Job Description

Payroll Title:
IT SCRTY ANL 4
Department:
INFORMATION TECHNOLOGY SVCS
Hiring Pay Scale
$104,150 - $129,400 / Year
Worksite:
Appointment Type:
Career
Appointment Percent:
100%
Union:
Uncovered
Total Openings:
1
Work Schedule:
8 hrs/day

#122367 Senior Cloud Security Engineer

Initial Review Date: Tue 4/18/2023

UC San Diego values equity, diversity, and inclusion. If you are interested in being part of our team, possess the needed licensure and certifications, and feel that you have most of the qualifications and/or transferable skills for a job opening, we strongly encourage you to apply.

For the safety and well-being of the entire university community, the University of California requires, with few exceptions, that all students, faculty and staff be vaccinated against the COVID-19 virus and influenza before they will be allowed on campus or in a facility or office. For more information visit: Flu Vaccine Mandate / COVID Vaccine Policy

UC San Diego Policy will not allow this position to receive work visa sponsorship.

Fully remote or Hybrid work will be considered.

DESCRIPTION

The Office of Information Assurance (OIA) (a department within ITS) is responsible for the infrastructure, policies, standards, services, and training necessary to ensure the achievement of the security and privacy goals of the University. Collaborating closely with various campus resources and partners, the department identifies, responds to, and mitigates information security/privacy risks, threats, and vulnerabilities.

The OIA Engineering team delivers a comprehensive set of enterprise IT security services in the areas of security policy, assessment, compliance, consulting, operations, incident response and risk management. The department is responsible for the design, deployment and administration of network, endpoint, application, and information asset protection systems. OIA staff also work closely with the Enterprise Networking and the IT Infrastructure & Operations departments to provide the campus-wide network/security infrastructure.

The Senior Cloud Security Engineer will lead the configuration, implementation, and management of our cloud enterprise security solutions. Our primary cloud platforms include Google Workspace, Microsoft Office 365, and AWS. This position is responsible for designing the security architecture for cloud-based applications and services, implementing cloud security controls (such as firewall, IDS, IPS, data encryption, and access controls), developing procedures for Incident Response and responding to security incidents, and ensuring that cloud-based applications and services are compliant with relevant regulations and frameworks. The Senior Cloud Security engineer will collaborate closely with other teams in ITS such as IT Security Infrastructure and Operations, Network Engineering, Incident Response, Risk and Compliance, and the DevOps teams to ensure that security is integrated into the development process and that security controls are implemented throughout the entire infrastructure.

Responsibilities

  • With an emphasis on SaaS solutions, design, deploy, and manage cloud enterprise security solutions utilizing various network, endpoint, and cloud technologies.
  • Serve as technical lead responsible for the design, delivery, and performance of security services that enforce the security policy of the campus.
  • Monitor and respond to security events in the cloud enterprise infrastructure.
  • Drive deployment and integration of cloud security services across the campus.
  • Apply advanced IT security concepts to Campus, Medical Center, or Office of the President objectives to resolve broad and highly complex issues where analysis of situations or data requires an in-depth evaluation of variable factors.
  • Selects methods, techniques, and evaluation criteria to obtain results.

QUALIFICATIONS

  • Advanced knowledge of IT security. Advanced knowledge of cloud security. Experience automating security in cloud environments. Experience with GCP, Google Workspace, O365, and/or AWS security concepts and capabilities such as Access Transparency, Cloud Asset Inventory, Cloud IDS, Security Groups, NACLs, CloudWatch, CloudTrail, Guard Duty, Audit Manager, VPC flow logs, IAM, Service Control Policies, CASB, etc.
  • Advanced experience using IT security systems and tools. Demonstrated knowledge of DevSecOps concepts such as software as code, web application security, API protection, static application testing, application security monitoring, infrastructure as code scanning, cloud workload protection platforms, and cloud security posture management.
  • Demonstrated knowledge of secure hardware, software, and network design techniques. Advanced knowledge of security. Broad experience across a variety of security technologies such as CASB, vulnerability management, threat detection/response, SIEM, endpoint security, IDS/IPS, firewalls, and VPN.
  • Demonstrated skill at administering complex security controls and configurations to computer hardware, software, and networks. Experience developing in scripting languages such as Python or PowerShell.
  • Advanced experience in incident response and digital forensics including reporting. Demonstrated knowledge of secure hardware, software, and network design techniques. Knowledge of networking technology, firewalls, IDS/IPS, and packet capture and analysis.
  • Bachelor’s degree in Computer Science, Information Security, or a closely related field AND four (4) years of related experience in information security in an enterprise environment OR eight (8) years of relevant experience.

Our employees enjoy competitive compensation packages and educational opportunities in a diverse, stimulating workforce. This position is eligible for full:

  • Health/Dental/Vision Insurance
  • Vacation/Holidays
  • Life Insurance
  • UC Retirement Plan.

SPECIAL CONDITIONS

Job offer is contingent on passing a background check.Employee must be available to work evenings, weekends, and holidays.Employee must be available to travel as required.Must be willing and able to work on a rotating on-call basis.

Pay Transparency Act

Annual Full Pay Range: $78,900 - $179,900 (will be prorated if the appointment percentage is less than 100%)

Hourly Equivalent: $37.79 - $86.16

Factors in determining the appropriate compensation for a role include experience, skills, knowledge, abilities, education, licensure and certifications, and other business and organizational needs. The Hiring Pay Scale referenced in the job posting is the budgeted salary or hourly range that the University reasonably expects to pay for this position. The Annual Full Pay Range may be broader than what the University anticipates to pay for this position, based on internal equity, budget, and collective bargaining agreements (when applicable).


Job offer is contingent on successful engagement in the UC COVID-19 Vaccination program (fully vaccinated with documented proof or approved exception/deferral).

To foster the best possible working and learning environment, UC San Diego strives to cultivate a rich and diverse environment, inclusive and supportive of all students, faculty, staff and visitors. For more information, please visit UC San Diego Principles of Community.

The University of California is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, age, protected veteran status, gender identity or sexual orientation. For the complete University of California nondiscrimination and affirmative action policy see: http://www-hr.ucsd.edu/saa/nondiscr.html

UC San Diego is a smoke and tobacco free environment. Please visit smokefree.ucsd.edu for more information.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online