DESCRIPTION

The Office of Information Assurance (OIA) (a department within ITS) is responsible for the infrastructure, policies, standards, services, and training necessary to ensure the achievement of the security and privacy goals of the University. Collaborating closely with various campus resources and partners, the department identifies, responds to, and mitigates information security/privacy risks, threats, and vulnerabilities.

The OIA Engineering team delivers a comprehensive set of enterprise IT security services in the areas of security policy, assessment, compliance, consulting, operations, incident response and risk management. The department is responsible for the design, deployment and administration of network, endpoint, application, and information asset protection systems. OIA staff also work closely with the Enterprise Networking and the IT Infrastructure & Operations departments to provide the campus-wide network/security infrastructure.

The Senior Cloud Security Engineer will lead the configuration, implementation, and management of our cloud enterprise security solutions. Our primary cloud platforms include Google Workspace, Microsoft Office 365, and AWS. This position is responsible for designing the security architecture for cloud-based applications and services, implementing cloud security controls (such as firewall, IDS, IPS, data encryption, and access controls), developing procedures for Incident Response and responding to security incidents, and ensuring that cloud-based applications and services are compliant with relevant regulations and frameworks. The Senior Cloud Security engineer will collaborate closely with other teams in ITS such as IT Security Infrastructure and Operations, Network Engineering, Incident Response, Risk and Compliance, and the DevOps teams to ensure that security is integrated into the development process and that security controls are implemented throughout the entire infrastructure.

Responsibilities

• With an emphasis on SaaS solutions, design, deploy, and manage cloud enterprise security solutions utilizing various network, endpoint, and cloud technologies.
• Serve as technical lead responsible for the design, delivery, and performance of security services that enforce the security policy of the campus.
• Monitor and respond to security events in the cloud enterprise infrastructure.
• Drive deployment and integration of cloud security services across the campus.
• Apply advanced IT security concepts to Campus, Medical Center, or Office of the President objectives to resolve broad and highly complex issues where analysis of situations or data requires an in-depth evaluation of variable factors.
• Selects methods, techniques, and evaluation criteria to obtain results.

QUALIFICATIONS

• Advanced knowledge of IT security. Advanced knowledge of cloud security. Experience automating security in cloud environments. Experience with GCP, Google Workspace, O365, and/or AWS security concepts and capabilities such as Access Transparency, Cloud Asset Inventory, Cloud IDS, Security Groups, NACLs, CloudWatch, CloudTrail, Guard Duty, Audit Manager, VPC flow logs, IAM, Service Control Policies, CASB, etc.
• Advanced experience using IT security systems and tools. Demonstrated knowledge of DevSecOps concepts such as software as code, web application security, API protection, static application testing, application security monitoring, infrastructure as code scanning, cloud workload protection platforms, and cloud security posture management.
• Demonstrated knowledge of secure hardware, software, and network design techniques. Advanced knowledge of security. Broad experience across a variety of security technologies such as CASB, vulnerability management, threat detection/response, SIEM, endpoint security, IDS/IPS, firewalls, and VPN.
• Demonstrated skill at administering complex security controls and configurations to computer hardware, software, and networks. Experience developing in scripting languages such as Python or PowerShell.
• Advanced experience in incident response and digital forensics including reporting. Demonstrated knowledge of secure hardware, software, and network design techniques. Knowledge of networking technology, firewalls, IDS/IPS, and packet capture and analysis.
• Bachelor's degree in Computer Science, Information Security, or a closely related field AND four (4) years of related experience in information security in an enterprise environment OR eight (8) years of relevant experience.

Our employees enjoy competitive compensation packages and educational

Logo

About University of California San Diego

UC San Diego is an academic powerhouse and economic engine, recognized as one of the top 8 public universities by U.S. News and World Report. Innovation is central to who we are and what we do. Here, students learn that knowledge isn't just acquired in the classroom - life is their laboratory. UC San Diego's rich academic portfolio includes six undergraduate colleges, five academic divisions and five graduate and professional schools. The university's award-winning scholars are experts at the forefront of their fields with an impressive track record for achieving scientific, medical and technological breakthroughs.

Connections working at University of California San Diego

More Jobs from This Employer

https://jobs.magazine.org/jobs/18391279/senior-cloud-security-engineer