Information Security Analyst - 115022
As a federally-funded institution, UC San Diego Health maintains a marijuana and drug free campus. New employees are subject to drug screening.
#115022 Information Security AnalystExtended Review Date: Wed 9/21/2022
For the safety and well-being of the entire university community, the University of California requires, with few exceptions, that all students, faculty and staff be vaccinated against the COVID-19 virus and influenza before they will be allowed on campus or in a facility or office. For more information visit: Flu Vaccine Mandate / COVID Vaccine Policy
Special Selection Applicants: Apply by 03/14/22. Eligible Special Selection clients should contact their Disability Counselor for assistance.
This position will remain open until filled.
This is a position in the Health Information Security Operations team as an Information Security Analyst. The primary responsibility includes processing security change requests, responding to alerts generated by security monitoring tools, investigating security related anomalies, protecting and maintaining the security of data, systems and networks as well as defining the security requirements that must be implemented in IT solutions. Team members plan, configures, designs, develops, implements and maintains tools, systems and procedures to insure the integrity, reliability and security of data, systems and networks.
Technical leader with a high degree of knowledge in the overall field and recognized expertise in specific areas; problem-solving frequently requires analysis of unique issues/problems without precedent and/or structure. May manage programs that include formulating strategies and administering policies, processes, and resources; functions with a high degree of autonomy. Seeking candidates with experience defining the security requirements for safeguarding an Active Directory domain and utilizing best practices for securing cloud solutions in Azure, AWS and Google Docs.
Nine (9+) years or more of related experience, education/training i.e defining the security requirements for cloud solutions, OR a Bachelor’s degree in related area plus five (5+) years or more of related experience/training i.e defining the security requirements for cloud solutions.
Thorough understanding of the risk assessment requirements and demonstrated skills to conduct, analyze and document risk assessments at the enterprise level as defined in HIPAA andHITECH.
Advanced knowledge of IT security. Extensive expertise in security policy creation and compliance monitoring, auditing methodology, and conducting technology risk assessments.
Advanced experience with web application and network/endpoint vulnerability scanning and remediation, pen testing, sensitive data discovery and data loss prevention systems.
Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks.
Understanding of network/host firewalls, application gateways/proxies, anti-malware, patch management, disk encryption, centralized configuration, log management, system hardening practices, etc.
Proven skills applying security controls to computer software and hardware. Solid understanding of information security policies, standards, industry best practices, and frameworks (ISO 27K, NIST 800-115, PCI DSS, HIPAA, FERPA, etc.).
Advanced experience in incident response and digital forensics including reporting. Expert knowledge of forensic processes, standards and tools.
Demonstrated knowledge of networking technology.
Advanced knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies.
Expert understanding of cryptography and strengths/weaknesses of various encryption ciphers and hash functions.
Proven knowledge of secure hardware, software and network design techniques.
Strong skill at analyzing and preventing security incidents of high complexity.
Experience with defining security requirements for an Active Directory enterprise domain.
Solid interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Ability to quickly develop knowledge of department processes and procedures.
- Experience with SEIM and security log analysis tools such as Splunk, Stealth Watch, Fireye, Log Insight or similar tools.
- Healthcare experience.
- Information Security certification such as CISSP, CISA, CISM, CCSFP, etc.
- Must be able to work various hours and locations based on business needs.
- Employment is subject to a criminal background check and pre-employment physical.
Job offer is contingent on successful engagement in the UC COVID-19 Vaccination program (fully vaccinated with documented proof or approved exception/deferral).
If applicable, life-support certifications (BLS, NRP, ACLS, etc.) must include hands-on practice and in-person skills assessment; online-only certification is not acceptable.
UC San Diego Health is the only academic health system in the San Diego region, providing leading-edge care in patient care, biomedical research, education, and community service. Our facilities include two university hospitals, a National Cancer Institute-designated Comprehensive Cancer Center, Shiley Eye Institute, Sulpizio Cardiovascular Center, the only Burn Center in the county, and and dozens of outpatient clinics. We invite you to join our team!
Applications/Resumes are accepted for current job openings only. For full consideration on any job, applications must be received prior to the initial closing date. If a job has an extended deadline, applications/resumes will be considered during the extension period; however, a job may be filled before the extended date is reached.
To foster the best possible working and learning environment, UC San Diego strives to cultivate a rich and diverse environment, inclusive and supportive of all students, faculty, staff and visitors. For more information, please visit UC San Diego Principles of Community.
UC San Diego Health is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, age, protected veteran status, gender identity or sexual orientation. For the complete University of California nondiscrimination and affirmative action policy see: http://www-hr.ucsd.edu/saa/nondiscr.html
UC San Diego is a smoke and tobacco free environment. Please visit smokefree.ucsd.edu for more information.