Senior Security Analyst (0662U), Information Security Office
University of California
- Berkeley, CA
- $175,000-180,000 per year
- Permanent
- Full-time
- We champion diversity.
- We act with integrity.
- We deliver.
- We innovate.
- Executes complex and campus-wide security controls that are broad in scope to prevent hackers from accessing critical information or jeopardizing the most sensitive systems. Examples of the security domains covered by these controls are network security, SIEM and log management, and cloud security.
- Researches and addresses attempted efforts to compromise security protocols.
- Serves as technical lead for interacting with information security communities on and off-campus.
- Identifies, develops and implements complex campus wide systems for the detection and identification of malicious activity. These systems may either be refinements/reworking of existing systems or new systems to address unmet campus security needs.
- Coordinates Incident Response activities for campus information security incidents, both routine and significant.
- Proactively addresses the negative impact on the campus caused by theft, destruction, alteration or denial of access of information.
- Works with campus policy and administrators to define incident response procedures and establish campus-wide policy.
- May serve as a lead for less experienced professionals in the department.
- Engages in continuous professional development and training.
- Expert knowledge of IT security functions.
- Minimum of 5 years of in-depth IT knowledge and experience, including support, troubleshooting, and security best practices in heterogeneous computing environments with at least 3 of those being in a security specific role.
- Expert knowledge in SIEM (Security Information and Event Management) tools such as ArcSight, Splunk, QRadar, Chronicle, or Elastic Security.
- Knowledge relating to the design and development of diverse and complex security programs.
- Extensive knowledge of Incident Handling Policies and Procedures.
- High level interpersonal skills in order to work with both technical and non-technical personnel at various levels in the organization.
- Ability to interface with campus management on a regular basis.
- Demonstrated commitment to the advancement of diversity, equity, inclusion, belonging, justice and accessibility.
- Bachelor's degree in related area and/or equivalent experience/training.
- Thorough knowledge of other areas of IT. Examples of these areas would include things like networking, system administration, cloud platform, or application development.
- Experience in the design, and implementation of complex security tools in heterogeneous computing environments to help mitigate observed security gaps and vulnerabilities.
- Ability to build and nurture relationships in the Information Security Community.
- Strong technologist with a pragmatic view and creative mind, and a natural collaborator with architects, engineers, developers, application owners, and service providers.
- Experience serving as technical expert for engaging communities on information security issues in both on- premises and cloud environments.
- Extensive experience and proficiency in working as part of a collaborative, cross-functional, modern security team with a demonstrated ability to assume independent and team-based responsibilities.
- Expert knowledge and experience with Incident Handling Policies and Procedures.
- Experience working with and adapting common security policies, standards, and frameworks such as NIST 800-171, ISO 27001, CIS, and MITRE ATT&CK.
- Significant experience with Intrusion Detection, Firewall, Host, and/or Network Forensics.
- This is a 100%, full-time (40 hours per week), career position that is eligible for full UC benefits.
- This position is exempt and paid monthly.
- This position is eligible for flexible, hybrid or fully-remote work (telecommuting) based on candidate availability and business needs.