IT Security Analyst 3 - IS - Data Security - F/T - Days at Careers
Job Description & Salary RangeUC Title: IT Security Analyst 3Position Number: 10007804Reports to: IT Security Manager 1Working Title: IT Security Analyst 3Cost Center: IS - Data Security (8549)Bargaining Unit: NoneFLSA: ExemptJob Code: 7338Date Created: 04/02/2019Shift: Day ShiftHours: 40.00
Position Summary: The Vulnerability and Patch Management analyst will play a leading role in driving information security analysis and vulnerability remediation. This position will report to the Security Manager. This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security. In this role, you will be engaging with program employees, stakeholders, and executives to ensure appropriate and up-to-date security management.
Rate Minimum $63,400.00 Maximum $142,800.00
Required Qualifications: 2+ years of experience in data security assessment and audit5+ years in academic and healthcare IT environments5+ years working in a heterogeneous IT environmentAbility to analyze, support and maintain numerous proactive risk programAbility to assess levels of riskAbility to conduct security awareness training and compliance & managementAbility to deliver clean reports that are actionable and timelyAbility to develop and /or recommend appropriate mitigation countermeasures in operational and non-operational situationsAbility to maintain a work pace appropriate to the workloadAbility to perform and conduct vulnerability assessments and management of threats & vulnerabilitiesAbility to review contractual language and Business Associate AgreementsDemonstrated experience in conducting web application vulnerabilities, penetration testingDemonstrated experience in determining deviation from acceptable configurationsExcellent written and verbal communication skills in EnglishMust demonstrate customer service skills appropriate to the jobMust possess the skill, knowledge and ability essential to the successful performance of assigned dutiesWell versed in assessments and be able to identify false-positives or vulnerabilities that have not been remediated
Preferred Qualifications: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or other similar credentials or work experienceKnowledge of HIPAA/HITECH, NIH, FISMA, CMS, CPHS, dbGaP, PCI-DSS and other State and Federal data security requirements and regulationsKnowledge of medical center and academic IT environments
Physical, Mental & Environmental Demands:To comply with the Rehabilitation Act of 1973 the essential physical, mental and environmental requirements for this job are listed below. These are requirements normally expected to perform regular job duties. Incumbent must be able to successfully perform all of the functions of the job with or without reasonable accommodation.
Since 1965, the University of California, Irvine has combined the strengths of a major research university with the bounty of an incomparable Southern California location. UCI's unyielding commitment to rigorous academics, cutting-edge research, and leadership and character development makes the campus a driving force for innovation and discovery that serves our local, national and global communities.