Open Staff Positions:
The Information Security Office is searching for an exceptional technical staff and IT operations manager for the Associate Chief Information Security Officer. This role will provide oversight and strategic direction to three key areas of the Information Security Office in support of the campus operations and missions: security operations, identity and access management, and security assessments.
The Information Security Office (ISO) coordinates the risk management process for UC Berkeley's information systems and directs campus-wide efforts to adequately secure Institutional data. We are a team of talented and high-performing Information Security professionals, dedicated to reducing institutional risk through our comprehensive Information Security and Identity services. ISO’s portfolio includes IT Policy, Outreach and Engagements, Identity and Access Management, Security Operations, and Security Assessments.
The Associate CISO is a key partner to the CISO and leader in the ISO with responsibility for the direct oversight of three strategic areas: Security Operations, Identity and Access Management, and Security Assessments. The Associate CISO will learn and understand the University’s highest information security risks and its mission of teaching, learning and research. In partnership with the CISO and ISO management, the Associate CISO will help set vision for the broad information security program that will have meaningful impact on supporting the mission of a world-class institution and its diverse stakeholders.
The Associate CISO will provide oversight of programs through the supervision of subordinate managers to ensure effective delivery of services, meaningful collaboration, project management, and communication. This position has the opportunity to implement and impact the department workforce strategy in recruitment, development, and engagement. The Associate CISO will lead the development of the ISO service management strategy to align to the needs of the campus community and ensure that the key initiatives of the ISO are also aligned to the campus IT strategic plan. The Associate CISO, as a key partner and advisor of the office, will also represent the CISO and ISO in campus-wide planning meetings and critical projects.
- The successful candidate will bring a mixture of management skills as well as in-depth knowledge of subject matter areas.
- The person should have significant experience managing technical staff and service delivery in an IT organization to successfully: lead technical teams in achieving shared goals, coach/mentor staff in their development, and build team cohesion through equity and inclusion.
- They should possess in-depth knowledge of IT security in at least two functional areas relevant to higher education, including: student data, health information, research, finance, identity and access management, privacy and security regulations, and management of IT resources.
- To effectively work in collaboration with project teams, stakeholders, management, and external contacts, the person will demonstrate excellent communication, change management, and interpersonal skills and political acumen.
- The successful candidate will also bring critical thinking and problem-solving skills to adapt and meet the needs of a diverse community.
Direct link for external candidates
Internal candidates go to jobs.berkeley.edu and search for job number 11296.
Confidential questions and nominations may be directed to James Kao, Executive Search Manager, at firstname.lastname@example.org
The ISO teams are a close-knit group of talented information security professionals performing critical identity and access management and information security functions for the Campus. The Development and Engineering and Security Operations teams perform critical functions to promote the security of the campus network, including intrusion monitoring/detection, firewall management, vulnerability scanning, incident/breach response, and network registration. The Policy and Security Assessments teams deliver information security assessments and manage compliance activities, to assist campus units in meeting a variety of internal and regulatory data security obligations.
This internship will be working directly with the Security Operations team. The Intern will contribute to the success of the campus Information Security program by supporting specific operational work, projects, and new initiatives within ISO. This work will vary with department needs.
Examples of potential responsibilities include:
Common problems solved by the employee:
Research and determine if aggressive network-based computer attacks are successful
Review and estimate the likelihood and real-world impact of computer vulnerabilities
Deploy software and hardware-based monitoring systems
Less frequent and more complex problems solved by the employee:
Work with outside consultants, lawyers, and law enforcement to collect and safeguard evidence that relates to UC Berkeley breaches and computer crimes
Architect and build out security information and event management systems
Consolidates information from various technical teams and presents a high-level overview of possible impacts security events may have on the business process
In addition, the Security Interns will be expected to complete an information security training course; either a general course or one focusing on a specific platform or specialty within information security.
The successful candidate will have a thorough knowledge of many of the following areas based on their role in their home department:
Experienced professional who knows how to apply theory and put it into practice with in-depth understanding of the infosec field; independently performs the full range of responsibilities within the function; possesses broad job knowledge; analyzes problems / issues of diverse
Develops and maintains the security of data and systems as the primary responsibility of their position.
Implements complex and / or moderate scale security controls to prevent unauthorized access or changes to department information, hardware, software and / or network infrastructure. Independently researches, analyzes and addresses attempted efforts to compromise security protocols. Advises their department on security prevention and best practices.
Applies, configures and manages complex security systems. Administers complex security configurations to control access to hardware, software and networks. Applies advanced encryption methods.
Basic skills at reading and interpreting system, web logs, and system health monitoring stats.
Work Hours and Conditions
Under a memorandum of understanding (MOU) between ISO and the home department, the Security Intern will maintain their current appointment, including job classification and salary. Additional conditions:
The internship will last between 4-6 months at 25-50% FTE (6 months at 50% is preferred but ISO is flexible based on operational needs of the home department)
Interns must obtain permission from their immediate supervisor and department manager
There must be a plan to cover workload in the home department during the internship
Work performed as part of the internship should be completed either onsite with ISO according to an established telecommuting agreement. Tasks specific to the internship should not be performed while working within the home department; however, the knowledge gained with the ISO teams enhances information security work within the home department.
Open Student Positions:
#3461618 Security Operations Assistant
To apply, go to https://career.berkeley.edu/handshake and send resume, cover letter, and schedule to email@example.com
Security Operations Assistant (Assistant III)
Department: Information Security and Policy
Hours: 10-15 hours/week, hours TBD
Summer commitment: Desired
Start date: ASAP
The Information Security Office (ISO) collaborates with partners across the Berkeley campus to monitor network activity for vulnerabilities and security incidents, assess data and systems to align in accordance with policies, provide a centralized authentication and authorization system, clarify campus obligations needed to protect data, and to educate the community in becoming a culture of security.
ISO is comprised of five teams: Policy Program Management, Service Management, Security Operations, Development and Engineering, and Security Assessments. This position is part of the Security Operations team, and reports to the Information Security Operations Manager.
The Information Security Operations team is a close-knit group of talented information security professionals performing critical information security functions for the institution, including monitoring/detection, vulnerability scanning, incident/breach response, and network registration. This position supports the activities of the Security Operations team by assisting our Operations Center analysts with management of security incidents and security-related help desk requests.
Responsibilities may include:
* Triaging incident reports, queries, and other requests to our Security email contact address (firstname.lastname@example.org)
* Answering Security phone tree calls and responding as appropriate
* Drafting and reviewing templates, best-practice articles, and other communications
* Route escalated alerts to tier 2 and 3 analyst support
* Assist in documenting commonly occurring issues and fixes
* Fielding customer information security question and requests via phone and email
* Documents incident status and solutions in incident database tools
* Strong interest in the field of Information Security
* Excellent customer service skills
* Effective written communication skills
* Ability to troubleshoot
* Dependable and attentive to detail
* Ability to work autonomously on projects
* Adept in using the Google Productivity Suite
Preferred Qualifications :
* Working knowledge of key concepts in Information Security
* Awareness of campus policies, practices, and guidelines for Information Security
* Experience working in a front-line customer service or help desk role
* Familiarity with IT Service management software (RequestTracker RT, Jira, ServiceNow)
* Exposure to Information Security tools including vulnerability scanning, Security information and Event Management (SIEM) (Splunk, ArcSight, LogRhythm) or Vulnerability scanners (Nessus, Saint, NMap)
* Maintain confidentiality and objectivity in all matters business practices and clientele
* Be responsible with staff privileges, including use of equipment and access to restricted spaces
* Work assigned hours
* Report/meet with the hiring manager to discuss the status of assigned work
* Professional workplace behavior
Applicants must be currently enrolled students at UC Berkeley.