Director of Cybersecurity Governance Risk and Compliance, Texas Institute for Electronics
PICKLE RESEARCH CAMPUS
The University of Texas at Austin
The University of Texas at Austin is a bold, ambitious leader, providing a first-class education and the tools of discovery to more than 51,000 students.Job Posting Title:
Director of Cybersecurity Governance Risk and Compliance, Texas Institute for Electronics----
Hiring Department:
Cockrell School of Engineering----
Position Open To:
All Applicants----
Weekly Scheduled Hours:
40----
FLSA Status:
Exempt----
Earliest Start Date:
Immediately----
Position Duration:
Expected to Continue----
Location:
PICKLE RESEARCH CAMPUS----
Job Details:
General Notes
About Us
The Texas Institute for Electronics (TIE) is a rapidly growing public-private partnership of preeminent semiconductor systems and defense electronics companies, national labs, and academic institutions. Our mission is to advance the state-of-the-art in critical semiconductor domains such as advanced packaging, and in the process to help restore U.S. leadership in semiconductor manufacturing. We are developing cutting-edge semiconductor manufacturing equipment and processes that will define future roadmaps of semiconductor logic, memory, heterogenous integration, chip cooling, etc. We are seeking a number of motivated individuals to join our team and help us achieve our mission.
TIE is one of the fastest growing research centers at the University of Texas at Austin and part of the Cockrell School of Engineering, a global leader in technology innovation and engineering education for over a century. With 11 undergraduate and 13 graduate programs, over 20 research centers and a faculty community that boasts one of the highest number of National Academy of Engineering members among U.S. universities, Texas Engineering has launched some of the nation’s most accomplished leaders and pioneered world-changing solutions in virtually every industry, from space exploration to energy to health care. Situated in the heart of Austin — named “America’s Coolest City” by Expedia and “The Best Place to Live in the U.S.” by U.S. News and World Report — the Cockrell School embodies the city’s innovative spirit.
UT Austin, recognized by Forbes as one of America’s Best Large Employers, provides outstanding employee benefits and total rewards packages that include:
Competitive health benefits (employee premiums covered at 100%, family premiums at 50%)
Voluntary Vision, Dental, Life, and Disability insurance options
Generous paid vacation, sick time, and holidays
Teachers Retirement System of Texas, a defined benefit retirement plan, with 8.25% employer matching funds
Additional Voluntary Retirement Programs: Tax Sheltered Annuity 403(b) and a Deferred Compensation program 457(b)
Flexible spending account options for medical and childcare expenses
Robust free training access through LinkedIn Learning plus professional conference opportunities
Tuition assistance
Expansive employee discount program including athletic tickets
Free access to UT Austin's libraries and museums with staff ID card
Free rides on all UT Shuttle and Austin CapMetro buses with staff ID card
For more details, please see: Benefits | Human Resources and UT Austin Employee Experience | Human Resources
Purpose
The Director of Cybersecurity Governance Risk and Compliance will ensure regulatory compliance for the Texas Institute for Electronics (TIE), who is engaging in projects with contractual obligations for information assurance / NIST 800-171 infrastructure. The position will work closely with a variety of units across campus including Export Control, Information Security Office (UTISO), ITS Campus Solutions, Defense Research Advancement (DRA), and TIE to implement processes for ensuring restricted research is conducted in compliance with relevant regulations.
Responsibilities
Implement a program to provide infrastructure, resources, and support for research involving controlled unclassified information (CUI).
Collaborate with UT’s and the Cockrell School of Engineering’s information technology personnel, researchers, and UT’s Defense Research Advancement office to establish secure research computing and laboratory environments that comply with federal requirements for protecting CUI.
Develop information resources and deliver training to assist researchers with understanding the requirements for working with CUI and implementing those requirements, as needed, for their sponsored research.
Consult with Principal Investigators (PI) in pre-award or post-award review of information technology security and privacy controls compliance requirements.
Develop and manage security standards, guidelines, policies, procedures, processes and controls based on best practices, compliance frameworks (for example Supplier Performance Risk System NIST assessments), and audit findings.
Perform ongoing monitoring of research projects and environments to ensure continued compliance with security requirements.
Assess, evaluate, and make recommendations regarding the adequacy of the cybersecurity controls for TIE’s environment and business objectives.
Develop plans and tracking for non-compliance with applicable controls, POA&Ms, and monitor remediation progress against agreed upon timelines.
Engage in ongoing risk assessment within the TIE research environment, develop risk registers aligned to NIST controls, and implement risk mitigation controls in collaboration with University/Engineering IT, TIE units, and researchers.
Evaluate new and existing technologies for compliance with information governance controls (e.g., access, authentication, encryption, logging, retention).
Perform other duties as assigned.
Required Qualifications
Must be a U.S. citizen, resident, or officially recognized asylee.
Bachelor’s degree and a minimum of 3 years of experience in a restricted research environment, information security policies, controls, and practices; cybersecurity; or governance, risk, and compliance (GRC). Relevant education and experience may be substituted as appropriate.
Familiarity with NIST 800-171 (CUI), ITAR, DFARS compliance frameworks and/or related controls.
Ability to analyze, interpret and explain complex regulations, statutes, policies, terms and conditions of grants, cooperative agreements, contracts, and subcontracts.
Demonstrated proficiency operating with a high degree of independence executing with excellent follow-through for assigned tasks, while also knowing when to stop, ask questions, and seek input from the team or management.
Demonstrated ability to manage and execute numerous parallel activities in a fast-paced, dynamic team environment.
Exceptional written and verbal communication skills with all levels of a complex organization.
Self-motivated to learn and share knowledge.
Relevant education and experience may be substituted as appropriate.
Preferred Qualifications
Demonstrated ability to implement and ensure compliance of infrastructure for common security and privacy frameworks and regulation (e.g., NIST 800-53, NIST 800-171, CIS, HIPAA, DFARS/CUI, HECVAT)
Experience with university research, research compliance or administration
Experience in risk management and intelligence analysis
Project management experience
Salary Range
$140,000 + depending on qualifications
Working Conditions
May work around standard office conditions
Repetitive use of a keyboard at a workstation
Use of manual dexterity (ex: using a mouse)
Required Materials
Resume/CV
3 work references with their contact information; at least one reference should be from a supervisor
Letter of interest
Important for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure that ALL Required Materials have been uploaded. Once your job application has been submitted, you cannot make changes.
Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log in to Workday, navigate to your Worker Profile, click the Career link in the left-hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled into your application. The application is one page, and you will be prompted to upload your resume. In addition, you must respond to the application questions presented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.
----
Employment Eligibility:
Regular staff who have been employed in their current position for the last six continuous months are eligible for openings being recruited for through University-Wide or Open Recruiting, to include both promotional opportunities and lateral transfers. Staff who are promotion/transfer eligible may apply for positions without supervisor approval.----
Retirement Plan Eligibility:
The retirement plan for this position is Teacher Retirement System of Texas (TRS), subject to the position being at least 20 hours per week and at least 135 days in length. This position has the option to elect the Optional Retirement Program (ORP) instead of TRS, subject to the position being 40 hours per week and at least 135 days in length.----
Background Checks:
A criminal history background check will be required for finalist(s) under consideration for this position.
----
Equal Opportunity Employer:
The University of Texas at Austin, as an equal opportunity/affirmative action employer, complies with all applicable federal and state laws regarding nondiscrimination and affirmative action. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, national origin, age, marital status, sex, sexual orientation, gender identity, gender expression, disability, religion, or veteran status in employment, educational programs and activities, and admissions.
----
Pay Transparency:
The University of Texas at Austin will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.
----
Employment Eligibility Verification:
If hired, you will be required to complete the federal Employment Eligibility Verification I-9 form. You will be required to present acceptable and original documents to prove your identity and authorization to work in the United States. Documents need to be presented no later than the third day of employment. Failure to do so will result in loss of employment at the university.
----
E-Verify:
The University of Texas at Austin use E-Verify to check the work authorization of all new hires effective May 2015. The university’s company ID number for purposes of E-Verify is 854197. For more information about E-Verify, please see the following:
- E-Verify Poster (English) [PDF]
- E-Verify Poster (Spanish) [PDF]
- Right To Work Poster (English) [PDF]
- Right To Work Poster (Spanish) [PDF]
----
Compliance:
Employees may be required to report violations of law under Title IX and the Jeanne Clery Disclosure of Campus Security Policy and Crime Statistics Act (Clery Act). If this position is identified a Campus Security Authority (Clery Act), you will be notified and provided resources for reporting. Responsible employees under Title IX are defined and outlined in HOP-3031.
The Clery Act requires all prospective employees be notified of the availability of the Annual Security and Fire Safety report. You may access the most recent report here or obtain a copy at University Compliance Services, 1616 Guadalupe Street, UTA 2.206, Austin, Texas 78701.
Tags: C Compliance DFARS Encryption Governance HIPAA Monitoring NIST NIST 800-53 Privacy Risk assessment Risk management
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flexible spending account Flex vacation Health care Insurance Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.