Cybersecurity Analyst (3 year contract)


This is a 3 year contract position eligible for full benefits.

Reporting to the Manager of Cybersecurity Operations and indirectly to the Senior Manager of Cybersecurity Operations, the Cybersecurity Analyst performs first response, analysis and remediation for all cybersecurity related issues, incidents and alerts as well as proactive cyber-threat management, formal incident response and forensics investigation activities. In this role, you will conduct enterprise vulnerability and cyber-risk scanning, remediation tracking and reporting and will monitor and manage related cybersecurity tools, services, controls and safeguards. By working with the SOC, SIEMs, various logging and intel sources to assess enterprise security posture, cyber-risk and threat behavior, you will provide hands-on troubleshooting of cybersecurity issues, configurations and incidents across a wide range of devices, computing and infrastructure environments.

You will be a champion for strong and effective IT hygiene and the promotion of a cybersecurity ownership culture across the organization by ensuring compliance to established UC and UCLA Health IT Security standards and industry best practices. In providing your cybersecurity subject matter expertise to projects, operations and constituent groups, you will create and maintain cybersecurity metrics, efficacy, analysis and threat intelligence reports and presentations to various stakeholders and you will research new threats, vulnerabilities, exploits, TTPs and develop new methods for testing threats against and validating the effectiveness of UCLA Health's IT Security Program.

*Position may convert to career
  • 2+ years cybersecurity experience proactively assessing risk, vulnerabilities, threats and safeguarding and defending enterprise IT environments (healthcare experience a plus)
  • Strong critical thinking and analysis skills with the ability to create correlations and visualizations in and across tools and data sets to identify patterns, anomalous and potentially malicious behavior
  • Strong working knowledge of the cyber-kill chain, cyber-threat vectors and typical malware and threat actor behavior (TTPs), including the ability to troubleshoot cybersecurity issues, configurations and incidents across a wide range of devices, computing and infrastructure environments
  • Experience with researching and incorporating cyber-threat intelligence into a proactive threat management workflow (Blue-team)
  • 2+ years of enterprise IT operational experience, including enterprise-level IT and business projects
  • Strong understanding of operating systems, infrastructures, protocols and applications development (DevOps mindset a plus)
  • Experience with digital forensics with a focus on identifying anomalous and potentially malicious activity and an understanding of the legal aspects of data acquisitions, electronic discovery and forensic investigation
  • Strong understanding of cybersecurity controls and frameworks and their applied use in enterprise IT environments
  • Knowledge of existing and emerging regulatory compliance requirements (ex: HIPAA, FERPA, HITECH, PCI)
  • Excellent oral, written, reporting and presentation skills

UCLA is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.