Specialist- Info Security

Job Description

Responsible for supporting UC Health's Information Security functions in accordance with IS&T and UC Health standards through the monitoring and identification of and response to internal \\ external vulnerabilities and threats. Assists in the ongoing education, audit and compliance of UC Health's Information Security Program.


Information Security Systems Monitoring and Utilization - 30% Monitors Information Security systems and assigned work queues for potential cybersecurity incidents and reports \\ escalates identified events as needed. Utilizes Information Security systems in support of the Information Security Program including education, training and awareness, auditing, and assessment initiatives. Reports on program performance and updates current statistics for metrics reporting. Checks, verifies, and processes standard Information Security reports as required. Information Security Program and Systems Support - 30% Works with other IS&T functional areas in support of Information Security Program initiatives. Executes Information Security system design changes and tuning according to established procedures. Performs complete testing of Information security system changes and validates requirements are met. Documents implementation of Information Security systems and requests for modification/tuning. Provides maintenance support for assigned Information Security systems. Provides timely and accurate support to resolve Information Security system errors and reported problems. Utilizes and adheres to Information Security support standards. Assists in the evaluation of Information Security system hardware and software products. Stays current on IT security trends and news. Incident Response and Coordination - 20% Assists in or coordinates response activities to minor threats and minor cybersecurity incidents. Provides timely and accurate support to resolve threats and incidents. Completes incident documentation. Assesses and escalates significant cyber security incidents to Computer Security Incident Response Team (CSIRT). Acts as a resource / subject matter expert on viruses, phishing, network and other security threats. Works with CSIRT on incident response development and improvement. Project Support - 10% Implements task level detail for project plans, Provides accurate and timely individual status reports; adheres to PMO standards Documents and ensures timely resolution of project issues Coordinates effectively with team members and vendors Determines and manages workload priorities Assists with activities across IS&T Departmental Teams Raises issues to the appropriate level Resource to projects. Other duties as assigned - 10% Provides onsite audit support for Privacy and Security teams and other adhoc requests | Review the physical demands and assign an overall average percentage of time this position performs these activities. These physical demands will not be listed or rated on the annual performance appraisal.


  • Minimum Required: High School Diploma or GED
  • Preferred Degree: Bachelor's Degree - Information Systems, Computer Science or related field combination of education preferred
  • Preferred: CompTIA Security+, GIAC Security Essentials (GSEC), or CISSP (Certified Information Systems Security Professional)
  • Minimum Required: 1 - 2 Years equivalent experience