IT Security Analyst (7338U) 24683

  • University of California, Berkeley
  • Berkeley, CA, USA
Full Time Information Technology

Job Description

IT Security Analyst (7338U) 24683

About Berkeley


At the University of California, Berkeley, we are committed to creating a community that fosters equity of experience and opportunity, and ensures that students, faculty, and staff of all backgrounds feel safe, welcome and included. Our culture of openness, freedom and belonging make it a special place for students, faculty and staff.


The University of California, Berkeley, is one of the world's leading institutions of higher education, distinguished by its combination of internationally recognized academic and research excellence; the transformative opportunity it provides to a large and diverse student body; its public mission and commitment to equity and social justice; and its roots in the California experience, animated by such values as innovation, questioning the status quo, and respect for the environment and nature. Since its founding in 1868, Berkeley has fueled a perpetual renaissance, generating unparalleled intellectual, economic and social value in California, the United States and the world.


We are looking for equity-minded applicants who represent the full diversity of California and who demonstrate a sensitivity to and understanding of the diverse academic, socioeconomic, cultural, disability, gender identity, sexual orientation, and ethnic backgrounds present in our community. When you join the team at Berkeley, you can expect to be part of an inclusive, innovative and equity-focused community that approaches higher education as a matter of social justice that requires broad collaboration among faculty, staff, students and community partners. In deciding whether to apply for a position at Berkeley, you are strongly encouraged to consider whether your values align with our, our, and


Departmental Overview


Enterprise Applications in the Office of the CIO and Information Services and Technology leads the operations of campus software solutions that support the university's primary administrative, human resources, finance, and student systems. Enterprise Applications (EA) is part of Information Systems and Technology.

The objective of EA is to bring value to campus through a department-wide continuous cycle of improvement and feature enhancements in a suite of tightly integrated custom and purchased systems. To ensure the success of these mission-critical systems, EA is staffed with a blend of technical and functional experts who will test and implement new features, respond to campus needs, and keep all systems running optimally throughout the academic cycle and financial year. EA partners with areas across the university to ensure systems support efficient and effective operations, while introducing cutting edge functionality to best support students, faculty, staff, alumni, and community members.


The Office of the CIO and Information Services & Technology (OCIO/IST) believe in and foster a workplace environment where people can bring their diverse skills, perspectives and experiences toward achieving our goals through a process of critical inquiry, discovery, innovation, while simultaneously committing to making positive contributions towards the betterment of our world.


In addition, members of the OCIO/IST community have created and endorse the following values for our organization to augment and amplify the campus principles:


We champion diversity.

We act with integrity.

We deliver.

We innovate.


Diversity, Inclusion, and Belonging are more than just suggestions for us. They are the guiding principles underlying how we come together, develop leaders at all levels of the organization, and create an environment that unites us. We affirm the dignity of all individuals, call upon our leaders to address critical issues with integrity and intention, respect our differences as well as our commonalities, and strive to uphold a just community free from discrimination and hate.


Application Review Date


The First Review Date for this job is: 10/13/21




Primary responsibility involves monitoring, detecting, protecting and maintaining the security of data, systems and networks. Plans, configures, designs, develops, implements and maintains tools, systems and

procedures to ensure the integrity, reliability and security of data, systems and networks.


This IT Security Analyst 3 position is a new position that has been created to provide the team supporting Enterprise Applications with additional resources in response to a growing portfolio. The team currently supports multiple Oracle PeopleSoft enterprise systems, the CalCentral system, a host of integrations and applications interacting with these systems, as well as several Cloud initiatives. In addition, this team's responsibilities are expanding to include all systems under the Enterprise Applications organization. As a member of the security team this position will be a part of a highly innovative and collaborative group that is invested in keeping the networks, systems, and data secure. The team is also tasked with ensuring system accessibility and high availability to the systems for the UC Berkeley community. This position reports directly to the Enterprise Systems Architecture Manager.




  • Applies, configures and manages complex security systems. Administers complex security configurations to control access to hardware, software and networks. Applies advanced encryption methods.
  • Provisioning and de-provisioning security controls to Oracle PeopleSoft systems as well as other systems supported by the security team.
  • Manage and maintain API security.
  • Collaborate with team members to find opportunities for automation, creation of workflows utilizing rulesets based on established business processes and security controls.
  • Implements complex and / or moderate-scale security controls to prevent unauthorized access or changes to institutional systems, campus, or Office of the President information hardware, software and / or network infrastructure. Independently researches, analyzes and addresses attempted efforts to compromise security protocols.
  • Advises departments on security prevention and best practices
  • Use DataPower to obfuscate or redact data according to security guidelines.
  • Apply minimum security standards for electronic information for supported systems (MSSEI -
  • Collects, examines, analyzes and reports to management regarding the causes, effects and implications of security incidents.
  • Applies advanced IT security concepts, governmental regulations, departmental and campus or Office of the President policies and procedures to respond to and appropriately escalate complex IT security incidents.
  • Responsible for running system audits and analyzing results in order to make timely changes to system controls.


Required Qualifications


  • 1+ years experience with enterprise application security and access management control.
  • Interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization.
  • Welcomes differing skills, outlooks, and experiences of others working toward shared goals.
  • Ability to follow department processes and procedures.
  • Experience using IT security systems and tools.
  • Experience analyzing logs for security incidents.
  • Knowledge of other areas of IT, department processes and procedures.
  • Experience in incident response and digital forensics including data collection, examination and analysis.
  • Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks.
  • Able to work with stakeholders in order to gather requirements and make recommendations on appropriate software necessary to complete business functions. Knowledge of software and network security issues and approaches.
  • Proven track record of troubleshooting and problem-solving skills.
  • Bachelor's degree in related area and/or equivalent experience/training.


Preferred Qualifications


  • Demonstrated experience selecting and applying appropriate data encryption technologies
  • Basic skill at reading and interpreting security logs.
  • Knowledge of data encryption techniques
  • Experience with automation technologies such as RunDeck
  • Experienced in Ansible scripting
  • Experience with Cloud Security
  • Experience with Data Warehouse security
  • Experience with ServiceNow, Jira and Confluence
  • Demonstrated skills applying security controls to computer software and hardware.


Salary & Benefits


Salary commensurate with experience. For information on the comprehensive benefits package offered by the University visit:


How to Apply


Please submit your cover letter and resume as a single attachment when applying.


Other Information


Option to work 100% remote available


Conviction History Background


This is a designated position requiring fingerprinting and a background check due to the nature of the job responsibilities. Berkeley does hire people with conviction histories and reviews information received in the context of the job responsibilities. The University reserves the right to make employment contingent upon successful completion of the background check.


Equal Employment Opportunity


The University of California is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. For more information about your rights as an applicant see:

For the complete University of California nondiscrimination and affirmative action policy see:


To apply, visit


Copyright ©2021 Inc. All rights reserved.


Education Requirements

Bachelor's Degree