Requisition Number: 03024808 Final Filing Date: 09-20-2019 Closing Date: Payroll Title: IT SECURITY ANL 3 Number of Positions: 1 Salary: $5,683.33-$11,408.33/MO Appointment Type: Career Appointment Description: 100% Fixed; Monday-Friday 8am-5pm Overtime Eligible (FLSA): Exempt Union/HEERA Representation: This position is not represented by a collective bargaining unit
Department: RISK & SAFETY SOLUTIONS - 062016 Department Description: Risk and Safety Solutions (formerly Information Technology Services) was founded to support the University of California, one of the world's leading research institutions. Meeting the challenges presented by the institution's vast breadth of EH&S and Risk Management activities required a creative spirit and new ways of thinking. Today that spirit continues as we expand our expertise to new activities and a wider range of business needs in the public and private sector.
NO VISA SPONSORSHIP IS AVAILABLE FOR THIS POSITION
Location: Davis Allow Applicants to Attach: Resume Cover Letter References
Job Summary: Under general direction of the Security & Privacy Officer, manage the security and data protection infrastructure to protect the confidentiality, integrity, and availability of information resources at Risk and Safety Solutions (RSS).
Provide vulnerability management expertise. Configure vulnerability scanning tools, monitors, and dashboards to continually improve the RSS security infrastructure. Monitor vulnerability scanning tools for new vulnerabilities. Manage and assign ServiceNow tickets for mitigating or remediating vulnerabilities. Follow up on progress to mitigate or remediate the vulnerabilities. Report to the Security & Privacy Officer when policies are not followed or deadlines are not met. Identify weaknesses and potential threats to RSS information resources. Monitor the risk assessment activities in RSS and the risk registry. Follow up on risk treatment plans. Participate in team meetings and provide guidance on security issues.
Engage in research and development activities. Research and evaluate new security tools. Stay current with emerging system and web application vulnerabilities. Provide recommendations for new security tools. Coordinate with the Security Lead and DevOps teams for adoption of new tools.
With the guidance of and in collaboration with the Security & Privacy Officer, produce documentation for security policies, standards, and procedures. Ensure that documentation is compliant with University policies.
Physical Demands: Work on a personal computer for extended periods of time.
Work Environment: Work in a busy office with constant interruptions and distractions, and constant traffic and noise from telephone conversations, visitors, staff, etc. Employee is personally responsible for following health and safety guidelines/instructions.
UC Davis is a smoke and tobacco free campus effective January 1, 2014. Smoking, the use of smokeless tobacco products, and the use of unregulated nicotine products (ecigarettes) will be strictly prohibited on any UC Davis owned or leased property, indoors and outdoors, including parking lots and residential space. Additional information and specifics regarding the policy are available at http://breathefree.ucdavis.edu/index.html
Background Check Required: Yes
Minimum Qualifications: Experience researching and responding to customer inquiries about cyber security.
Experience with fundamental cyber security concepts.
Experience writing and applying technical documentation.
Experience using cloud computing services such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud.
Skills to organize and manage time to meet all task and project goals.
Experience communicating complex technical subjects both technical and non-technical audiences.
Knowledge of computer network defense and vulnerability assessment tools.
Knowledge of intrusion detection methodologies and techniques.
Familiarity with the major operating systems (Linux, Mac OS, Windows).
General knowledge of computer networking.
Preferred Qualifications: Bachelor's degree in related area and/or equivalent experience.
Experience with endpoint vulnerability scanning tools such as Tenable Nessus or Qualys.
Experience with web application testing methodologies such as DAST, SAST, and software composition analysis (SCA).
Experience with managing security in Amazon Web Services (AWS).
Experience with Security Information and Event Management (SIEM) tools such as Elasticsearch and Splunk.
Experience with Agile, Scrum, Kanban, and/or DevOps development methodologies.
Experience with scripting languages such as bash, PowerShell, and perl.
Experience using interpreted and compiled computing languages.
The University of California is an Equal Opportunity/Affirmative Action Employer advancing inclusive excellence. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
Copyright 2017 Jobelephant.com Inc. All rights reserved.
UC Davis is the home of the Aggies — go-getters, change makers and problem solvers who make their mark at one of the top public universities in the United States. Since we first opened in 1908, we’ve been known for standout academics, sustainability and Aggie Pride as well as valuing the Northern California lifestyle. These themes are woven into our 100-plus-year history and our reputation for solving problems related to food, health, the environment and society.Our 5,300-acre campus is in the city of Davis, a vibrant college town of about 68,000 located in Yolo County. The state capital is 20 minutes away, and world-class destinations such as the San Francisco Bay Area, Lake Tahoe and the Napa Valley are within a two-hour drive.