Senior Cloud Security Engineer - Remote

Job Details

Job : 84038

Location: Oakland

Full/Part Time: Full Time

Job Title: IT Security Analyst 5 TX

Job Code: 000663

Salary Grade: Grade 27

Travel Requirements: 5% Incidental / infrequent travel as needed only

Salary/Benefits: Payscale: $190,000 - $215,000. The University of California, Office of the President provides a comprehensive benefits package. The full range shows growth potential; offers are based on final candidate qualifications and experience.

Position is with the University of California, Office of the President (OP). The department is Technology Delivery Services (TDS) within Information Technology Services (ITS). TDS includes Information Security, Planning (architecture and PMO), Application Development, HR & Payroll Development, Infrastructure, and Client Services. The organization emphasizes an innovative, inclusive, and supportive work environment.

Having wide-ranging experience in IT security, applies professional concepts and Office of the President objectives to develop and lead implementation of security controls and functionality for cloud-based hosting environments and cloud-deployed systems, networks, and applications. Requires expertise in designing and applying secure-by-design principles to enterprise cloud hosting environments (including AWS and Azure), enterprise services deployed therein, and related emerging technologies such as artificial intelligence.

May resolve Office of the President, institution-wide and/or multi-institutional security issues, up to the most complex with little or no precedent. Directs the selection of methods, techniques and evaluation criteria to obtain results. Serves in a lead capacity as a subject matter expert at this level.

• 30% Cloud hosting security engineering - Implements security controls to prevent unauthorized access or changes to mission-critical information in cloud hosting environments; develops security plans to mitigate risk of theft, destruction, alteration or denial of access.
• 30% Enterprise systems security - plan, develop, and implement security controls for hosted enterprise systems (e.g., People Soft HCM, customized .NET applications) and related software/technologies with secure workload configuration and operation in virtualized environments.
• 25% Access Control - develop and implement access controls to ensure authorized access, including request approvals, tracking, least privilege, separation of duties, and re-certification processes.
• 10% Governance and collaboration - partner with IT and business units to align security strategies, lead incident response and forensics, support stakeholders in ensuring controls are implemented, and help establish security policy and standards.
• 5% Additional duties as required

Required Qualifications

• Min 8 years of experience in design, implementation, and management of cloud hosting security controls in support of large-scale business services, including operational use of cloud scripting/automation tools.
• Min 2 years of experience as a lead security engineer for one or more cloud-hosted enterprise business systems (HR/Payroll, financials, ERP, retirement, etc.).

Preferred Qualifications

• Min 2 years of experience in security controls design and implementation for enterprise People Soft HCM in an internally managed cloud hosting environment.

• Expert interpersonal communication skills with technical and non-technical personnel at various levels.
• Expert experience using IT security systems and tools.
• Demonstrated skills applying security controls to software and hardware.
• Administering complex security controls and configurations to hardware, software and networks.
• Expert knowledge of data encryption technologies and applying appropriate encryption.
• Knowledge of secure hardware, software and network design techniques.
• Ability to analyze and prevent high-complexity security incidents.
• In-depth knowledge of computer hardware, software and network security issues and approaches.
• Expert knowledge of IT security and development of security policies and procedures.
• Experience interfacing with upper management regularly.
• Recognized as a subject matter expert.
• Experience with API security for enterprise systems and tools (e.g., Mulesoft).
• Direct experience securing large-scale AWS-hosted workloads.

Required Qualifications

• Bachelor's degree in related area and/or equivalent experience/training

Preferred Qualifications

• Master's degree in Computer Science, Cybersecurity, or related field

Preferred Qualifications

• CISSP, CISM, SABSA, AWS Security Specialty, or equivalent

• This position is eligible for a remote work arrangement within the state of California. The selected candidate must reside within the state of California or be willing to relocate.

Please be prepared to attach a cover letter and resume with your application.

The University of California is an Equal Opportunity Employer.…