SENIOR CYBER SECURITY ENGINEER/ARCHITECT - REMOTE IN CALIFORNIA

For UCOP internal applicants, please login to the internal candidate gateway at: Jobs at UCOP

UC OFFICE OF THE PRESIDENT

At the University of California (UC), your contributions make a difference. A world leader producing Nobel and Pulitzer Prize recipients with over 150 years of groundbreaking research transforming the world. Choose a career where you can leverage your knowledge, skills and aspirations to inspire and support some of the greatest minds in the world, and those who will follow in their footsteps. Working at the University of California is being part of a unique institution, and a vibrant and diverse community. At the University of California, Office of the President, we propel our mission through impactful work locally, in government centers and systemwide. We are passionate people, serving the greater good.

The University of California, one of the largest and most acclaimed institutions of higher learning in the world, is dedicated to excellence in teaching, research and public service. The University of California Office of the President is the headquarters to the 10 campuses, six academic medical centers and three national laboratories and enrolls premier students from California, the nation and the world. Learn more about the UC Office of the President

Department Overview
Digital Innovation & Technology (DigIT) delivers data and technology services for the University of California Office of the President to support the UC mission. Our teams include Information Security, Planning (architecture and PMO), Application Development, HR & Payroll Development, Infrastructure, and Client Services teams. We maintain an innovative, inclusive, and supportive work environment.[AS1]

Position Summary

The Cybersecurity Engineer/Architect serves as a senior technical leader and subject matter expert working closely with IT teams, business stakeholders, and leadership to assess security risks, develop security architectures aligned with business objectives, and establish security standards and frameworks across the enterprise. This role evaluates existing security controls, identifies gaps and vulnerabilities, and designs solutions that address current and future security challenges in enterprise applications, networks and infrastructure.

This hands-on role requires a deep understanding of security principles, enterprise architecture, and emerging threats to develop and implement comprehensive solutions that protect UC data, systems, and networks from cyber threats while enabling business operations. Applies secure-by-design principles to enterprise platforms and environments (including AWS, PeopleSoft, pension systems, and financial systems), integration technologies such as APIs and middleware, and emerging technologies including artificial intelligence. Directs the selection of methods, techniques and evaluation criteria to obtain results.

Draws on strong communication, collaboration and analytical skills to resolve Office of the President, institution-wide and / or multi-institutional security issues, up to and including the most complex, with little or no precedent where analysis of situations and data requires an in-depth evaluation of various factors. Experience evaluating and securing artificial intelligence and robotic process automation use cases and technologies.

Key Responsibilities

35% Security architecture and engineering - Implements Office of the President, institution-wide and / or multi-institutional security controls, up to and including the most complex, that are broad in scope to prevent unauthorized access or changes to mission-critical information and to prevent jeopardizing mission-critical hardware, software and network infrastructure. Designs and implements secure architectures for enterprise applications and AI-driven systems. Develops and maintains security standards, patterns, and reference architectures. Collaborates with development teams to embed security practices into the software development lifecycle (SDLC), including DevSecOps. Leads threat modeling, risk assessments, and security reviews for new and existing systems.

30% AI and advanced technologies - Conducts security risk assessments and produce written reports and secure design and configuration recommendations of AI in current products and products under consideration. Evaluates and secures AI/ML models and platforms, ensuring ethical and secure use of data. Collaborates with data science and engineering teams to embed security into AI workflows. Makes recommendations for AI risk reduction factoring in UCOP system architecture, data sensitivity and toolsets. Designs and implements AI security strategies to protect our systems from potential threats.

20% Enterprise systems, API, and integration security - Architect and secure integrations between PeopleSoft HCM, pension systems, financial platforms, and third-party services. Ensures compliance with regulatory requirements (e.g., HIPAA, PCI-DSS, SOC 2) across enterprise systems. Design secure API gateways and enforce authentication, authorization, and data protection policies. Monitors and responds to security events related to system integrations and data flows.

10% Governance and collaboration - Partners with IT, DevOps, and business units to align security strategies with organizational goals. Leads incident response and forensic investigations related to enterprise systems. Partners with requesting business unit, legal and privacy stakeholders. Supports stakeholders in ensuring that recommended controls are implemented.

5% Additional duties as required.

Experience
Required Qualifications

• Min 8 years of demonstrated information security architecture and engineering experience in large, complex organizations.

• Min 2 years of proven experience securing enterprise platforms including human capital management systems, pension administration systems, and financial systems.

Preferred Qualifications

• Min 2 years of experience securing large-scale PeopleSoft HCM systems, .NET applications, and / or internally developed software solutions.

Skills and Abilities
Required Qualifications

• Familiarity with cloud platforms (AWS, Azure, GCP) and hybrid environments.

• Expert interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization.

• Expert experience using IT security systems and tools.

• Demonstrated skills applying security controls to computer software and hardware.

• Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks.

• Demonstrated knowledge of secure hardware, software and network design techniques.

• Demonstrated skill at analyzing and preventing security incidents of high complexity.

• In-depth knowledge of computer hardware, software and network security issues and approaches.

• Expert knowledge of IT security and demonstrated skill in the design and development of diverse and complex security policies and procedures.

Preferred Qualifications

• Strong knowledge of AI/ML security principles and data governance.

• Expertise in API security, OAuth2, OpenID Connect, and integration platforms.

• Proficiency in scripting and automation (Python, PowerShell, JSON, etc.).

• Expert knowledge of data encryption technologies and demonstrated experience selecting and applying appropriate data encryption technologies.

• Advanced experience in incident response and digital forensics including reporting.

• Thorough knowledge of other areas of IT and In-depth knowledge and understanding of department and campus, medical center or Office of the President processes and procedures.

• Experience interfacing with upper management on a regular basis.

Education
Required Qualifications

• Bachelor's degree in related area and / or equivalent experience / training

Preferred Qualifications

• Master's degree in Computer Science, Cybersecurity, or related field

Licenses and Certifications
Preferred Qualifications

• CISSP, CISM, SABSA, AWS/Azure Security Specialty, or equivalent.

Travel Requirements
5% Incidental / infrequent travel as needed only

Job Title
IT Security Analyst 5 TX

Job Code
000663

Salary Grade
Grade 27

Payscale:
$190,000 - $215,000

The University of California, Office of the President, is required to provide a reasonable estimate of the compensation range for this role. This range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to experience, skills, knowledge, abilities, education, licensure and certifications, and other business and organizational needs. It is not typical for an individual to be offered a salary at or near the top of the range for a position. Salary offers are determined based on final candidate qualifications and experience. The full salary range shows the growth potential for this position and the pay scale is the budgeted salary or hourly range that the University reasonably expects to pay for this position.

Benefits: For information on the comprehensive benefits package offered by the University visit: Benefits of Belonging

ADDITIONAL INFORMATION

This position is eligible for a remote work arrangement within the state of California. The selected candidate must reside within the state of California or be willing to relocate.

HOW TO APPLY

Please be prepared to attach a cover letter and resume with your application.

APPLICATION REVIEW DATE

The first review date for this job is (3/13/2026). The position will be open until filled.

CONDITIONS OF EMPLOYMENT

Background Check Process: Successful completion of a background check is required for this critical position. Background check process at UCOP

Smoke Free Work Environment: The University of California, Office of the President, is smoke & tobacco-free as of January 1, 2014. UC Smoke & Tobacco Free Policy

As a condition of employment, you will be required to comply with the University of California Policy on Vaccination Programs, as may be amended or revised from time to time. Federal, state, or local public health directives may impose additional requirements.

As a condition of employment, the finalist will be required to disclose if they are subject to any final administrative or judicial decisions within the last seven years determining that they committed any misconduct, are currently being investigated for misconduct, left a position during an investigation for alleged misconduct, or have filed an appeal with a previous employer.

• "Misconduct" means any violation of the policies or laws governing conduct at the applicant's previous place of employment, including, but not limited to, violations of policies or laws prohibiting sexual harassment, sexual assault, or other forms of harassment, discrimination, dishonesty, or unethical conduct, as defined by the employer.
  • UC Sexual Violence and Sexual Harassment Policy
  • UC Anti-Discrimination Policy for Employees, Students and Third Parties
  • APM - 035: Affirmative Action and Nondiscrimination in Employment

EEO STATEMENT

The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.

The University of California, Office of the President, strives to make this job board accessible to any and all users. If you have comments regarding the accessibility of our website or need assistance completing the application process, please contact us at: Accessibility or email the Human Resource Department at: epost@ucop.edu.