IT Security Analyst 4 – 128862

DEPARTMENT OVERVIEW:

The Mission of the San Diego Supercomputer Center is to translate innovation into practice. SDSC adopts and partners on innovations in industry and academia in the areas of software, hardware, computational and data sciences, and related areas, and translates them into cyberinfrastructure that solves practical problems across any and all scientific domains and societal endeavors. Cyberinfrastructure refers to an accessible, integrated network of high-performance computing, data, and networking resources and expertise, focused on accelerating scientific inquiry and discovery. With more than 250 employees and $30-50M of revenue a year, SDSC is a global leader in the design, development, and operations of cyberinfrastructure.

SDSC supports hundreds of multidisciplinary programs spanning a wide variety of domains, from earth sciences and biology to astrophysics, bioinformatics, and health IT. SDSC presently operates multiple large HPC systems ranging from a 120k x86 CPU core general purpose system to a system explicitly designed for Artificial Intelligence and Machine Learning, and a nationally distributed system open for all of academia to integrate with. SDSC offers research data services across the entire vertical stack from universally scalable storage to consulting services on FAIR, Big Data, and AI. SDSC offers a rich set of cloud services both on-premise, in the commercial cloud, and as hybrid services across both.

SDSC has three geographic scopes, a national scope supporting cyberinfrastructure for the entire US research and education community, a California scope with a special focus on convergence research that addresses the three dominant threats to CA: Drought, Fire, Earthquakes, and a campus scope focusing on advancing the global impact of SDSC by advancing the research objectives of the UC San Diego faculty, researchers, and students.

SDSC impacts researchers at scales from 1,000’s to Millions. SDSC annually trains thousands of researchers in cyberinfrastructure tools and software, and supports thousands of individual researchers via Unix accounts on its large HPC systems. SDSC was a leader developing the Science Gateway concept, and continues to be a global leader in its evolution. SDSC operates multiple major such gateways with user communities ranging from the tens of thousands to the millions. SDSC’s educational programs includes online courses that have been attended by more than a million students.

SDSC is committed to democratizing access to cyberinfrastructure across all of its geographic scopes. SDSC strives towards a culture that supports our employees to be their best, achieve their goals, and enjoy their lives, both professionally and personally.

The SDSC Sherlock Division delivers high performance production cyberinfrastructure and policy, business, operational, and technology advice supporting information technology research and development, for federal and state agencies, University of California (UC) researchers, and industry partners. The Sherlock Division operates SDSC Sherlock Cloud, which provides a flexible and scalable Cybersecurity Maturity Model Certification (CMMC), Controlled Unclassified Information (CUI), Federal Information Security Management Act (FISMA) and Health Insurance Portability and Accountability Act (HIPAA) compliant private cloud platform for federal, state, UC and other organizations. This position contributes to the design, development and implementation of Sherlock Cloud architecture, strategies, standards, and security tools within the Sherlock commercial Cloud environments.

The Division primarily focuses on information technology services for academia and government that includes managed services for cloud computing, compliant hosting, cyber security, data management and integration, application development, HPC (high performance computing) and big data. The experts in Sherlock Division have developed and deployed specific services designed to provide a solid and secure foundation for a wide range of initiatives. The Division currently supports the Centers for Medicare and Medicaid Services (CMS), National Institutes of Health (NIH), and a number of UC entities, and complies with the specific requirements of each agency.

POSITION OVERVIEW:

The incumbent will apply advanced IT security concepts and campus, medical center or Office of the President objectives to resolve broad and / or highly complex issues where analysis of situations or data requires an in-depth evaluation of variable factors. They will select methods, techniques and evaluation criteria to obtain results and leverage expertise in security controls to address the new Department of Defense Cybersecurity Maturity Model Certification (CMMC) and Controlled Unclassified Information (CUI) Compliance standards.

The IT Security Analyst 4 is responsible for designing, deploying and managing the SDSC network security infrastructure, including network firewalls, VPN, SIEM log collection systems, web application firewalls (WAF), Intrusion Detection and Prevention Systems(IDPS) , application gateways/proxies and other network security devices as required. This responsibility applies to security tools within both the Microsoft Azure and Amazon AWS Cloud environments as well as On-Premise hosted security tools and services. They will apply expert level knowledge of Cloud security tools in order to effectively and proactively protect the compliance resources hosted in these environments.

This position applies advanced IT security concepts and Federal, California, DOD Cybersecurity Maturity Model Certification (CMMC), Controlled Unclassified Information (CUI),campus, medical center or Office of the President regulations and objectives to resolve broad and / or highly complex issues where analysis of situations or data requires an in-depth evaluation of variable factors. This requires interpretation of the CMMC and CUI requirements to design Cloud native and On Premise controls to meet these highly complex and rigorous requirements.

The Sherlock environment of SDSC supports Compliance requirements for CMMC, FISMA, HIPAA, and CUI. The Sherlock compliance area is a high value target for hackers, and is regularly audited. This position is responsible for protecting against these attacks, and supporting compliance audits, and therefore must have knowledge of the most complex security controls and tools.

For more information, please visit: https://www.sdsc.edu/

• Job offer is contingent upon satisfactory clearance based on Background Check results.

• Must be available to work evenings, weekends, and holidays.

• Must be available to travel as required.

• Must be willing and able to work on a rotating on-call basis.

Pay Transparency Act

Annual Full Pay Range: $101,200 – $192,200 (will be prorated if the appointment percentage is less than 100%)

Hourly Equivalent: $48.47 – $92.05

Factors in determining the appropriate compensation for a role include experience, skills, knowledge, abilities, education, licensure and certifications, and other business and organizational needs. The Hiring Pay Scale referenced in the job posting is the budgeted salary or hourly range that the University reasonably expects to pay for this position. The Annual Full Pay Range may be broader than what the University anticipates to pay for this position, based on internal equity, budget, and collective bargaining agreements (when applicable).

If employed by the University of California, you will be required to comply with our Policy on Vaccination Programs, which may be amended or revised from time to time. Federal, state, or local public health directives may impose additional requirements.

To foster the best possible working and learning environment, UC San Diego strives to cultivate a rich and diverse environment, inclusive and supportive of all students, faculty, staff and visitors. For more information, please visit UC San Diego Principles of Community .

The University of California is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, age, protected veteran status, gender identity or sexual orientation. For the complete University of California nondiscrimination and affirmative action policy see: http://www-hr.ucsd.edu/saa/nondiscr.html

UC San Diego is a smoke and tobacco free environment. Please visit smokefree.ucsd.edu for more information.