USC is a leading private research university located in Los Angeles – a global center for arts, technology and international business. As the city’s largest private employer, responsible for more than $5 billion annually in economic activity in the region, we offer the opportunity to work in a dynamic and diverse environment, in careers that span a broad spectrum of talents and skills across a variety of academic schools and units. As a USC employee, you will enjoy excellent benefits and perks, and you will be a member of the Trojan Family - the faculty, staff, students and alumni who make USC a great place to work. Think you’ve got what it takes to join us? We invite you to search our open positions and apply!
We are currently seeking a Security Operations Center Manager to join our Information Security Operations team within the Information Technology Services (ITS) department here at the University of Southern California. The Manager of USC’s Security Operations Center (SOC) prioritizes the development and translation of cybersecurity strategies. They will lead internal investigations of security violations, respond to all information security relevant events and ensure that Service Level Agreements and Standard Operating Procedures are defined, tracked and met. The Security Operations Center Manager will monitor USC’s assets, network and data, for attempted efforts to compromise security protocols and ensure prevention of events that negatively impact confidentiality, availability and integrity.
The ideal candidate must possess five years of experience in Information Technology (or Information Security) and experience in Crisis Management. He/she should also possess experience in Information Security management and a strong understanding of vulnerability management and security testing practices and methodologies.
Information Technology Services (ITS) is committed to providing information technology (IT) services and support to the university. ITS provides essential, university-wide services such as:
Enterprise information systems
University wired and wireless networks
Must have a Bachelor’s degree or combined education/experience as substitute for minimum education
Minimum of 5 years of experience in Information Technology (or Information Security)
Experience in crisis management
Demonstrated understanding of customer service related performance metrics
Excellent people-management skills
Excellent technical and trouble-shooting ability
Ability to work in a high stress environment
Ability to interact with staff, peers, and business units on a technical and professional level
Ability to quickly adapt as the external environment and organization evolves. Ability to prioritize projects and deliverables
Typically possesses a Security management certification (ISSMP, CRISC, CISM, Auditing)
Typically possesses one or more of the following: GIAC, Continuous Monitoring Course (GMON), Security Essentials (GSEC),Certified Intrusion Analyst (GCIA), Certified Perimeter Protection Analyst (GPPA), Information Security Fundamentals (GISF), Certified Enterprise Defender (GCED), Global Industrial Cyber Security Professional (GICSP), Certified Incident Handler (GCIH)
Holds overall responsibility for the day-to-day running of USC’s Security Operations Center. Central to this responsibility is translating leadership’s cybersecurity strategies into actionable tactical activities within the SOC, including working closely with USC’s managed security monitoring service provider
Leads security incident response efforts by maintaining an in-depth knowledge of common attack vectors, common security exploits, and countermeasures. Responds to all information security relevant events (hacker intrusions, virus infections, denial of service attacks, etc.)
Ensures that Service Level Agreements are defined, tracked and met
Develops and supports strategic plans and projects to meet Security and SOC goals and objective
Authors and coordinates security status reports to provide system status, report potential and actual security violations and provide procedural recommendations
Responsible for driving execution of daily, weekly, and monthly metrics for statistical threats and KPIs
Ensure that Standard Operating Procedures are being created and followed by the team
Work with teams in the development of a comprehensive set of operational security policies and standards designed to permit the organization to achieve its business objectives while effectively managing our security and compliance requirements of meeting PCI and SOX goals
Monitoring USC’s assets, network, and data ensuring the prevention of events that negatively impact confidentiality, availability and integrity
Monitors and analyses attempted efforts to compromise security protocols. Identifies and investigates activities and conducts and provides analyses regarding results. Escalates issues to higher level associates
Review logs and messages to identify and report possible violations of security
Coordinates, documents, and reports on internal investigations of security violations
Maintains awareness and knowledge of current changes current changes within legal, regulatory, and technology environments which may affect operations. Ensures senior management and staff are informed of any changes and updates in a timely manner. Establishes and maintains appropriate network of professional contacts. Maintains membership in appropriate professional organizations and publications. Attends meetings, seminars and conferences and maintains continuity of any required or desirable certifications, if applicable
Performs other duties as assigned or requested. The university reserves the right to add or change duties at any time.
Minimum Education: Bachelor's degree; Combined experience/education as substitute for minimum education Minimum Experience: 5 years Minimum Field of Expertise: Excellent people-management skill. Good technical and trouble-shooting ability. Ability to work in a high stress environment. Ability to interact with staff, peers, and business units on a technical and professional level. A thorough understanding of customer service related performance metrics. Experience in crisis management. CISSP certification, ITIL Certified, Security management certification (ISSMP; CRISC; CISM; Auditing).