Job Information
University of North Carolina- Chapel Hill Sr. Cybersecurity Analyst for Research in NC-Chapel-Hill, United States
Employment Type: Permanent Staff (EHRA NF)
Vacancy ID: NF0008074
Position Summary/Description:
This position may be eligible for a hybrid work arrangement that may include a partially remote work location, consistent with System Office policy. UNC Chapel Hill employees are generally required to reside within a reasonable commuting distance of their assigned duty station.
The ITS – Information Security Office is broadly responsible for the security for the University of North Carolina at Chapel Hill ( UNC -CH) network and attached computing devices. The Information Security Office ( ISO ) provides guidance and resources to prevent and respond to computer security incidents, to comply with various Federal and State privacy and security laws and regulations and to comply with contracts that include information security requirements. The ISO unit also leads information security initiatives to protect the University’s information, including intellectual property, as well as clinical, research and personal information.
The Sr. Cybersecurity Analyst for Research position is part of the Risk Team in the Information Security Office.
Core duties include:
Assume responsibilities for setting strategy for the Security Office’s Security Research Compliance program and collaborating with key campus stakeholders to streamline the security and compliance obligations on research at UNC .
Map the pipeline of sponsored research from proposal to close-out.
Fill out and maintain copies of required research documentation such as Medicare & Medicaid Services ( CMS ) with organizational controls filled out.
Collaborate with campus IT service providers to help them understand the availability of resources available to them to assist with supporting their researchers.
Lead collaborative efforts with key university stakeholders to strategically define the research environments available to researchers.
Create and maintain an inventory of these research environments and the capabilities of each.
Act as a subject matter expert in cybersecurity best practices for research in a higher education setting.
Lead collaborative efforts with Council and Procurement to draft/maintain contractual language to adequately reduce risk and liability to the university.
Review research contract language to provide guidance on the ability to meet cybersecurity controls and adhere to frameworks such as NIST 800-53, NIST 800-171, etc.
Participate in the university IRB process.
This position calls for a high level of integrity, good judgement, knowledge concerning issues of privacy and confidentiality, excellent oral and written communication skills, ability to work as an independent, productive, responsible, self-motivated member of a team in high pressure situations, at times, while maintaining a calm, customer-friendly perspective.
Education and Experience:
Experience in conducting risk assessments.
Project management experience
AA/EEO Statement:
The University of North Carolina at Chapel Hill is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or status as a protected veteran.