Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Jobs - Manager of Incident Response and Threat Detection San Diego GCIH InfoSec Jobs

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

Manager of Incident Response and Threat Detection
Company UCSD
Location San Diego
Preferred GIAC Certifications GCIH
Travel 20%
Salary Commensurate with Experience
Contact Name Anonymous
Contact Email skramsey/at/
Expires 2018-02-09

Job Description

UC San Diego is ranked the 9th best public university in the nation by U.S. News and World Report and is the largest employer based in San Diego County. Reporting to the VC-CFO, Information Technology Services (ITS) delivers Enterprise information technology services to the University of California, San Diego (UCSD) under the leadership of the campus Chief Information Officer (CIO).

Information Technology Services (IT Services) uses world-class services and technologies to empower UC San Diego's mission to transform California and the world as a student-centered, research-focused, service-oriented public university. As a strategic member of the UC San Diego community, IT Services embraces innovation in their delivery of IT services, infrastructure, applications, and support. IT Services is customer-focused and committed to collaboration, continuous improvement, and accountability.

Tired of being on the defensive? Afraid that “whack-a-mole” isn’t the resume line you’d hoped for? The Security Office at UC San Diego is looking for someone to build and lead a proactive threat detection and incident response team. This high performance office is striving to be an industry-leading, strategically focused infosecurity team.

As Incident Response and Threat Detection Lead, you will report to the Chief Information Security Officer (CISO) and will be responsible for providing enterprise-wide incident handling and threat detection services required to fulfill the security and privacy goals of the University. This position also co-manages the central campus security operations center (SOC). Leading a small team of security analysts, leveraging our highly instrumented network (Suricata, FireEye, Fortigate, and soon Bro) you will identify intrusions of the campus computing environment, and additionally works with security engineers to develop proactive approaches to threat detection and prevention.


• Oversee all incident response, from detection to incident resolution.

• Manage our IDS deployment and strategy

• Co-manage the Security Operations Center

• Manage and mentor two security analysts

• Contribute to the direction and leadership of the security office

Our employees enjoy competitive compensation packages and educational opportunities in a diverse, stimulating workforce. This position is eligible for full: 1) Health/Dental/Vision Insurance 2) Vacation/Holidays (15 vacation days and 13 paid holidays a year) 3) Life Insurance 4) UC Retirement Plan.

Must be willing and able to travel.

Occasional evenings and weekends may be required.

Must be able to work 'on call' for incident response.

For more information about UCSD Benefits visit - and UCSD Work/Life visit

To calculate an approximate value of the UC Total Compensation package, please click here:


Multiple years’ experience in a full-time security position, preferably working in IR and thread detection.

Professional experience and familiarity with the toolset used by the UCSD security office (Qualys, Splunk, Suricata, Bro, Fortigate, FTK or EnCase).

Experience developing incident response and/or forensic procedures and processes.

At least a bachelor’s degree in a related field, or 10 years of relevant experience.


Digital forensics experience

Job offer is contingent on clear Background Check.

Ability to qualify for secret level clearance .

Apply Now