Sr. IT Security Risk and Policy Analyst – Remote – 130420 Click Here to Apply Online Job Description Filing Deadline: Fri 7/5/2024 UC San Diego values equity, diversity, and inclusion. If you are interested in being part of our team, possess the needed licensure and certifications, and feel that you have most of the qualifications and/or transferable skills for a job opening, we strongly encourage you to apply. Special Selection Applicants : Apply by 07/25/24. Eligible Special Selection clients should contact their Disability Counselor for assistance. Candidates hired into this position may have the ability to work remotely. DESCRIPTION The Senior IT Security Risk and Policy Analyst executes processes across the organization to conduct the required IT security risk assessment program to reduce information security risk, address threats and vulnerabilities to information assets, monitor compliance to policy, and improve the overall security posture of the University. The incumbent serves as technical resource on external security audits and accreditation processes and conducts internal security audits on customer networks/systems. The position provides recommendations for security controls and ensures remediation of any deficiencies to ensure compliance with campus policy and regulatory requirements such a PCI, HIPAA, FERPA, etc. IT security Risk Assessments and adherence to organizational information security policies are required elements for HIPAA compliance. Assessments are used to identify threats and vulnerabilities to information systems and prioritize remediation activities. Auditing compliance with implementing security controls is required to ensure that the risks are being managed to the degree that university policy requires. This is a fundamental component of an Information Security Program and drives the security improvement activities across the organization. Significant fines have been associated with not having through documented risk assessments and compliance programs in place by OCR. Analyst is also responsible for fulfilling legal requests as required in support of investigations and legal activities as directed by the proper UC authority while maintaining strict confidentiality. MINIMUM QUALIFICATIONS Nine (9) years of related experience, education/training, OR a Bachelor’s degree in related area plus five (5) years of related experience/training. Advanced interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization. Advanced experience using IT security systems and tools. Demonstrated skills applying security controls to computer software and hardware. Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks. Advanced knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies. Advanced knowledge of IT security. Demonstrated knowledge of secure hardware, software and network design techniques. Demonstrated skill at analyzing and preventing security incidents of high complexity. In-depth knowledge of computer hardware, software and network security issues and approaches. Advanced experience in incident response and digital forensics including reporting. PREFERRED QUALIFICATIONS Experienced information security risk analyst in an academic medical center. Experience as an information security risk practitioner doing vendor/technology assessments in a healthcare environment. SPECIAL CONDITIONS Must be able to work various hours and locations based on business needs. Employment is subject to a criminal background check and pre-employment physical. Pay Transparency Act Annual Full Pay Range: $101,200 – $192,200 (will be prorated if the appointment percentage is less than 100%) Hourly Equivalent: $48.47 – $92.05 Factors in determining the appropriate compensation for a role include experience, skills, knowledge, abilities, education, licensure and certifications, and other business and organizational needs. The Hiring Pay Scale referenced in the job posting is the budgeted salary or hourly range that the University reasonably expects to pay for this position. The Annual Full Pay Range may be broader than what the University anticipates to pay for this position, based on internal equity, budget, and collective bargaining agreements (when applicable). If employed by the University of California, you will be required to comply with our Policy on Vaccination Programs, which may be amended or revised from time to time. Federal, state, or local public health directives may impose additional requirements. If applicable, life-support certifications (BLS, NRP, ACLS, etc.) must include hands-on practice and in-person skills assessment; online-only certification is not acceptable. UC San Diego Health is the only academic health system in the San Diego region, providing leading-edge care in patient care, biomedical research, education, and community service. Our facilities include two university hospitals, a National Cancer Institute-designated Comprehensive Cancer Center, Shiley Eye Institute, Sulpizio Cardiovascular Center, the only Burn Center in the county, and and dozens of outpatient clinics. We invite you to join our team! Applications/Resumes are accepted for current job openings only. For full consideration on any job, applications must be received prior to the initial closing date. If a job has an extended deadline, applications/resumes will be considered during the extension period; however, a job may be filled before the extended date is reached. To foster the best possible working and learning environment, UC San Diego strives to cultivate a rich and diverse environment, inclusive and supportive of all students, faculty, staff and visitors. For more information, please visit UC San Diego Principles of Community. UC San Diego is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age or protected veteran status. For the University of California’s Affirmative Action Policy please visit: For the University of California’s Anti-Discrimination Policy, please visit: UC San Diego is a smoke and tobacco free environment. Please visit smokefree.ucsd.edu for more information. UC San Diego Health maintains a marijuana and drug free environment. Employees may be subject to drug screening. Application Instructions Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you! Apply Online Payroll Title: IT SCRTY ANL 4 Department: INFORMATION SERVICES Hiring Pay Scale $123,950 – $155,800 / Year Worksite: Remote Appointment Type: Career Appointment Percent: 100% Union: Uncovered Total Openings: 1 Work Schedule: Days, 8 hour shifts, Monday – Friday Click Here to Apply Online X Share This Page Sr. IT Security Risk and Policy Analyst – Remote – 130420 Share link. Copy this URL: Posted : 6/20/2024 Job Reference # : 130420
application-security pci risk management network-security Incident response encryption HIPAA Information security