Research Security Systems Manager

Posting Details

Posting Details

Posting Number S12558P

Working Title Research Security Systems Manager

Department VPR-Research IT

About the University of Georgia

Since our founding in 1785, the University of Georgia has operated as Georgia's oldest, most comprehensive, and most diversified institution of higher education (https://www.uga.edu/). The proof is in our more than 235 years of academic and professional achievements and our continual commitment to higher education. UGA is currently ranked among the top 20 public universities in U.S. News & World Report. The University's main campus is located in Athens, approximately 65 miles northeast of Atlanta, with extended campuses in Atlanta, Griffin, Gwinnett, and Tifton. UGA employs approximately 3,000 faculty and more than 7,700 full-time staff. The University's enrollment exceeds 40,000 students including over 30,000 undergraduates and over 10,000 graduate and professional students. Academic programs reside in 18 schools and colleges, as well as a medical partnership with Augusta University housed on the UGA Health Sciences Campus in Athens.

About the College/Unit/Department

College/Unit/Department website

Posting Type External

Retirement Plan TRS or ORP

Employment Type Employee

Benefits Eligibility Benefits Eligible

Full/Part time Full Time

Work Schedule

Additional Schedule Information

Monday - Friday; 8:00 a.m. - 5:00 p.m.

Advertised Salary Commensurate with Experience

Posting Date 08/21/2024

Open until filled Yes

Closing Date

Proposed Starting Date 10/01/2024

Special Instructions to Applicants

Location of Vacancy Athens Area

EEO Policy Statement

The University of Georgia is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ethnicity, age, genetic information, disability, gender identity, sexual orientation or protected veteran status. Persons needing accommodations or assistance with the accessibility of materials related to this search are encouraged to contact Central HR (hrweb@uga.edu).

USG Core Values Statement

The University System of Georgia is comprised of our 26 institutions of higher education and learning, as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found online at https://www.usg.edu/policymanual/section8/C224/#p8.2.18_personnel_conduct.

Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found online at https://www.usg.edu/policymanual/section6/C2653.



Position Information

Classification Title IT Systems Support Professional

FLSA Exempt

FTE 1.00

Minimum Qualifications

Requires at least a baccalaureate degree in the field. Please contact your Human Resources office for an evaluation of education/experience in lieu of the required minimum qualifications.

Preferred Qualifications

• Bachelor's Degree (Masters preferred) in Computer Science, Cyber Security, or related field (work experience will be considered in lieu of a degree)
• At minimum of 5-7 years relevant experience in information security, risk management, or related fields in a DoD or Military Services related environment.
• Working knowledge and familiarity with DoD cybersecurity policy, requirements, and CUI handling.
• Hold current certifications: CISSP, CISM, or related.
• Currently hold or have the ability to obtain a U.S. Government Security Clearance

Position Summary

The UGA Research Institute (UGARI) Information Systems Security Manager (ISSM) is responsible for managing and establishing the University of Georgia's, and its collaborators, path to compliance related to research and development for defense and security efforts. This position will play a critical role in safeguarding sensitive information, managing risks, and maintaining compliance with relevant Department of Defense (DoD) and other United States Government (USG) regulations. The ideal candidate will have relevant experience working with or in the Department of Defense (DoD) and ensuring Controlled Unclassified Information (CUI). The ISSM will be the main contact point for tracking the cybersecurity of CUI/ITAR/EAR and HIPPA-compliant computing environments within UGA.

Knowledge, Skills, Abilities and/or Competencies

• IT, Network, Database Management
• Strong Project Management skills
• Strong leadership and communication skills.
• Analytical mindset with attention to detail.
• Ability to balance security needs with business objectives.

Physical Demands

• Sitting at a desk and working on a computer for extended periods.
• May occasionally need to lift and carry equipment such as computers, servers, and networking hardware, which can weigh up to 50 pounds.

Is driving a responsibility of this position? No

Is this a Position of Trust? Yes

Does this position have operation, access, or control of financial resources? No

Does this position require a P-Card? No

Is having a P-Card an essential function of this position? No

Does this position have direct interaction or care of children under the age of 18 or direct patient care? No

Does this position have Security Access (e.g., public safety, IT security, personnel records, patient records, or access to chemicals and medications) Yes

Credit and P-Card policy

Be advised a credit check will be required for all positions with financial responsibilities. For additional information about the credit check criteria, visit the UGA Credit Background Check website.

Background Investigation Policy

Offers of employment are contingent upon completion of a background investigation including, a criminal background check demonstrating your eligibility for employment with the University of Georgia; confirmation of the credentials and employment history reflected in your application materials (including reference checks) as they relate to the job-based requirements of the position applied for; and, if applicable, a satisfactory credit check. You may also be subject to a pre-employment drug test for positions with high-risk responsibilities, if applicable. Please visit the UGA Background Check website.



Duties/Responsibilities

Duties/Responsibilities

Policy Development and Implementation, Coordination, Collaboration, and Communication:

• Develop, implement, and maintain security policies, procedures, and guidelines for the organization.
• Work collaboratively with campus units including legal, compliance, research security & export control, central IT (EITS) and unit IT, colleges, schools and departments.
• Track project and administrative compliance with relevant security standards, regulations, and best practices and report deficiencies to the relevant unit.
• Coordinate the efforts of all required units on campus to establish the necessary physical and compute/network environments for compliant execution of projects.
• Collaborate with similar professionals at other institutions and federal funding agencies as well as vendors.
• Communicate security requirements, risks, and recommendations effectively.

Percentage of time 40 Duties/Responsibilities

Risk Assessments, Security Audits and Assessments, and Incident Response and Investigation:

• Identify and assess risks related to information systems, networks, and data.
• Work with relevant units to develop risk mitigation strategies and action plans.
• Monitor and assess security vulnerabilities.
• Organize regular security audits, vulnerability assessments, and penetration testing in collaboration with other relevant groups.
• Share audit and assessment results with relevant campus groups and collaborate to create improvement plans.
• Evaluate the effectiveness of security controls and recommend improvements.
• Assist UGA units in the development and maintenance of incident response plans.
• Investigate security incidents, breaches, and unauthorized access in cooperation with EITS InfoSec and other relevant units.
• Coordinate with relevant teams during incident handling.

Percentage of time 30 Duties/Responsibilities

Access Control and Authorization for UGARI administrative systems:

• Manage user access to systems, applications, and data.
• Work with unit personnel, Facilities Management, and the Office of Research Security and Compliance to ensure we have secure facilities when required.
• Define and enforce access control policies.
• Review and approve access requests.

Percentage of time 10 Duties/Responsibilities

Security Training, Awareness, Documentation, and Reporting:

• Provide security awareness training to employees.
• Ensure that staff members understand security policies and practices.
• Foster a security-conscious culture within the organization.
• Maintain accurate records related to security incidents, risk assessments, and compliance.
• Generate security reports for management and regulatory purposes.

Percentage of time 10 Duties/Responsibilities

Compliance, Certification, and Continuous Improvement:

• Ensure compliance with relevant regulations (e.g., DoD, HIPAA, FAR cybersecurity requirements, NIST 800-53 and 800-161, other USG etc.).
• Assist in obtaining and maintaining CMMC and SPRS ratings and scores.
• Monitoring NIST 800.171/CMMC-compliant environments, this position will facilitate their establishment.
• Key role in effort toward a centralized CUI-safeguarding solution.
• Stay informed about emerging threats, vulnerabilities, and security technologies.

Percentage of time 10

Contact Information

Recruitment Contact

Contact Details

For questions concerning this position or recruitment progression, please refer to the Recruitment Contact listed below.

Recruitment Contact Name Gary Rachel

Recruitment Contact Email gcrachel@uga.edu

Recruitment Contact Phone



Posting Specific Questions

Required fields are indicated with an asterisk (*). Applicant Documents Required Documents

1. Resume/CV
2. Cover Letter

Optional Documents