system administration skills.Unix system administration skills, particularly in the Linux or Solaris environments.Experience using ServiceNow as both a request tracking and project management tool.Experience implementing technical security solutions in an AWS cloud environment.Knowledge and understanding of wireless networking.Working knowledge of authentication systems, such as Radius, LDAP, Duo Security Multi-Factor authentication, MIT Kerberos, etc.Working knowledge of Microsoft Office and wiki software.Demonstrated experience creating spreadsheets, reports, charts, and presentations supporting project management, technical communications, etc.Proven skills diagramming computer networks using diagramming software such as Visio.Knowledge of UC Irvine systems, policies, and procedures.Knowledge of State and Federal Regulations and Requirements for data security and privacy.Knowledge of HIPAA, PCI-DSS, FERPA, GLBA, and other information and privacy compliance programs. Relevant information security certifications (e.g., CISSP) preferred or the ability to gain a certification within 6 months of hire. Special Conditions Required: Occasional over-time may be required. Must be able to work outside of normal business hours and occasionally on weekends. Final candidate subject to background check. As a federal contractor, UC Irvine is required to use E-Verify to confirm the work status of individuals assigned to perform substantial work under certain federal contracts/subcontracts. The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy
. UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500.