Recruitment Number: 4210 Reports To: Working Title: IT Security Operations & Engineering Manager Cost Center: IR8154 Bargaining Unit: 99 FLSA: Exempt Job Code: 5937 Job Location: UCI Campus Percent of Time: 100% Work Schedule: 8-5, M-F Appointment: Career
Under the direction of the Chief Information Security Officer-Technology and Operations in the Office of Information Technology, the IT Security Operations & Engineering Manager supervises and leads a subset of IT Security team members focused primarily on various IT Security operational activities and act as Security Operations Center (SOC) Manager. They oversee the daily operations of key IT Security systems and processes, ensuring the uptime, reliability, and effectiveness of these processes. They manage the workload of the group and coordinate appropriate coverage of critical services. They lead response to new security threats, incident response, and investigation of possible breach. They effectively track and communicate work progress to management and ensure that resources are optimally used. They manage relationships with customers, service owners, and vendors. They work with CISO to plan the portfolio of projects and align with the information security strategic plan. Receives assignments in the form of objectives with goals and the process by which to meet goals. Provides direction to staff according to established policies and management guidance. Administers policies that directly affect subordinate staff. Recommends changes to department policies and practices. Identifies risks and responds accordingly. Provide priority setting and work flow analysis.
The Office of Information Technology (OIT) is responsible for supporting the IT needs of UC Irvine faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Operations & Engineering I team is responsible for providing central security services, guidance and recommendations, incident response, and securing the infrastructure.
Required: Five (5) to ten (10) years relevant experience with a BA/BS OR three (3) to five (5) years with a MA/MS, OR one (1) to three (3) years with Ph.D., OR equivalent experience in a related field of Computer Science and/or Business Administration. Five (5) years of direct IT Security operations work experience. Knowledge of IT Security fundamentals including the CIS 'SANS Top 20' Critical Security Controls and NIST Cybersecurity Framework. Experience leading a security incident response team. Experience with security device management and SIEM. Experience with threat management. Ability to work within both a Linux and Windows environment. Experience with team leadership, employee supervision and performance management. Experience using common project management, work tracking and reporting tools. Knowledge of ITIL and ITSM solutions. Experience working within formal SDLC and change management processes. Experience supporting the uptime and reliability of critical production services. Excellent critical thinking, persuasion / negotiation, mentoring, leadership / management and problem solving abilities. Proficient in preparation of formal reports, dashboards, and documentation. Experience with vendor software implementation, negotiation of contracts, and SOWs. Superb written and verbal communication skills and the ability to create effective project plans and timelines and present them in a group setting. Leadership experience with a proven track record of collaborating, negotiating, and working with multiple groups across a large distributed enterprise. Demonstrated strong interpersonal skills; consistent history of building strong relationships with technical and non-technical consumers of IT services provided. Excellent planning, time management and organizational skills. Excellent problem solving skills and the ability to rapidly learn and apply skills. Valid California Driver's license. Experience leading and managing a Security Operations Center. Direct experience with applications, databases, and systems security threat mitigation.
Python and/or Perl scripting experience. Knowledge of various TCP/IP related attacks and common mitigation techniques. Strong knowledge of network segmentation best practices using a risk-based approach. Experience using ServiceNow as both a request tracking and project management tool. Experience implementing technical security solutions in an AWS cloud environment. Knowledge of UC Irvine systems, policies and procedures. Knowledge of State and Federal Regulations and Requirements for data and privacy. Knowledge of HIPAA, PCI-DSS, FERPA, GLBA, and other information and privacy compliance programs. Knowledge of ISO, NIST, FISMA and other and risk assessment frameworks. Relevant information certifications (e.g., CISSP, CISA, CISM, CRISC, or GIAC) preferred or the ability to gain a certification after hire.
Below are general guidelines on the position's physical, mental, and environmental working conditions. In accordance with applicable state and federal law, UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-5210.
Bend: Occasionally Squat: Occasionally Crawl: Not Applicable Climb: Not Applicable Kneel: Occasionally Handle Objects: Frequently Push/Pull: Occasionally Reach above Shoulder Level: Occasionally Sit: Frequently Stand: Frequently Walk: Frequently Use Fine Finger Movements: Frequently Carry/Lift Loads up to 25 Pounds: Frequently Carry/Lift loads between 25-50 lbs: Occasionally Carry/Lift Loads over 50 Pounds: Not Applicable Read/Comprehend: Constantly Write: Frequently Perform Calculations: Frequently Communicate Orally: Frequently Reason and Analyze: Constantly Chemical/Biological Agent: Not Applicable Construction Activities: Occasionally Contact with Water/Liquids: Occasionally Drive Motorized Equipment: Occasionally Confined Spaces: Occasionally Elevated Work Location: Not Applicable Radioactive Materials: Not Applicable Temperature Variations: Occasionally Gas System: Not Applicable
Occasional over-time may be required. Must be able to work outside of normal business hours and occasionally on weekends. Must possess a valid California Driver's License and participate in the DMV Pull Notice Program.
Final candidate subject to background check. As a federal contractor, UC Irvine is required to use E-Verify to confirm the work status of individuals assigned to perform substantial work under certain federal contracts/subcontracts.
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
Since 1965, the University of California, Irvine has combined the strengths of a major research university with the bounty of an incomparable Southern California location. UCI's unyielding commitment to rigorous academics, cutting-edge research, and leadership and character development makes the campus a driving force for innovation and discovery that serves our local, national and global communities.