|Preferred GIAC Certifications||GCIH|
|Salary||Commensurate with Experience|
UC San Diego is ranked the 9th best public university in the nation by U.S. News and World Report and is the largest employer based in San Diego County. Reporting to the VC-CFO, Information Technology Services (ITS) delivers Enterprise information technology services to the University of California, San Diego (UCSD) under the leadership of the campus Chief Information Officer (CIO).
Information Technology Services (IT Services) uses world-class services and technologies to empower UC San Diego's mission to transform California and the world as a student-centered, research-focused, service-oriented public university. As a strategic member of the UC San Diego community, IT Services embraces innovation in their delivery of IT services, infrastructure, applications, and support. IT Services is customer-focused and committed to collaboration, continuous improvement, and accountability.
Tired of being on the defensive? Afraid that “whack-a-mole” isn’t the resume line you’d hoped for? The Security Office at UC San Diego is looking for someone to build and lead a proactive threat detection and incident response team. This high performance office is striving to be an industry-leading, strategically focused infosecurity team.
As Incident Response and Threat Detection Lead, you will report to the Chief Information Security Officer (CISO) and will be responsible for providing enterprise-wide incident handling and threat detection services required to fulfill the security and privacy goals of the University. This position also co-manages the central campus security operations center (SOC). Leading a small team of security analysts, leveraging our highly instrumented network (Suricata, FireEye, Fortigate, and soon Bro) you will identify intrusions of the campus computing environment, and additionally works with security engineers to develop proactive approaches to threat detection and prevention.
• Oversee all incident response, from detection to incident resolution.
• Manage our IDS deployment and strategy
• Co-manage the Security Operations Center
• Manage and mentor two security analysts
• Contribute to the direction and leadership of the security office
Our employees enjoy competitive compensation packages and educational opportunities in a diverse, stimulating workforce. This position is eligible for full: 1) Health/Dental/Vision Insurance 2) Vacation/Holidays (15 vacation days and 13 paid holidays a year) 3) Life Insurance 4) UC Retirement Plan.
Must be willing and able to travel.
Occasional evenings and weekends may be required.
Must be able to work 'on call' for incident response.
For more information about UCSD Benefits visit - http://blink.ucsd.edu/HR/benefits/index.html and UCSD Work/Life visit https://blink.ucsd.edu/HR/benefits/work-life/index.html
To calculate an approximate value of the UC Total Compensation package, please click here: http://ucnet.universityofcalifornia.edu/compensation-and-benefits/total-compensation-calculator.php
Multiple years’ experience in a full-time security position, preferably working in IR and thread detection.
Professional experience and familiarity with the toolset used by the UCSD security office (Qualys, Splunk, Suricata, Bro, Fortigate, FTK or EnCase).
Experience developing incident response and/or forensic procedures and processes.
At least a bachelor’s degree in a related field, or 10 years of relevant experience.
Digital forensics experience
Job offer is contingent on clear Background Check.
Ability to qualify for secret level clearance .