Cyber Engineer

ABOUT THE DEPARTMENT

The University of Southern California (USC) is advancing its cybersecurity posture with a renewed focus on resilience, cyber risk management, and threat-informed defense. As a world-class research institution, USC is building a culture of security that supports its academic and research mission in a rapidly evolving threat landscape.

This role sits within a newly restructured cybersecurity organization that's leading this transformation. You'll join a team focused on scalable, proactive defense strategies, incident preparedness, and operational excellence-working alongside experts who are deeply committed to service, innovation, and impact.

If you're driven by purpose, thrive in complexity, and want to help shape the future of cybersecurity at a leading university, we invite you to bring your leadership to the table.

POSITION SUMMARY

As the Cyber Engineer you will be an integral member of the cybersecurity department while also collaborating with stakeholders across the university ecosystem, and reporting to the Manager Cyber Engineering. This is a full-time exempt position, eligible for all of USC's fantastic Benefits + Perks. This opportunity is remote.

The Cyber Engineer implements and manages cybersecurity measures and configurations to protect email and endpoints from cyber threats. Builds, deploys, and maintains the configuration for new security tools and technologies across the university. Ensures university systems, endpoint devices, and broader systems are properly discovered, securely configured, and safeguarded against threat actors. Addresses escalated issues as necessary. Reviews cybersecurity processes and procedures to ensure they follow established standards. Supports the safeguarding of the university's operational technology (OT) and internet of things (IoT) systems and devices. Develops and maintains customer experience tutorials and training resources. Collaborates with cross-functional cyber teams to understand needs and develop innovative solutions.

The Cyber Engineer will:

• Oversees the management, security, and operation of risk management tools, attack surface management tools, endpoint protection platforms, email security platforms, identity governance and administration (IGA), privilege access management (PAM), as well as other core cybersecurity technologies. Implements and manages cybersecurity measures and configurations to protect email, endpoint devices, information systems, and broader OT/IoT systems and devices from malware, unauthorized access, and other cyber threats. Implements resilient and robust enterprise security tools. Builds, deploys, and maintains the configuration for new security tools and technologies across the university.

• Configures and manages multiple cybersecurity engineering tools (e.g., endpoint protection, email security, key management, certificate management, data loss prevention) tailored to the unique challenges of OT and IoT environments, and to allow for additional coverage and support. Ensures security tooling coverage and maintenance across all university digital assets. Implements and enforces zero trust security models for enterprise and industrial networks. Implements secure network segmentation strategies for internal and third party integrations.

• Implements secure cloud and hybrid security infrastructure, ensuring data protection, identity management, and compliance. Implements threat detection and monitoring solutions tailored for industrial control systems (ICS) and IT networks. Responsible for maintenance and hardening of enterprise security solutions.

• Implements problem-solving best practices, works on continuous improvements, and addresses escalated issues as necessary. Collaborates with cyber architects in the design and implementation of approved designs and security baselines.

• Collaborates with cross-functional cyber teams (e.g., IAM, SOC, cyber architecture) to understand their needs and develop innovative solutions.

• Coordinates with information security officers and cyber governance to exchange insights, receive requests, and review cybersecurity requirements from the university and department, school, or unit (DSU) stakeholders. Supports the tracking and reporting of agreed upon cybersecurity metrics in the goal of measuring engineering effectiveness of the function.

• Establishes and documents strategic development and deployment plans for innovative cybersecurity technology solutions. Develops and maintains customer experience tutorials and training resources.

• Reviews cybersecurity processes and procedures to ensure they follow established standards, guidelines, and protocols. Assists in automation of security processes using scripting, SOAR platforms, and AI-driven security tools. Collaborates with cyber governance function in the documentation of security engineering policies, procedures, and standards. Carries out and supports tests, security audits, and risk assessments. Maintains currency with industry trends and standards, as well as emerging technologies, security trends, and compliance requirements.

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

MINIMUM QUALIFICATIONS

Great candidates for the position of Cyber Engineer will meet the following qualifications:

• 4 years of experience in security engineering and/or related fields.

• A bachelor's degree in information science or computer science or computer engineering or in related field(s); or combined experience/education as substitute for minimum education.

• Ability to lead effective and efficient teams, fostering an environment of trust, collaboration, transparency, and accountability.

• Excellent technical documentation skills, with the ability to collaborate effectively and communicate ideas and solutions in user-friendly terms.

• Proven ability to interpret, analyze, and apply relevant policies, procedures, regulations, and requirements effectively.

• Extensive experience with desktop engineering concepts (e.g., registry editing, command-line utilities) and other advanced techniques.

• Proficiency with back-end engineering tools used for deploying to lab and desktop workstations.

• Knowledge and hands-on experience with multiple security tools (e.g., endpoint security, email security, IGA, PAM).

• Experience with scripting languages (e.g., PowerShell, Windows Batch, VBScript, Unix shell scripting).

• Extensive experience monitoring device image quality, deployment, adoption, and performance using automated tools and reports.

• Demonstrated design, implementation, and troubleshooting experience with various workstation provisioning tools.

• Demonstrated understanding of email security best practices (e.g., anti-phishing measures, email encryption, spam filtering techniques).

• Experience with Microsoft Active Directory, virtual desktop infrastructures (VDI), application streaming, and Cloud VDI and infrastructure solutions.

• Demonstrated understanding of cloud computing models (e.g., IaaS, PaaS, SaaS) and experience with cloud service providers (e.g., AWS, Azure, GCP).

• Familiarity working in a high-federated environment, university, or large enterprise.

• Familiarity with security controls frameworks (e.g., CIS Top 20, NIST CSF, 800-53, ISO 27001) and experience in defining and deploying security hardening guidelines.

• Basic understanding of the importance of security measures in protecting OT and IoT systems.

• Basic knowledge in OT and IoT devices, protocols (e.g., MQTT, CoAP), functions, and configurations.

• Skilled in testing and validating OT and IoT systems to ensure functionality, reliability, and security.

• One or more relevant certification (e.g., GIAC, CISSP, Azure Security, CCSP, CompTIA SecurityX [CASP+])

PREFERRED QUALIFICATIONS

Exceptional candidates for the position of Cyber Engineer will also bring the following qualifications or more:

• 6 years of related experience.

• Experience in a university environment.

• Hands-on experience in endpoint/email security and cybersecurity configuration

• Ability to develop and maintain technical documentation

• Basic familiarity with OT/IoT systems and cloud computing models (IaaS, PaaS, SaaS)

In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC's Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS

The annual base salary range for this position is $131,729.50 to $146,374.53. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents' health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC's comprehensive benefits here.

Join the USC cybersecurity team within an environment of innovation and excellence.

Minimum Education: Bachelor's degree In Computer Science Or Cyber Security Or in related field(s)
Minimum Certifications: One or more relevant certification (e.g., GIAC, CISSP, Azure Security, CCSP, CompTIA SecurityX [CASP+])
Addtional Education Requirements Combined experience/education as substitute for minimum education
Minimum Experience: 4 years in security engineering and/or related fields.
Minimum Skills: Ability to lead effective and efficient teams, fostering an environment of trust, collaboration, transparency, and accountability. Excellent technical documentation skills, with the ability to collaborate effectively and communicate ideas and solutions in user-friendly terms. Proven ability to interpret, analyze, and apply relevant policies, procedures, regulations, and requirements effectively. Extensive experience with desktop engineering concepts (e.g., registry editing, command-line utilities) and other advanced techniques. Proficiency with back-end engineering tools used for deploying to lab and desktop workstations. Knowledge and hands-on experience with multiple security tools (e.g., endpoint security, email security, IGA, PAM). Experience with scripting languages (e.g., PowerShell, Windows Batch, VBScript, Unix shell scripting). Extensive experience monitoring device image quality, deployment, adoption, and performance using automated tools and reports. Demonstrated design, implementation, and troubleshooting experience with various workstation provisioning tools. Demonstrated understanding of email security best practices (e.g., anti-phishing measures, email encryption, spam filtering techniques). Experience with Microsoft Active Directory, virtual desktop infrastructures (VDI), application streaming, and Cloud VDI and infrastructure solutions. Demonstrated understanding of cloud computing models (e.g., IaaS, PaaS, SaaS) and experience with cloud service providers (e.g., AWS, Azure, GCP). Familiarity working in a high-federated environment, university, or large enterprise. Familiarity with security controls frameworks (e.g., CIS Top 20, NIST CSF, 800-53, ISO 27001) and experience in defining and deploying security hardening guidelines. Basic understanding of the importance of security measures in protecting OT and IoT systems. Basic knowledge in OT and IoT devices, protocols (e.g., MQTT, CoAP), functions, and configurations. Skilled in testing and validating OT and IoT systems to ensure functionality, reliability, and security.
Preferred Experience: 6 years
Preferred Skills: Experience in a university environment.