Home 
How Blumble Works 
Search Algorithm 
Your Privacy 
About 
Facebook
Twitter
Blog
https://cybersecurityeducation.org
cybersecurityeducation
cybersecurityeducation
CyberSecurityEducation.org is a comprehensive website dedicated to providing valuable information and resources related to cybersecurity education. It serves as a centralized platform for individuals seeking to enhance their knowledge and skills in this rapidly evolving field. The website offers a variety of educational content, including articles, guides, and tutorials, covering various cybersecurity topics such as threat detection, data protection, network security, and more. Additionally, it provides a curated list of universities, training programs, and certifications that can help individuals pursue a career in cybersecurity. With its wide range of resources and accessible platform, CyberSecurityEducation.org aims to contribute to the development of a skilled and competent cybersecurity workforce.
-
EncryptedSite is Encrypted
-
CountryHosted in Canada
-
Latitude\Longitude43.6319 / -79.3716 Google Map
-
Traffic rank#32,767 Site Rank
-
Site Owner informationWhois info
Site is not blacklisted
Traffic rank
#32,767
#32,767
Site age
Location
Canada
Canada
Popular Questions for cybersecurityeducation
Newest job postings for cybersecurityeducation
via LinkedIn
posted_at: 12 hours agoschedule_type: Part-time
Summary Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information. The primary purpose of the SECURITY SPECIALIST, GS-0080-11, position is to serve as a security specialist, providing advice, support and effective management of security related programs, providing information, industrial, and personnel security program functions in... support of the installation. Responsibilities Implement
Summary Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information. The primary purpose of the SECURITY SPECIALIST, GS-0080-11, position is to serve as a security specialist, providing advice, support and effective management of security related programs, providing information, industrial, and personnel security program functions in... support of the installation. Responsibilities Implement and administer the Personnel Security Program for the installation. Implement and administer the Information Security Program for the installation. Administer the Industrial Security Program. Serve as an authority and expert on all matters involving OPSEC, anti-terrorism (AT) and force protection (FP) requirements, policy, procedures, and program status. Assist base unit and staff agency security managers in implementing security education and motivation programs. Requirements Conditions of Employment Qualifications Experience requirements are described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, Administrative and Management Positions. Due to the use of 120-day rosters, this period of experience may be completed within 120 days of the closing date of this announcement. SPECIALIZED EXPERIENCE: Applicants must have at least one year (52 weeks) of specialized experience at the next lower grade GS-09, or equivalent in other pay systems. Examples of specialized experience includes developing, evaluating, maintaining, and/or operating systems, policies, devices, procedures, and methods used for safeguarding information, property, personnel, operations, and materials; developing and implementing policies and procedures for analyzing and evaluating the character, background, and history of employees, candidates for employment, and other persons having or proposed to be granted access to classified or other sensitive information, materials, or work sites. NOTE: Due to the use of 120-day rosters, this period of experience may be completed within 120 days of the closing date of this announcement. OR EDUCATION: A Ph.D. or equivalent doctoral degree or 3 full years of progressively higher level graduate education leading to such a degree or an LL.M., if related. NOTE: You must submit copies of your unofficial transcripts with your application if using education as a substitution of experience. OR COMBINATION OF EXPERIENCE AND EDUCATION: Applicant must have equivalent combinations of successfully completed a master's or equivalent graduate degree, or two full years of progressively higher-level graduate education leading to such a degree, or LL.B. or J.D., if related, and specialized experience directly related to the work of the position as outlined above that meets the requirements of the position. NOTE: You must submit copies of your unofficial transcripts with your application if using education as a substitution of experience. FEDERAL TIME-IN-GRADE (TIG) REQUIREMENT FOR GENERAL SCHEDULE (GS) POSITIONS: Merit promotion applicants must meet applicable time-in-grade requirements to be considered eligible. One year at the GS-09 level is required to meet the time-in-grade requirements for the GS-11 level. TIG applies if you are in a current GS position or held a GS position within the previous 52 weeks. NOTE: Applicants applying as VEOA candidates who are current GS civil service employees or are prior GS civil service employees within the past 52 weeks must also meet time-in-grade requirements. Due to the use of 120 day rosters, applicants within 120 days of completion of TIG requirements are encouraged to apply. KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: Expert knowledge of information, industrial, and personnel security concepts, principles, and practices to plan and implement security programs in these areas. Knowledge of required security training concepts, programs, procedures, and practices to assist managers in establishing and operating internal security programs. Skill in developing, analyzing, and evaluating security programs to accomplish broad studies, meet mission requirements and improve the security program functions. Ability to independently gather, analyze, and present data and supporting analysis in an organized manner to recommend resolution of difficult and complex security problems. Ability to establish effective professional working relationships with coworkers and customers, contributing to a cooperative working environment and successful accomplishment of the mission. Ability to establish effective professional working relationships with coworkers and customers, contributing to a cooperative working environment and successful accomplishment of the mission. Ability to communicate orally and in writing, clearly, concisely, and accurately. PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week. VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. Physical Demands: The work is primarily sedentary. Some walking and standing occurs during inspections of numerous organizations' security programs. The inspections are not conducted under arduous conditions. Additional functional requirement includes mental and emotional stability. Work Environment: The work is performed in an office setting. Most inspections are also conducted in office settings. However, some duties may require access to areas of the Complex requiring necessary precautions regarding fumes, noise, eye hazards, etc. Certifications: Department of Defense Security Fundamentals Professional Certification, and Security Asset Protection Professional Certification conferrals are required within 2 years of the established employee EOD to this position in accordance with DOD 3305.13-M, DoD Security Accreditation and Certification. The listed certification requirements may not be deleted or modified without the written approval of the AF Security Functional Authority (SAF/AA) or their delegated security career field representative. This certification requirement only applies to employees hired onto this position on or after 14 March 2016. Incumbent employees with an EOD on or before 13 March 2016 are not required to obtain the DoD certification(s) listed above; however, are highly encouraged to do so at their earliest opportunity as it could have a negative impact on future advancement opportunities within the DoD security workforce. Education IF USING EDUCATION TO QUALIFY: If position has a positive degree requirement or education forms the basis for qualifications, you MUST submit transcripts with the application. Official transcripts are not required at the time of application; however, if position has a positive degree requirement, qualifying based on education alone or in combination with experience, transcripts must be verified prior to appointment. An accrediting institution recognized by the U.S. Department of Education must accredit education. Click here to check accreditation. FOREIGN EDUCATION: Education completed in foreign colleges or universities may be used to meet the requirements. You must show proof the education credentials have been deemed to be at least equivalent to that gained in conventional U.S. education program. It is your responsibility to provide such evidence when applying. Additional Information Hill Air Force Base provides worldwide engineering and logistics management for the F-16 Fighting Falcon, A-10 Thunderbolt II, and the Minuteman III ICBM, and performs depot maintenance of the F-16, A-10, and C-130 Hercules aircraft. The base is located between Ogden and Salt Lake City. The area is known for year round activities, including skiing, hiking, boating, extreme sports, fishing and hunting, with four distinct seasons, low humidity and moderate snow fall in the valley. Interagency Career Transition Assistance Program (ICTAP): For information on how to apply as an ICTAP eligible click here. To be well-qualified and exercise selection priority for this vacancy, displaced Federal employees must be rated well qualified or above for this position. You must submit a copy of the agency notice, your most recent performance rating, and your most recent SF-50 noting position, grade level, and duty location. Employed Annuitants (Reemployed Annuitants): Applicants in receipt of an annuity based on civilian employment in the Federal Service are subject to the DoD Policy on The Employment of Annuitants. Click here for more information. 120-Day Register: This announcement may result in a 120-day register that may be used to fill like vacancies for 120 days after the closing date. Applicants may be referred for consideration as vacancies occur. Military Spouse Preference (MSP) Eligible: MSP applicants, if determined best qualified, must be selected and placed at the highest grade for which they applied. You must include a completed copy of the DD Form 3145-4, Military Spouse PPP Self-Certification Checklist dated within 30 days along with the documents identified on the checklist to verify your eligibility for MSP. Click here to obtain/download a copy of the DD Form 3145-4, Military Spouse PPP Self-Certification Checklist. Priority Placement Program (PPP) Applicant Eligible: PPP Applicants, if determined well qualified and selected, will be placed at the at the full performance level. You must include the applicable completed copy of the PPP Self-Certification Checklist dated within 30 days along with the documents identified on the checklist to verify your eligibility as a PPP Applicant. Click here to obtain/download a copy of the applicable PPP Self-Certification Checklist (DD3145-1 through DD3145-4, select the appropriate checklist for your claimed preference). To determine the applicable PPP Self-Certification Checklist required to substantiate the eligibilities you are claiming, refer to the AF Civilian Employment Eligibility Guide located in the Required Documents section of this vacancy announcement. If you have questions regarding this announcement and have hearing or speech difficulties click here
Show more details...
via Wd1.Myworkdaysite.com
posted_at: 2 days agoschedule_type: Full-timework_from_home: 1
Position Title: Cyber Security Awareness Analyst Position Type: Regular Hiring Range: $83,500 - 112,900 annual, commensurate with experience Pay Frequency: Annual A. POSITION PURPOSE The Cyber Security Awareness Analyst is focused on improving Santa Clara University’s information security culture. S/he does this by developing security awareness programs that ensure employees understand cybersecurity risks and data privacy regulations; by developing
Position Title: Cyber Security Awareness Analyst Position Type: Regular Hiring Range: $83,500 - 112,900 annual, commensurate with experience Pay Frequency: Annual A. POSITION PURPOSE The Cyber Security Awareness Analyst is focused on improving Santa Clara University’s information security culture. S/he does this by developing security awareness programs that ensure employees understand cybersecurity risks and data privacy regulations; by developing security awareness programs and events that educate campus constituents on key cybersecurity concepts; and by identifying, collating, and reporting key information security metrics to Information Services leadership. The Cybersecurity Awareness Analyst establishes and enhances relationships with business owners and data stewards to gain insight on current security awareness and compliance levels and to adjust cybersecurity training and awareness programs accordingly. S/he administers the cybersecurity training platform and develops original... and re-mixed information security-related content to market to a variety of audiences and platforms. Secondary duties include participating, with other Information Security staff, in risk assessment and incident response efforts. The Cybersecurity Awareness Analyst is a member of the Information Security Office and reports to the Chief Information Security Officer. This office works with the university community to secure information resources, protect confidential data, and raise cybersecurity awareness. The activities of this position must support the Mission and Goals of the University and Information Services. Demonstrated experience with and a commitment to delivering excellent customer service is required. ESSENTIAL DUTIES AND RESPONSIBILITIES Promote security awareness across campus; Model and advocate for information security best practices; Develop a robust awareness program that supplements the online annual training with regular and insightful communications, events, games, and other strategies designed to educate and engage the campus community; Create blog and social media posts, website updates, videos, and documentation used for cybersecurity education Administer the cybersecurity training system used for annual employee training, including formulating role-based training paths, customizing training modules, and working with the vendor to resolve issues; Track and report cybersecurity awareness metrics; Monitor evolving data privacy regulations and ensure training materials are updated to reflect new requirements; Create communication plans for new security-related projects and initiatives as needed; Support the CISO in the formulation of information security related policies as needed; In conjunction with the ISO team, conduct risk assessments that proactively identify, mitigate, and reduce risk to the organization; In conjunction with the ISO team, respond to any information security incidents; Communicate campus security awareness trends, security metrics, and security issues to leadership; Other duties as assigned. PROVIDES WORK DIRECTION This position does not have any direct reports. GENERAL GUIDELINES Identifies cybersecurity knowledge baselines across the campus community and utilizes both technical acumen and marketing and communications skills to implement an awareness program designed to improve those baselines Interacts with the University community to promote information security awareness, ensure understanding of security policies, and to foster relationships between the Security Office and the broader University community Works independently to develop and administer security training, events, and other programming designed to increase campus awareness of cybersecurity issues Prepares and submits reports as requested and required. QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The items below are representative of the knowledge, skills, abilities, education, and experience required or preferred. This position requires the ability to effectively establish and maintain cooperative working relationships within a diverse multicultural environment. 1. Knowledge, Skills and Abilities General Knowledge of information security issues and trends in higher education, and ability to continually develop new knowledge regarding the same. Ability to listen and understand customer needs. Ability to communicate clearly and effectively across multiple mediums and to diverse audiences with professionalism, diplomacy, and delicacy. Ability to work in a collaborative environment, as either a member or leader of a team, to meet deadlines and achieve goals. Ability to work with and provide excellent customer service to a diverse workforce. Self-motivated and shows initiative. Ability to keep track of and meet deadlines while managing multiple tasks and projects simultaneously. Ability to plan and manage projects involving multiple requirements, stakeholders, and deliverables. Ability to exercise independent judgment and engage in critical thinking and problem solving. Ability to explain technical issues, cybersecurity concepts, and security policies to non-experts. Ability to create and deliver in-person and online presentations on data and information security issues to a broad range of audiences. Ability to foster and maintain good working relationships with campus constituents. Ability to maintain confidentiality and manage confidential information. Appreciation for and understanding of the University’s mission, vision, values, priorities, procedures, and policies. Position-specific Excellent written and oral communication skills. Broad understanding of information security issues, practices, and regulations, such as MFA, phishing, social engineering, malware, device hygiene, vulnerability management, FERPA, GLBA, PCI-DSS, and similar. Experience administering cybersecurity training platforms, learning management systems, or other cloud based systems Understanding of, and preferably experience working in, complex and cloud-based computing environments Understanding of cybersecurity industry trends and standards. Executes responsibilities with integrity and maintains the trust and confidence of senior management Works under limited supervision 2. Education Bachelor degree from an accredited institution of higher education Security-related certification preferred (such as SANS SSAP, GIAC GSEC, Security+, or similar) 3. Experience 2-4 years related experience Strong analytical skills and the ability to resolve complex problems Proven ability to work independently Strong interpersonal and communication skills and ability to effectively communicate with management, faculty, staff and students, and with both technical and non-technical audiences Experience working in Higher Education is preferred Experience with FERPA, GLBA, and/or PCI-DSS is preferred PHYSICAL DEMANDS The physical demands described below are representative of those that must be met by an employee to successfully perform the essential functions of this job. In accordance with the Americans with Disabilities Act, as amended, the California Fair Employment & Housing Act, and all other applicable laws, SCU provides reasonable accommodations for qualified persons with disabilities. A qualified individual is a person who meets skill, experience, education, or other requirements of the position, and who can perform the essential functions of the position with or without reasonable accommodation. Considerable time is spent at a desk using a computer terminal Will be required to travel to other buildings on the campus May be required to occasionally travel to remote campuses, outside customers, vendors or suppliers May be required to attend conference and training sessions within Bay Area or in- or out-of-state locations WORK ENVIRONMENT The work environment characteristics described below are representative of those an employee encounters while performing the essential functions of this job. Typical office and computer lab environment Mostly indoor office environment with windows Offices with equipment noise Offices with frequent interruptions COVID-19 Statement The health and safety of the university community is a top priority. All Santa Clara University students, and employees are required to be vaccinated against COVID-19 or request a medical or religious exemption. Please visit our COVID-19 webpage for additional information. EEO Statement Equal Opportunity/Notice of Nondiscrimination Santa Clara University is an equal opportunity/equal access/affirmative action employer fully committed to achieving a diverse workforce and complies with all Federal and California State laws, regulations, and executive orders regarding non-discrimination and affirmative action. Applications from members of historically underrepresented groups are especially encouraged. For a complete copy of Santa Clara University’s equal opportunity and nondiscrimination policies, see https://www.scu.edu/title-ix/policies-reports/ Title IX of the Education Amendments of 1972 Santa Clara University does not discriminate in its employment practices or in its educational programs or activities on the basis of sex/gender, and prohibits retaliation against any person opposing discrimination or participating in any discrimination investigation or complaint process internally or externally. The Title IX Coordinator and Section 504 and ADA Coordinator is Aaron Zisser, Director of Equal Opportunity and Title IX, 408-551-3043, azisser@scu.edu , www.scu.edu/title-ix. Inquiries can also be made to the Assistant Secretary of Education within the Office for Civil Rights (OCR). Clery Notice of Availability Santa Clara University annually collects information about campus crimes and other reportable incidents in accordance with the federal Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act. To view the Santa Clara University report, please go to the Campus Safety Services website. To request a paper copy please call Campus Safety at (408) 554-4441. The report includes the type of crime, venue, and number of occurrences. Americans with Disabilities Act Santa Clara University affirms its commitment to employ qualified individuals with disabilities within the workplace and to comply with the Americans with Disability Act. All applicants desiring an accommodation should contact the Department of Human Resources, and 408-554-5750 and request to speak to Indu Ahluwalia by phone at 408-554-5750 or by email at iahluwalia@scu.edu. Santa Clara University is a comprehensive Jesuit, Catholic university located in California’s Silicon Valley, offering its 8,800 students rigorous undergraduate curricula in arts and sciences, business, and engineering, plus master’s, Ph.D., and law degrees. Santa Clara University requires all employees to be fully vaccinated and boosted against COVID-19. This mandate allows for limited exemptions and a grace period for new hires to comply with the vaccination requirement. Santa Clara University does not sponsor work visas for staff positions. If hired, individuals must independently provide proof of their eligibility to work in the United States. Santa Clara University offers a comprehensive benefits package for benefit eligible employees with programs and resources designed to promote and sustain personal health care, well-being, and the financial objectives of our employees and families. Visit our benefits page for more information
Show more details...
via LinkedIn
schedule_type: Full-time
Updated: Oct 4, 2023
Location: Remote-Campus...
Job Type
Department: OIT/IT Security
Job Opening ID: 56678
Reports To: Security Risk and Compliance Supervisor
Working Title: Information Security Risk Analyst-Hybrid
Department: OIT/IT Security
Bargaining Unit: 99
FLSA: Exempt
Payroll Job Code: 007338
Job Location: UCI Campus- Irvine
Percent of Time: 100%
Work Schedule: Flexible, M-F
Employee Class: Career
Position Summary
The UC Irvine
Updated: Oct 4, 2023
Location: Remote-Campus...
Job Type
Department: OIT/IT Security
Job Opening ID: 56678
Reports To: Security Risk and Compliance Supervisor
Working Title: Information Security Risk Analyst-Hybrid
Department: OIT/IT Security
Bargaining Unit: 99
FLSA: Exempt
Payroll Job Code: 007338
Job Location: UCI Campus- Irvine
Percent of Time: 100%
Work Schedule: Flexible, M-F
Employee Class: Career
Position Summary
The UC Irvine Office of Information Technology (OIT) is responsible for supporting the IT needs of faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education, and community service goals of the University. The IT Security Risk & Compliance team is responsible for leading the development, implementation and evaluation of campus-wide information security risk management processes and policy. This team also leads campus-wide information security education, training, and awareness programs.
Under the general supervision of the Security Risk and Compliance Supervisor, the Information Security Risk Analyst applies skills as a seasoned, experienced IT security professional with a full understanding of industry practices, governmental regulations and campus policies and procedures to resolve a wide range of complex issues and manage IT security risk and compliance. Analyzes and communicates current security threats, requirements, and best practices related to security risk and compliance. Demonstrates competency in recommending methods and techniques to obtain results. Helps develop user-facing content and training for security website. Manages GRC tool and related security risk management and compliance processes. Performs and/or facilitates information security risk assessments of existing or new services and technologies and 3rd party supplier risk. Communicates risk assessment findings, partners with Units to plan for and prioritize remediation.
Total Compensation
In addition to the salary range listed below, we offer a wealth of benefits to make working at UCI even more rewarding. These benefits may include medical insurance, sick and vacation time, retirement savings plans, and access to a number of discounts and perks. Please utilize the links listed here to learn more about our compensation practices and benefits.
$81,900.00 - $150,500.00 (Annual Salary)
Required
Three plus (3+) years of experience in information security, especially in an information risk analysis role, risk management and/or IT audit role. Three plus (3+) years of experience with regulatory compliance and information security management frameworks (e.g., IS0 27000, COBIT, NIST 800, etc.)
Bachelor's degree in related area and / or equivalent experience / training.
Knowledge of common cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001/27002). Ability to follow department processes and procedures. Interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner. Experience using IT security systems and tools. Knowledge of risk management techniques. Experience using Governance, Risk & Compliance (GRC), vendor risk, risk register, and other security risk management tools and platforms. Knowledge of other areas of IT, department processes and procedures. Demonstrated skills applying security controls to computer software and hardware. Ability to create and interpret technical diagrams (e.g., network diagrams, data flow diagrams). Ability to identify and assess the severity and potential impact of risks and to communicate findings effectively to risk owners. Demonstrated skill at administering complex security controls and configurations to computer hardware, software, and networks. Knowledge of computer hardware, software and network security issues and approaches. Demonstrated experience selecting and applying appropriate risk management technologies. Self-motivated with a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, and integrity. Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, and compliance measures and/or remediation items. Experience working with multiple information security compliance regulations, such as PCI DSS, HIPAA/HITECH, DOJ/CJIS, GLBA, FISMA, NIST 800-171, GDPR, CMIA, CA IPA.
Preferred
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC), PCI Internal Security Assessor (ISA)
Familiarity with UC information security policy (i.e., IS-3), program and procedures. Higher education experience.
Special Conditions Required
Must pass a background check. Eligible for remote work with occasional requirement to visit UCI Campus, or other university setting and various external venues.
Conditions Of Employment
The University of California, Irvine (UCI) seeks to provide a safe and healthy environment for the entire UCI community. As part of this commitment, all applicants who accept an offer of employment must comply with the following conditions of employment:
• Background Check and Live Scan
• Legal Right to work in the United States
• Vaccination Policies
• Smoking and Tobacco Policy
• Drug Free Environment
The following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.
• California Child Abuse and Neglect Reporting Act
• E-Verify
• Pre-Placement Health Evaluation
Details of each policy may be reviewed by visiting the following page - https://hr.uci.edu/new-hire/conditions-of-employment.php
Closing Statement
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500 or [email protected].
#OIT
Share: mail
Apply for this Job Show more details...
Location: Remote-Campus...
Job Type
Department: OIT/IT Security
Job Opening ID: 56678
Reports To: Security Risk and Compliance Supervisor
Working Title: Information Security Risk Analyst-Hybrid
Department: OIT/IT Security
Bargaining Unit: 99
FLSA: Exempt
Payroll Job Code: 007338
Job Location: UCI Campus- Irvine
Percent of Time: 100%
Work Schedule: Flexible, M-F
Employee Class: Career
Position Summary
The UC Irvine Office of Information Technology (OIT) is responsible for supporting the IT needs of faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education, and community service goals of the University. The IT Security Risk & Compliance team is responsible for leading the development, implementation and evaluation of campus-wide information security risk management processes and policy. This team also leads campus-wide information security education, training, and awareness programs.
Under the general supervision of the Security Risk and Compliance Supervisor, the Information Security Risk Analyst applies skills as a seasoned, experienced IT security professional with a full understanding of industry practices, governmental regulations and campus policies and procedures to resolve a wide range of complex issues and manage IT security risk and compliance. Analyzes and communicates current security threats, requirements, and best practices related to security risk and compliance. Demonstrates competency in recommending methods and techniques to obtain results. Helps develop user-facing content and training for security website. Manages GRC tool and related security risk management and compliance processes. Performs and/or facilitates information security risk assessments of existing or new services and technologies and 3rd party supplier risk. Communicates risk assessment findings, partners with Units to plan for and prioritize remediation.
Total Compensation
In addition to the salary range listed below, we offer a wealth of benefits to make working at UCI even more rewarding. These benefits may include medical insurance, sick and vacation time, retirement savings plans, and access to a number of discounts and perks. Please utilize the links listed here to learn more about our compensation practices and benefits.
$81,900.00 - $150,500.00 (Annual Salary)
Required
Three plus (3+) years of experience in information security, especially in an information risk analysis role, risk management and/or IT audit role. Three plus (3+) years of experience with regulatory compliance and information security management frameworks (e.g., IS0 27000, COBIT, NIST 800, etc.)
Bachelor's degree in related area and / or equivalent experience / training.
Knowledge of common cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001/27002). Ability to follow department processes and procedures. Interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner. Experience using IT security systems and tools. Knowledge of risk management techniques. Experience using Governance, Risk & Compliance (GRC), vendor risk, risk register, and other security risk management tools and platforms. Knowledge of other areas of IT, department processes and procedures. Demonstrated skills applying security controls to computer software and hardware. Ability to create and interpret technical diagrams (e.g., network diagrams, data flow diagrams). Ability to identify and assess the severity and potential impact of risks and to communicate findings effectively to risk owners. Demonstrated skill at administering complex security controls and configurations to computer hardware, software, and networks. Knowledge of computer hardware, software and network security issues and approaches. Demonstrated experience selecting and applying appropriate risk management technologies. Self-motivated with a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, and integrity. Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, and compliance measures and/or remediation items. Experience working with multiple information security compliance regulations, such as PCI DSS, HIPAA/HITECH, DOJ/CJIS, GLBA, FISMA, NIST 800-171, GDPR, CMIA, CA IPA.
Preferred
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC), PCI Internal Security Assessor (ISA)
Familiarity with UC information security policy (i.e., IS-3), program and procedures. Higher education experience.
Special Conditions Required
Must pass a background check. Eligible for remote work with occasional requirement to visit UCI Campus, or other university setting and various external venues.
Conditions Of Employment
The University of California, Irvine (UCI) seeks to provide a safe and healthy environment for the entire UCI community. As part of this commitment, all applicants who accept an offer of employment must comply with the following conditions of employment:
• Background Check and Live Scan
• Legal Right to work in the United States
• Vaccination Policies
• Smoking and Tobacco Policy
• Drug Free Environment
The following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.
• California Child Abuse and Neglect Reporting Act
• E-Verify
• Pre-Placement Health Evaluation
Details of each policy may be reviewed by visiting the following page - https://hr.uci.edu/new-hire/conditions-of-employment.php
Closing Statement
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500 or [email protected].
#OIT
Share: mail
Apply for this Job Show more details...
Norton safe Web