Senior Information Security Risk Analyst

Senior Information Security Risk Analyst

University of California Los Angeles

Budgeted Pay Scale : $130,530-$150,805

Full Salary Range : USD $95,900.00 / Yr. - USD $222,100.00 / Yr.

Department Summary

The UCLA Information Security Office enables UCLA's goals by providing leadership assuring the confidentiality, integrity, and availability of its information resources.

The Information Security Office enables efficient incident response planning and notification procedures. In addition, the office aims to implement risk assessment strategies to identify vulnerabilities and threats to departmental information resources and enterprise systems.

This includes executing a comprehensive UCLA IT security plan, which involves proposing, delivering, and enforcing administrative, technical, and physical security measures to tackle identified risks based on their sensitivity or criticality.

The Information Security Governance, Risk Management, and Compliance team develops institutional security policies, standards, procedures, compliance guidelines, strategies, requirements, and documentation for all administrative and academic units, departments, and teams.

The team also develops, deploys, and manages security education and training.

Position Summary

The Senior Information Security Risk Analyst will drive the execution of UCLA's cybersecurity risk management strategy. This individual will take ownership of and coordinate comprehensive risk assessments spanning various domains, including IT, information security, risk management, and compliance.

Leveraging their extensive experience and expertise, they will provide strategic guidance to address identified risks and drive effective remediation of non-compliant areas across the IT landscape.

The Senior Analyst will be at the forefront of identifying and mitigating emerging cyber threats and vulnerabilities, ensuring that UCLA remains resilient against potential disruptions or data breaches.

The Senior Information Security Risk Analyst will also mentor and guide junior risk analysts in the team. The Senior Information Security Risk Analyst will positively impact UCLA's operations and culture by protecting University stakeholders' to effectively implement and maintain UCLA's GRC framework, ensuring compliance with relevant regulations and standards, and providing insightful analysis of risk and control data.

This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students.

This role will execute UCLA's vision while modeling UCLA's culture and values.

Salary & Compensation

UCLA provides a full pay range. Actual salary offers consider factors, including budget, prior experience, skills, knowledge, abilities, education, licensure and certifications, and other business considerations.

Salary offers at the top of the range are not common. Visit UC Benefit package to discover benefits that start on day one, and UC Total Compensation Estimator to calculate the total compensation value with benefits.

Qualifications

• Five years experience working in one or more of the following fields : computer science, cybersecurity, computer information systems. (Required)
• Five year performing technical assessments in direct support of a major compliance efforts, such as PCI, GDPR, NIST- CSF, ISO 27001, CMMC, FISMA, FedRAMP, or a related field. (Required)
• Experience using IT security systems and tools. (Required)
• Experience in performing risk, privacy, and data protection impact analyses, vendor reviews and maintaining records of processing. (Required)
• Seven or more years experience working in one or more of the following fields : computer science, cybersecurity, computer information systems. (Preferred)
• Experience in complex higher education environments, serving academic and administrative functions of a large public university. (Preferred)
• Demonstrated skills applying security controls to computer software and hardware. Demonstrated skill with applying complex security controls and configurations to computer hardware, software and networks. (Required)
• Strong written and verbal communication skills and is able to communicate complex technical ideas to a diverse community of colleagues and stakeholders.

Can relay technical information to audiences of technical and non-technical stakeholders. (Required)

• Able to establish and advance positive working relationships and a strong rapport with a diverse community of colleagues including team members, stakeholders, and customers. (Required)
• Advanced organizational skills, ability to balance priorities, deliver concurrent projects to various stakeholders. Ability to work in a project-based environment using project management practices. (Required)
• Advanced problem-solving skills; ability to identify root problems and scope solutions based on knowledge of resources, timelines, vision and strategy.

Seeks information from diverse sources to inform solutions. Demonstrated ability to make decisions with integrity. (Required)

• Able to participate in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Required)
• Thinks creatively and introduces innovations such as the incorporation of new technologies or processes. Thrives in an ever-changing, fast-paced environment. (Required)

Education, Licenses, Certifications & Personal Affiliations

• Bachelor's Degree In one or more of the following fields : information technology, cybersecurity, computer science, engineering, public administration, business administration, communications, or a related field. (Required)
• Bachelor's Degree In one or more of the following fields : information technology, cybersecurity, computer science, engineering, public administration, business administration, communications. (Preferred)
• Certified Information Security Manager (CISM) (Preferred)
• Certified Information Systems Auditor (CISA) (Preferred)
• Certified Information System Security Professional (CISSP) (Preferred)

Special Conditions for Employment

This position is eligible for a hybrid work arrangement that includes regular visits to campus as needed (for those who work remotely, travel / lodging expenses are not eligible for reimbursement).

The anticipated pay range for this position is $130,530-$150,805, annually; salary is dependent upon the skills and experience of the selected finalist.

NOTE : This position REQUIRES that a RESUME and COVER LETTER be submitted in addition to the application. Please have these two files ready to upload when applying.

• Background Check : Continued employment is contingent upon the completion of a satisfactory background investigation.
• Live Scan Background Check : A Live Scan background check must be completed prior to the start of employment.

Schedule

8 : 00 A.M. to 5 : 00 P.M. PT, Monday through Friday and / or variable based upon operational needs.

Union / Policy Covered

99-Policy Covered

To apply, please visit : https : / / jobs.ucla.edu / careers-home / jobs / 3007

Application Deadline : 8 : 50 p.m. on

Copyright 2024 Jobelephant.com Inc. All rights reserved.

Posted by the FREE value-added recruitment advertising agency

jeid-bee4692b76e430478600c31bcd5bdac5