Information Security Risk Analyst - 40005-1A

This job posting is no longer active.

Updated: Aug 17, 2022
Location: Irvine-Campus
Job Type:
Department: IT Security

Job Opening ID: 40005
Reports To: Chief Information Security Officer and Director, Information Security
Working Title: Information Security Risk Analyst
Department: IT Security
Bargaining Unit: 99
FLSA: Exempt
Payroll Job Code: 007338
Job Location: UCI Campus- Irvine
Percent of Time: 100%
Work Schedule: 8-5, M-F
Employee Class: Career
 
Position Summary:
 
The UC Irvine Office of Information Technology (OIT) is responsible for supporting the IT needs of faculty, students, and staff. Our mission is to provide information technology leadership, services, and innovative solutions to promote the research, education and community service goals of the University. The IT Security Risk & Compliance team is responsible for leading the development, implementation and evaluation of campus-wide information security risk management processes and policy. This team also leads campus-wide information security education, training and awareness programs.
 
Under general supervision of the Chief Information Security Officer and Director, Information Security, the Information Security Risk Analyst applies skills as a seasoned, experienced IT security professional with a full understanding of industry practices, governmental regulations and campus policies and procedures to resolve a wide range of complex issues and manage IT security risk. Demonstrates competency in recommending methods and techniques to obtain results. Maintains a security awareness, outreach, training, and communication program. Develops user-facing content for security website. Manages GRC tool and related security risk management processes. Performs project management and coordination of various security initiatives and audit remediation using security domain knowledge. Performs and/or facilitates information security risk assessments of existing or new services and technologies and 3rd party supplier risk.
 
Compensation Range:
 
Commensurate with experience.
 
Department Website:
 
Required:
 
Three (3) to five (5) years of experience in information security, especially in an information risk analysis role, risk management and/or IT audit role. Three (3) + years of experience with regulatory compliance and information security management frameworks (e.g., IS0 27000, COBIT, NIST 800, etc.)
Bachelor's degree in related area and / or equivalent experience / training.
Demonstrated skills applying security controls to computer software and hardware. Ability to create and interpret technical diagrams (e.g., network diagrams, data flow diagrams). Interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Knowledge of computer hardware, software and network security issues and approaches. Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, and compliance measures and/or remediation items. Ability to follow department processes and procedures, including knowledge of other areas of IT, department processes and procedures. Self-motivated with a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, and integrity. Knowledge of common cybersecurity frameworks and standards (e.g., NIST 800-171, ISO 27001/27002). Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks. Experience using IT security systems and tools. Knowledge of risk management techniques. Experience using Governance, Risk & Compliance (GRC), vendor risk, risk register, and other security risk management tools and platforms. Ability to identify and assess the severity and potential impact of risks and to communicate findings effectively to risk owners. Project management experience. Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner. Demonstrated experience selecting and applying appropriate risk management technologies.
 
Preferred:
 
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) Project Management Professional (PMP)
Higher education experience. Familiarity with UC information security policy (i.e., IS-3), program and procedures.
 
Special Conditions Required:
 
Must possess a valid California Driver's License. Must pass a background check.

 
Conditions of Employment
The University of California, Irvine (UCI) seeks to provide a safe and healthy environment for the entire UCI community. As part of this commitment, all applicants who accept an offer of employment must comply with the following conditions of employment:
  • Background Check and Live Scan
  • Legal Right to work in the United States
  • Vaccination Policies
  • Smoking and Tobacco Policy
  • Drug Free Environment
The following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.
  • California Child Abuse and Neglect Reporting Act
  • E-Verify
  • Pre-Placement Health Evaluation
Details of each policy may be reviewed by visiting the following page - https://hr.uci.edu/new-hire/conditions-of-employment.php

Closing Statement
The University of California, Irvine is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Human Resources at (949) 824-0500 or [email protected].
 
#OIT
Share: mail
Apply for this Job

Related Jobs

Nurse Practitioner II

Irvine, CA, United States

Senior Project Manager

Irvine, CA, United States

Construction Project Manager

Irvine, CA, United States

Executive Director, Planned Giving

Irvine, CA, United States

Administrative Assistant III

Irvine, CA, United States

Ruby on Rails Developer - Remote/Hybrid

Irvine, CA, United States

EHS Academic School Coordinator

Irvine, CA, United States

Math Tutor

Irvine, CA, United States

Financial Analyst Supervisor

Irvine, CA, United States

Education Technology Specialist III

Irvine, CA, United States

Clinical Research Manager

Irvine, CA, United States

Assistant Field Operations Manager

Irvine, CA, United States

Materials Management Analyst

Irvine, CA, United States

Director, Health and Wellness Coaching

Irvine, CA, United States

Department Administrator

Irvine, CA, United States

Psychologist

Irvine, CA, United States

Sculpture/P&D Lab Manager

Irvine, CA, United States

Community Naturopathic Doctor

Irvine, CA, United States