Cybersecurity Engineer (flex- hybrid)

• 
  JOB DUTIES
  

The Cybersecurity Engineer works directly with customers, business and technical teams and is responsible for effective enterprise cybersecurity safeguards / controls and for protecting and defending UCLA Health digital assets, infrastructure, data, applications, and services; on-prem and in the cloud. The Cybersecurity Engineer will represent design/build engineering, optimization, and cybersecurity subject matter expertise and support to projects, operations and constituent groups while championing strong IT hygiene and promoting a cybersecurity ownership culture across the organization. As a part of the Cybersecurity Operations team, the Cybersecurity Engineer will research new controls / safeguards, stay informed on emerging cybersecurity trends, cyber-threat actors and related TTPs, and help ensure the effectiveness of UCLA Health’s IT Security Program (applied defense-in-depth). The Cybersecurity Engineer’s day-to-day tasks will range from design/build engineering, evaluating new technologies, monitoring, managing, and optimizing all IT security related tools / safeguards, responding to alerts, tickets and support requests, enterprise projects, incident response and forensics investigation. Additionally, working with the SOC and SIEM, analyzing and correlating large and disparate data sets, presenting performance and efficacy data to various stakeholders and generally ensuring compliance to established UC and UCLA Health IT Security standards and industry best practices. This is a flex-hybrid role which will require you to be onsite at least 15% of the time or as required by operational need. Please note that there are no reimbursements for travel to “home office” location. Each employee must complete a FlexWork Agreement with their manager which will outline arrangement parameters and aids both parties in fully understanding expectations. Arrangements are regularly evaluated, and are subject to termination. Salary offers are determined based on various factors including, but not limited to, qualifications, experience, and equity. The full salary range for this position is $116,500 – $282,300 annually. The budgeted salary or hourly range that the University reasonably expects to pay for this position is approximately between the minimum and midpoint.

• 
  JOB QUALIFICATIONS
  

• 2+ years cybersecurity experience proactively assessing risk, vulnerabilities, threats and safeguarding and defending enterprise IT environments (healthcare experience a plus). • Strong critical thinking and analysis skills with the ability to create correlations and visualizations in and across tools and data sets to identify patterns, anomalous and potentially malicious behavior. • Strong ‘working’ knowledge of the cyber-kill chain, cyber-threat landscape, and cyber-threat actor behavior (TTPs).  Ability to troubleshoot issues, configurations, and incidents across a wide range of devices and computing environments.  • Experience with researching and incorporating cyber-threat intelligence and operational telemetry into effective safeguards, controls, and standard practices (purple-team mindset a definite plus).  • Demonstrable experienced in IT operational, support and development environments, including experience on enterprise-level IT and business projects.  • Strong understanding of devices, operating systems, infrastructures, protocols and applications development (Automation and DevOps mindset a definite plus). • Experience with digital forensics with a focus on identifying anomalous and potentially malicious activity. Understanding of the legal aspects of data acquisitions, electronic discovery and forensic investigation. • Strong understanding of cybersecurity controls and frameworks and their applied use enterprise IT environments.  Knowledge of existing and emerging regulatory compliance requirements (ex: HIPAA, FERPA, HITECH, PCI). • Ability to self-motivate, effectively prioritize tasks and solve complex, multi-dimensional problems.  Possesses an attention to detail with a strong sense of customer service, business value and user experience.   • Excellent oral, written, reporting and presentation skills. Ability to effectively present to all levels of users, peers, management, and executive leadership.