Information Security Governance Analyst - Los Angeles, CA, United States - University of California, Los Angeles
Description
Information Security Governance AnalystUniversity of California Los Angeles
Situated on 419 acres, five miles from the Pacific Ocean, the University of California, Los Angeles (UCLA) is enriched by the cultural diversity of the dynamic greater Los Angeles area, as well as the geographic advantages of Southern California.
One of the world's preeminent public research universities, UCLA is an international leader in breadth and quality of academic, research, health care, wellness, cultural, continuing education and athletic programs, with more than 5,200 faculty members who teach approximately 47,500 students in the UCLA College and 12 professional schools.
UCLA is consistently ranked among the top institutions nationally for research funding, having generated $1.7 billion in research grants and contracts in the last fiscal year alone.
The Information Technology Services (ITS) department at UCLA is a vital part of the university community, providing essential technology services and support to ensure the campus can effectively pursue its mission.
It is UCLA's spirited tradition of thought leadership and commitment to excellence that enables an ambitious and resourceful approach to transforming our networked, ever-changing campus environment.
The UCLA Information Security Office enables UCLA's goals by providing leadership assuring the confidentiality, integrity, and availability of its information resources.
The Information Security Office enables efficient incident response planning and notification procedures.In addition, the office aims to implement risk assessment strategies to identify vulnerabilities and threats to departmental information resources and enterprise systems.
This includes executing a comprehensive UCLA IT security plan, which involves proposing, delivering, and enforcing administrative, technical, and physical security measures to tackle identified risks based on their sensitivity or criticality.
The Information Security Governance, Risk Management, and Compliance team develops institutional security policies, standards, procedures, compliance guidelines, strategies, requirements, and documentation for all administrative and academic units, departments, and teams.
The team also develops, deploys, and manages security education and training.The Information Security Governance Analyst will be responsible for ensuring the security and integrity of the university's information technology systems and data via effective governance.
The Information Security Governance Analyst will support initiatives to develop, implement, and maintain information security governance frameworks, policies, and procedures to protect the university's information assets and ensure compliance with industry standards and regulations.
The Security Analyst will work closely with various stakeholders to assess security risks, develop security strategies, monitor security incidents and vulnerabilities, and oversee governance-related activities.
This role will help proselytize governance, risk and compliance to support and drive a culture of proactively managing cyber risk for the UCLA Campus.
The Information Security Governance Analyst will positively impact UCLA's operations and culture by protecting University stakeholders' to effectively implement and maintain UCLA's GRC framework, ensuring compliance with relevant regulations and standards, and providing insightful analysis of risk and control data.
This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students.
3 years experience working in one or more of the following fields:computer science, cybersecurity, computer information systems and performing technical assessments in direct support of compliance. (Proven experience working in IT security governance or a related role, preferably in an educational or large organizational setting. (Experience working in a project-based environment using leading project management practices. (Experience participating in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Experience in complex higher education environments, serving academic and administrative functions of a large public university.
(5+ years experience working in one or more of the following fields:
computer science, cybersecurity, computer information systems, etc. (Strong knowledge of security governance frameworks and standards such as ISO 27001, NIST, or COBIT. Strong understanding of security governance principles, including policy development, security controls, risk management, and incident response. (Proficiency in conducting security risk assessments and developing risk mitigation strategies. (Strong written and verbal communication skills and is able to communicate technical information and ideas to a diverse community of colleagues and stakeholders. (Proven organizational skills and is able to balance competing priorities and deliver concurrent projects to various stakeholder types. (Knowledge of IT security and demonstrated skill in the design and development of diverse and complex security policies and procedures. (Bachelor's Degree Information technology, cybersecurity, computer science, engineering, public administration, business administration, communications, or related field, or equivalent experience/training. (Bachelor's Degree Information technology, cybersecurity, computer science, engineering, public administration, business administration, communications, or related field. (Certified Information Security Manager (CISM). (Certified Information System Security Professional (CISSP). (PT, Monday through Friday and/or variable based upon operational needs.
Union/Policy Covered
99-Policy Covered