Research Data Compliance and Security Analyst

Boise, ID

Boise State University

Boise State is a public, metropolitan doctoral research university focused on student success with an innovation mindset.

View all jobs at Boise State University

Apply now Apply later

Job Summary/Basic Function:

This position implements Boise State University’s controlled data policy by developing, executing, and maintaining a controlled data governance program. This program monitors, responds to, and mitigates risks associated with controlled data, research information security, and cybersecurity. Additionally, the role supports programs and processes related to export control, undue foreign influence, conflicts of interest, and research security.  This position is remote or hybrid-eligible.

Level Scope:

Manages a large team typically consisting of both experienced professionals and subordinate Managers. Focuses on tactical and operational plans with short to mid-term focus; significant responsibility to achieve broadly stated goals through subordinate Managers. Determines objectives, directs programs, develops strategies and policies, manages human, financial, and physical resources, and functions with a high degree of autonomy. Requires broad management and leadership knowledge to lead project or program teams in one department/job family. Proactively assesses risk to establish systems and procedures to protect organizational assets.

Essential Functions:

95% of the Time the Position must:
● Serve as a key member of the research security team, coordinating with the university’s CISO team to align with cybersecurity standards.
● Assess, document, and improve the university’s compliance, privacy, security, and risk posture for controlled data and research assets in relation to information technology.
● Promote the university’s controlled data program by fostering collaboration and ensuring regulatory compliance and best practices across campus organizations and individuals.
● Participate in developing regulatory compliance guidance and IT security architectures, contributing to technical discussions on design, monitoring tools, anomaly detection, threat mitigation, cloud configurations, and enclave use.
● Analyze, document, and suggest enhancements in IT process designs for research regulatory compliance, identifying proactive solutions and improvement opportunities in systems and processes.
● Create reports and documentation to support compliance requirements in the research environment, utilizing analytical tools to monitor a range of research storage resources.
● Support the development and implementation of training programs and communications to increase awareness and understanding of ethics, integrity, privacy, security, and compliance policies, procedures, and best practices.
● Implement and evaluate technology deployments, integration testing, and information security products, services, and procedures to enhance research productivity and effectiveness while upholding security, privacy, and compliance.
● Support security, privacy, and compliance throughout the controlled data lifecycle, from inception to disposal, ensuring controlled data access is managed in line with rigorous security, engineering, governance, and risk management principles.
● Work closely with researchers to help them understand university-provided systems, technology, and controls to protect research data.
● Provide consultations to researchers, developing solutions, documentation, timelines, and research data management workflows that meet regulatory and funding agency requirements.
● Guide researchers through the data use agreement compliance process and data governance practices, as required by regulatory, privacy, and security policies and protocols.
● Develop technology control plans for research and researchers to outline how data and assets are protected, handled, stored, and transferred.
● Offer guidance on best practices for controlled data collection, ensuring compliance and consistency in controlled data handling.

5% Perform other duties as assigned, primarily those necessary to support ethics, integrity, privacy, security, and compliance matters related to research activities.

Knowledge, Skills, Abilities:

● Knowledge of generally accepted information/cyber security principles and practices with the ability to apply that knowledge to perform complex and non-routine specialized functions such as troubleshooting, advanced analysis, research, and problem-solving.
● Excellent analytical, judgment, and organization skills.
● Ability to communicate effectively, both in writing and orally.
● Ability to independently work and self-regulate multiple priorities/tasks.
● Demonstrated problem-solving skills, independent thinking, and a strong sense of curiosity.
● Ability to establish and maintain effective working relationships with researchers, information technology staff, compliance and security staff, and other stakeholders.
● Ability to accurately harmonize complex information and perform work with an attention to detail.
● Ability to work independently and in collaboration with others.
● Ability to proactively identify and work towards solutions in an agile manner while exhibiting high ethical standards.

Minimum Qualifications:

● Bachelor’s Degree in Computer Science, Engineering, Data Science, Mathematics, or equivalent plus 5 years of experience.
● Experience overseeing or implementing compliance and security related to research using regulatory standards such as NIST 800-171, NIST 800-53, Cybersecurity Maturity Model Certification (CMMC), HIPAA/HITECH, DFARS, or the like.

Preferred Qualifications:

● 5 years of associated Experience overseeing or implementing compliance and security related to research using NIST 800-171, NIST 800-53, CMMC, HIPAA/HITECH, DFARS, or the like.
● Research cloud computing security configuration experience (e.g., Amazon Web Services, Google Cloud Platform).
● Knowledge of higher education and research environment. Salary and Benefits:   Salary range is $95,056-$118,809.60 annually and is commensurate with experience. Boise State University provides a best-in-class benefits package, including (but not limited to): Required Application Materials:

To apply, please submit the following materials by the application close date:
1) Cover Letter detailing interest and qualifications for the position
2) Resume
3) Three Professional References

About Us:

Nestled along the Boise River and steps from the state capitol, Boise State University fosters a vibrant and welcoming academic environment that fuels student and employee success. We’re a trailblazing institution, nationally recognized for our innovative spirit and commitment to positive impact on Idaho and beyond.

Boise State is proud to be recognized by Forbes as the only Idaho employer listed in the top 100 of all national midsize and large employers. We’re building a thriving community of faculty and staff whose unique skills, experiences, and perspectives come together to create a rich and rewarding academic experience. Applications from all backgrounds are welcomed.

Learn more about Boise State and living in Idaho’s Treasure Valley at https://www.boisestate.edu/about/

 

 

Apply now Apply later
Job stats:  5  2  0

Tags: Agile CISO Cloud CMMC Compliance Computer Science DFARS GCP Governance HIPAA Mathematics Monitoring NIST NIST 800-53 Privacy Risk management

Perks/benefits: Career development Health care Team events

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.