Skip to main content

This job has expired

Security Risk and Compliance Supervisor

Job Details



University of California Irvine

Security Risk and Compliance Supervisor



Updated: Sep 9, 2022
Location: Irvine-Campus
Job Type:
Department: IT Security


Job Opening ID: 39994Reports To: Assistant CISOWorking Title: Security Risk and Compliance SupervisorDepartment: IT SecurityBargaining Unit: 99FLSA: ExemptPayroll Job Code: 005937Job Location: UCI Campus- IrvinePercent of Time: 100%Work Schedule: 8-5, M-FEmployee Class: Career Position Summary: The UC Irvine Office of Information Technology (OIT) is responsible for supporting the IT needs of faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Risk & Compliance team is responsible for leading the development, implementation and evaluation of campus-wide information security risk management processes and policy. This team also leads campus-wide information security education, training and awareness programs. Under general direction of the Assistant CISO, the Security Risk and Compliance Supervisor receives assignments in the form of objectives with goals and the process by which to meet goals. Provides direction to staff according to established policies and management guidance. Administers policies that directly affect subordinate staff. Recommends changes to department policies and practices. Identifies risks and responds accordingly. Provide priority setting and work flow analysis. Oversees security risk and compliance function. Manages governance, risk & compliance (GRC) tools and supporting technologies, maintains organizational security risk register. Oversees a security awareness and outreach program, and partners with other units within the organization to provide security risk management guidance and communicate security compliance requirements. Performs risk assessments of organization-developed and vendor-procured systems, assessing threats, vulnerabilities, and existing controls of systems. Recommend appropriate risk mitigations and compensating controls prioritized using a risk-based approach, escalating risk red flags to appropriate leadership when necessary. Compensation Range: Commensurate with experience Department Website: https://www.oit.uci.edu/
Required: Five (5) to ten (10) years of experience in information security, especially in an information risk analysis role, risk management and/or IT audit role. Five (5) to ten (10) years of experience with regulatory compliance and information security management frameworks (e.g., IS0 27000, COBIT, NIST 800, etc.).Bachelor's degree or equivalent work experience with an emphasis in computer science, data processing, computer information systems, or in a related field.Excellent critical thinking, persuasion / negotiation, mentoring, leadership / management and problem solving abilities. Broad knowledge of other areas of IT. Ability to create and interpret technical diagrams (e.g., network diagrams, data flow diagrams). Advanced knowledge of IT security risk frameworks and relevant compliance regulations (e.g. NIST 800-171, ISO 27001/27002, NIST CSF, DOJ, PCI-DSS). Human Resources policies and procedures. relating to management responsibilities. Self-motivated with a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, and integrity. Advanced knowledge of the IT security function across all IT security domains. Demonstrated knowledge of secure hardware, software and network design techniques. Ability to communicate best practices to diverse audiences. Demonstrated skill in managing technical staff. Excellent verbal and written communication, quantitative and analytical skills. Knowledge of department processes and procedures. Expert knowledge of security risk management methodologies, tools, and security risk assessment processes. Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, and compliance measures and/or remediation items. Ability to identify and assess the severity and potential impact of risks and to communicate findings effectively to risk owners. Preferred: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), SANS GIAC Security Essentials (GSEC) Project Management Professional (PMP).Familiarity with UC information security policy (i.e., IS-3), program and procedures, and/or higher education experience. Project management experience. Special Conditions Required: Occasional over-time may be required. Must be able to work outside of normal business hours and occasionally on weekends. Must pass a background check. Must possess a valid California Driver's License
Conditions of Employment
The University of California, Irvine (UCI) seeks to provide a safe and healthy environment for the entire UCI community. As part of this commitment, all applicants who accept an offer of employment must comply with the following conditions of employment:
  • Background Check and Live Scan
  • Legal Right to work in the United States
  • Vaccination Policies
  • Smoking and Tobacco Policy
  • Drug Free Environment
The following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.
  • California Child Abuse and Neglect Reporting Act
  • E-Verify
  • Pre-Placement Health Evaluation
Details of each policy may be reviewed by visiting the following page - https://hr.uci.edu/new-hire/conditions-of-employment.php

Closing Statement
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500 or eec@uci.edu. #OIT Job Opening ID: 39994Reports To: Assistant CISOWorking Title: Security Risk and Compliance SupervisorDepartment: IT SecurityBargaining Unit: 99FLSA: ExemptPayroll Job Code: 005937Job Location: UCI Campus- IrvinePercent of Time: 100%Work Schedule: 8-5, M-FEmployee Class: Career Position Summary: The UC Irvine Office of Information Technology (OIT) is responsible for supporting the IT needs of faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Risk & Compliance team is responsible for leading the development, implementation and evaluation of campus-wide information security risk management processes and policy. This team also leads campus-wide information security education, training and awareness programs. Under general direction of the Assistant CISO, the Security Risk and Compliance Supervisor receives assignments in the form of objectives with goals and the process by which to meet goals. Provides direction to staff according to established policies and management guidance. Administers policies that directly affect subordinate staff. Recommends changes to department policies and practices. Identifies risks and responds accordingly. Provide priority setting and work flow analysis. Oversees security risk and compliance function. Manages governance, risk & compliance (GRC) tools and supporting technologies, maintains organizational security risk register. Oversees a security awareness and outreach program, and partners with other units within the organization to provide security risk management guidance and communicate security compliance requirements. Performs risk assessments of organization-developed and vendor-procured systems, assessing threats, vulnerabilities, and existing controls of systems. Recommend appropriate risk mitigations and compensating controls prioritized using a risk-based approach, escalating risk red flags to appropriate leadership when necessary. Compensation Range: Commensurate with experience Department Website: https://www.oit.uci.edu/
Required: Five (5) to ten (10) years of experience in information security, especially in an information risk analysis role, risk management and/or IT audit role. Five (5) to ten (10) years of experience with regulatory compliance and information security management frameworks (e.g., IS0 27000, COBIT, NIST 800, etc.).Bachelor's degree or equivalent work experience with an emphasis in computer science, data processing, computer information systems, or in a related field.Excellent critical thinking, persuasion / negotiation, mentoring, leadership / management and problem solving abilities. Broad knowledge of other areas of IT. Ability to create and interpret technical diagrams (e.g., network diagrams, data flow diagrams). Advanced knowledge of IT security risk frameworks and relevant compliance regulations (e.g. NIST 800-171, ISO 27001/27002, NIST CSF, DOJ, PCI-DSS). Human Resources policies and procedures. relating to management responsibilities. Self-motivated with a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, and integrity. Advanced knowledge of the IT security function across all IT security domains. Demonstrated knowledge of secure hardware, software and network design techniques. Ability to communicate best practices to diverse audiences. Demonstrated skill in managing technical staff. Excellent verbal and written communication, quantitative and analytical skills. Knowledge of department processes and procedures. Expert knowledge of security risk management methodologies, tools, and security risk assessment processes. Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, and compliance measures and/or remediation items. Ability to identify and assess the severity and potential impact of risks and to communicate findings effectively to risk owners. Preferred: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), SANS GIAC Security Essentials (GSEC) Project Management Professional (PMP).Familiarity with UC information security policy (i.e., IS-3), program and procedures, and/or higher education experience. Project management experience. Special Conditions Required: Occasional over-time may be required. Must be able to work outside of normal business hours and occasionally on weekends. Must pass a background check. Must possess a valid California Driver's License
Conditions of Employment
The University of California, Irvine (UCI) seeks to provide a safe and healthy environment for the entire UCI community. As part of this commitment, all applicants who accept an offer of employment must comply with the following conditions of employment:Background Check and Live ScanLegal Right to work in the United StatesVaccination PoliciesSmoking and Tobacco PolicyDrug Free EnvironmentThe following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.California Child Abuse and Neglect Reporting ActE-VerifyPre-Placement Health EvaluationDetails of each policy may be reviewed by visiting the following page - https://hr.uci.edu/new-hire/conditions-of-employment.php

Closing Statement
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500 or eec@uci.edu. #OIT

To apply, visit https://careersucirvine.ttcportals.com/jobs/10227682-security-risk-and-compliance-supervisor





Copyright ©2022 Jobelephant.com Inc. All rights reserved.

Posted by the FREE value-added recruitment advertising agency jeid-49c5de2af4459944ab3400878c3d34bd

Organization

Founded in 1965, UC Irvine combines the strengths of a major research university with the bounty of an incomparable Southern California location. Over five remarkable decades, UCI has become internationally recognized for efforts that are improving lives through research and discovery, fostering excellence in scholarship and teaching, and engaging and enriching the community.UC student center

With more than 33,000 students, 1,200 faculty members and 10,000 staff, UCI is among the fastest-growing campuses in the University of California system. Increasingly a first-choice campus for students, UCI ranks among the top U.S. universities in the number of undergraduate applications and continues to admit freshmen with highly competitive academic profiles. Orange County’s second-largest employer, UCI generates an annual economic impact on the county of $5 billion.

UCI is a center for quality education that honors classic instruction while incorporating the best new scholarship. U.S. News & World Report consistently ranks UCI among the nation’s best universities. Achievements in the sciences, social sciences, social ecology, arts, humanities, medicine and business also have garnered numerous national rankings for UCI’s schools, departments and programs. Three UCI researchers have won Nobel Prizes – most recently Irwin Rose, in chemistry, in 2004.

Interdisciplinary research, a UCI hallmark, is evident in the California Institute for Telecommunications and Information Technology, or Calit2, Newkirk Center for Science and Society, Center for the Study of Democracy, Institute of Transportation Studies, Institute for Genomics and Bioinformatics, and innovative instructional programs in biomedical engineering, international studies, global cultures, arts and technology, and other collaborations.

The university is dedicated to excellence through diversity and to the goal of reflecting equity and inclusion in our faculty, staff and student populations. Faculty and staff diversity affinity groups foster cross-departmental social interaction, professional networking, cultural competencies, recruiting and mentoring.

Committed to the Community

UCI reaches beyond the classroom and laboratory to help solve societal issues and support human development. In the health sciences, UCI is noted for its research on cancer, the neurosciences and the genetic underpinnings of disease. UCI Medical Center, Orange County’s only university hospital and Level I trauma center, has been ranked among the nation’s best hospitals by U.S. News & World Report for 16 consecutive years.

UC Irvine parkA major intellectual and cultural center, UCI engages the community through public activities and events. Speakers on campus, for example, have included Nobel Peace Prize winners His Holiness the XIV Dalai Lama, former Soviet leader Mikhail Gorbachev and Iranian human rights activist Shirin Ebadi, all of whom also received the UCI Citizen Peacebuilding Award for their efforts toward world peace.

The university is also addressing the needs of the community and growing world population in an environmentally sustainable way. From the development of new and reliable processes for electricity and alternative fuels to critical water and waste management solutions, UCI consistently tops the list in Sierra magazine’s “Coolest Schools” report, its annual sustainability ranking of U.S. colleges and universities.  

A hub for innovation and entrepreneurship, the university collaborates with the community on many strategic partnerships such as UCI Applied Innovation , a center which brings campus-based discoveries together with Orange County’s vibrant business sector to support job creation and economic growth. Development also continues on the 185-acre University Research Park adjacent to campus, where R&D companies enjoy collaborative opportunities in medical research, biotechnology, engineering, computer science and business.

UCI is benefiting the community and the world in countless ways through its scholarly, scientific, creative and economic contributions. On its way to becoming a flagship UC campus and one of the nation’s very best universities, UCI has embarked on a strategic plan that will ensure the campus continues to inspire excellence as it fulfills its research, teaching and public service missions in the decades ahead.

Company info
Website
Telephone
949-824-5011
Location
University of California, Irvine
Irvine
CA
92697
US

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert