Information Security Analyst - Hybrid
The University of California, San Diego
About this position
Position Description
Information Security Analyst is an integral part of the Incident Response team for handling security events and the primary admin of DUO MFA solution which is a critical security control for protecting against unauthorized access to systems and data used by UC San Diego Health. Member of 7/24 on-call rotation that handles security event investigations and incident response. Activities include determining if compromises have occurred, managing security event response, and remediation activities. Devolve and perform critical alert and remediation processes on InfoSec team. Administer critical security tools, i.e., MFA, email security, log analysis during investigations.
Qualifications
Nine (9) years of related experience, education/training, OR a Bachelor’s degree in related area plus five (5) years of related experience/training. Related Information Security experience includes Incident Response, Email security, and experience with administering security tools. Advanced interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Advanced experience using IT security systems and tools. Required Knowledge of department processes and procedures. Demonstrated skills applying security controls to computer software and hardware. Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks. Advanced knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies. Advanced knowledge of IT security. Broad knowledge of other areas of IT. Demonstrated knowledge of secure hardware, software and network design techniques. Demonstrated skill at analyzing and preventing security incidents of high complexity. In-depth knowledge of computer hardware, software and network security issues and approaches. Advanced experience in incident response and digital forensics including reporting.