Senior Unit Information Security Specialist

The UCLA Office of Information Security enables UCLA's goals by providing leadership assuring the confidentiality, integrity, and availability of its information resources. The Information Security Office enables efficient incident response planning and notification procedures. In addition, the office aims to implement risk assessment strategies to identify vulnerabilities and threats to departmental information resources and enterprise systems. This includes executing a comprehensive UCLA IT security plan, which involves proposing, delivering, and enforcing administrative, technical, and physical security measures to tackle identified risks based on their sensitivity or criticality.

The UCLA Office of Information Security has established a program to collaborate with the campus community and organizations to implement information security best-practices, technologies, and initiatives that modernize and elevate our information security programs that protect our institution.

The Senior Unit Information Security Specialist will collaborate with assigned organizations and the Unit Information Security Manager to analyze organizational information security needs, define programs, processes and practices that conform with campus security standards, and to provide guidance and support with the implementation of technologies and services that will protect institutional data. Additionally, the Senior Unit Information Security Specialist will ensure effective communication with assigned organizations regarding policies, initiatives and procedures are thoughtfully implemented within assigned organizations. The Senior Unit Information Security Specialist will coordinate with assigned customer groups and within the IT Services organization to deliver services and capabilities that align with security programs and policies. The Senior UISS will positively impact UCLA's operations and culture by protecting University stakeholders' information and data in service of the institution's academic mission. This team member will advance the University's mission by delivering exceptional security services comprehensively and consistently for faculty, staff, and students. This role will execute UCLA's vision while modeling UCLA's culture and values.

*UCLA provides a full pay range. Actual salary offers consider factors, including budget, prior experience, skills, knowledge, abilities, education, licensure and certifications, and other business considerations. Salary offers at the top of the range are not common. Visit UC Benefit package to discover benefits that start on day one, and UC Total Compensation Estimator to calculate the total compensation value with benefits.

1. Five years experience working in one or more of the following fields: cybersecurity, information technology, computer science, computer information systems, etc. (Required)
2. Proven experience using IT systems and tools. (Required)
3. Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues. (Required)
4. Experience participating in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Required)
5. Seven or more years experience working in one or more of the following fields: cybersecurity, information technology, computer science, computer information systems, etc. (Preferred)
6. Strong understanding and working knowledge of Information Security fundamentals. (Required)
7. Advanced knowledge of privacy and security regulations and best practices, including federal and state laws, policies, and standards relevant to higher education. Knowledge of data classification and ability to educate on data classification requirements. (Required)
8. Advanced knowledge of the relationship between threat, vulnerability, and information value in the context of Information Security risk management. (Required)
9. Ability to coordinate closely with other Information Security teams to effectively address security breaches or incidents. (Required)
10. Understanding of user lifecycle access activities, as well as identity and access management controls. (Required)
11. Strong written and verbal communication skills and is able to communicate complex technical ideas to a diverse community of colleagues and stakeholders. Can relay technical information to audiences of technical and non-technical stakeholders. (Required)
12. Able to establish and advance positive working relationships and a strong rapport with a diverse community of colleagues including team members, stakeholders, and customers. (Required)
13. Advanced organizational skills and is able to balance competing priorities and deliver concurrent projects to various stakeholder types. (Required)
14. Advanced problem-solving skills; ability to uncover root of difficult problems and scope solutions based on knowledge of available resources and timelines as well as awareness of vision and strategy. Seeks information from multiple and diverse sources to inform solutions. (Required)
15. Demonstrated ability to make decisions with integrity. (Required)
16. Thinks creatively and introduces innovations such as the incorporation of new technologies or processes. Thrives in an ever-changing, fast-paced environment. (Required)

1. Bachelor's Degree in one or more of the following fields: information technology, computer science, business administration, communications or equivalent combination of experience and training. (Required)
2. One or more of the following: CISSP, CISA, Security+, CEH, CISM, or equivalent certification (Preferred)

• This is a two year contract appointment. This position is eligible for a hybrid work arrangement that includes regular visits to campus as needed (for those who work remotely, travel/lodging expenses are not eligible for reimbursement).
• The anticipated pay range for this position is $135,000-$145,000, annually; salary is dependent upon the skills and experience of the selected finalist.
• NOTE: This position REQUIRES that a RESUME and COVER LETTER be submitted in addition to the application. Please have these two files ready to upload when applying.
• Background Check: Continued employment is contingent upon the completion of a satisfactory background investigation.
• Live Scan Background Check: A Live Scan background check must be completed prior to the start of employment.

8:00 A.M. to 5:00 P.M. PT, Monday through Friday and/or variable based upon operational needs.

99-Policy Covered