Posting Details
Posting Details
| Posting Number |
S12558P |
| Working Title |
Research Security Systems Manager |
| Department |
VPR-Research IT |
| About the University of Georgia |
Since our founding in 1785, the University of Georgia has operated as Georgia's oldest, most comprehensive, and most diversified institution of higher education (
https://www.uga.edu/). The proof is in our more than 235 years of academic and professional achievements and our continual commitment to higher education.
UGA is currently ranked among the top 20 public universities in U.S. News & World Report. The University's main campus is located in Athens, approximately 65 miles northeast of Atlanta, with extended campuses in Atlanta, Griffin, Gwinnett, and Tifton.
UGA employs approximately 3,000 faculty and more than 7,700 full-time staff. The University's enrollment exceeds 40,000 students including over 30,000 undergraduates and over 10,000 graduate and professional students. Academic programs reside in 18 schools and colleges, as well as a medical partnership with Augusta University housed on the
UGA Health Sciences Campus in Athens. |
| About the College/Unit/Department |
|
| College/Unit/Department website |
|
| Posting Type |
External |
| Retirement Plan |
TRS or ORP |
| Employment Type |
Employee |
| Benefits Eligibility |
Benefits Eligible |
| Full/Part time |
Full Time |
| Work Schedule |
|
| Additional Schedule Information |
Monday - Friday; 8:00 a.m. - 5:00 p.m. |
| Advertised Salary |
Commensurate with Experience |
| Posting Date |
08/21/2024 |
| Open until filled |
Yes |
| Closing Date |
|
| Proposed Starting Date |
10/01/2024 |
| Special Instructions to Applicants |
|
| Location of Vacancy |
Athens Area |
| EEO Policy Statement |
The University of Georgia is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ethnicity, age, genetic information, disability, gender identity, sexual orientation or protected veteran status. Persons needing accommodations or assistance with the accessibility of materials related to this search are encouraged to contact Central HR (hrweb@uga.edu). |
| USG Core Values Statement |
The University System of Georgia is comprised of our 26 institutions of higher education and learning, as well as the System Office. Our
USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each
USG community member is responsible for demonstrating and upholding these standards. More details on the
USG Statement of Core Values and Code of Conduct are available in
USG Board Policy 8.2.18.1.2 and can be found online at
https://www.usg.edu/policymanual/section8/C224/#p8.2.18_personnel_conduct.
Additionally,
USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found online at
https://www.usg.edu/policymanual/section6/C2653. |
Position Information
| Classification Title |
IT Systems Support Professional |
| FLSA |
Exempt |
| FTE |
1.00 |
| Minimum Qualifications |
Requires at least a baccalaureate degree in the field. Please contact your Human Resources office for an evaluation of education/experience in lieu of the required minimum qualifications. |
| Preferred Qualifications |
- Bachelor's Degree (Masters preferred) in Computer Science, Cyber Security, or related field (work experience will be considered in lieu of a degree)
- At minimum of 5-7 years relevant experience in information security, risk management, or related fields in a DoD or Military Services related environment.
- Working knowledge and familiarity with DoD cybersecurity policy, requirements, and CUI handling.
- Hold current certifications: CISSP, CISM, or related.
- Currently hold or have the ability to obtain a U.S. Government Security Clearance
|
| Position Summary |
The
UGA Research Institute (
UGARI) Information Systems Security Manager (
ISSM) is responsible for managing and establishing the University of Georgia's, and its collaborators, path to compliance related to research and development for defense and security efforts. This position will play a critical role in safeguarding sensitive information, managing risks, and maintaining compliance with relevant Department of Defense (DoD) and other United States Government (
USG) regulations. The ideal candidate will have relevant experience working with or in the Department of Defense (DoD) and ensuring Controlled Unclassified Information (
CUI). The
ISSM will be the main contact point for tracking the cybersecurity of
CUI/
ITAR/
EAR and
HIPPA-compliant computing environments within
UGA. |
| Knowledge, Skills, Abilities and/or Competencies |
- IT, Network, Database Management
- Strong Project Management skills
- Strong leadership and communication skills.
- Analytical mindset with attention to detail.
- Ability to balance security needs with business objectives.
|
| Physical Demands |
- Sitting at a desk and working on a computer for extended periods.
- May occasionally need to lift and carry equipment such as computers, servers, and networking hardware, which can weigh up to 50 pounds.
|
| Is driving a responsibility of this position? |
No |
| Is this a Position of Trust? |
Yes |
| Does this position have operation, access, or control of financial resources? |
No |
| Does this position require a P-Card? |
No |
| Is having a P-Card an essential function of this position? |
No |
| Does this position have direct interaction or care of children under the age of 18 or direct patient care? |
No |
| Does this position have Security Access (e.g., public safety, IT security, personnel records, patient records, or access to chemicals and medications) |
Yes |
| Credit and P-Card policy |
Be advised a credit check will be required for all positions with financial responsibilities. For additional information about the credit check criteria, visit the
UGA Credit Background Check website. |
| Background Investigation Policy |
Offers of employment are contingent upon completion of a background investigation including, a criminal background check demonstrating your eligibility for employment with the University of Georgia; confirmation of the credentials and employment history reflected in your application materials (including reference checks) as they relate to the job-based requirements of the position applied for; and, if applicable, a satisfactory credit check. You may also be subject to a pre-employment drug test for positions with high-risk responsibilities, if applicable. Please visit the
UGA Background Check website. |
Duties/Responsibilities
| Duties/Responsibilities |
Policy Development and Implementation, Coordination, Collaboration, and Communication:
- Develop, implement, and maintain security policies, procedures, and guidelines for the organization.
- Work collaboratively with campus units including legal, compliance, research security & export control, central IT (EITS) and unit IT, colleges, schools and departments.
- Track project and administrative compliance with relevant security standards, regulations, and best practices and report deficiencies to the relevant unit.
- Coordinate the efforts of all required units on campus to establish the necessary physical and compute/network environments for compliant execution of projects.
- Collaborate with similar professionals at other institutions and federal funding agencies as well as vendors.
- Communicate security requirements, risks, and recommendations effectively.
|
| Percentage of time |
40 |
| Duties/Responsibilities |
Risk Assessments, Security Audits and Assessments, and Incident Response and Investigation:
- Identify and assess risks related to information systems, networks, and data.
- Work with relevant units to develop risk mitigation strategies and action plans.
- Monitor and assess security vulnerabilities.
- Organize regular security audits, vulnerability assessments, and penetration testing in collaboration with other relevant groups.
- Share audit and assessment results with relevant campus groups and collaborate to create improvement plans.
- Evaluate the effectiveness of security controls and recommend improvements.
- Assist UGA units in the development and maintenance of incident response plans.
- Investigate security incidents, breaches, and unauthorized access in cooperation with EITS InfoSec and other relevant units.
- Coordinate with relevant teams during incident handling.
|
| Percentage of time |
30 |
| Duties/Responsibilities |
Access Control and Authorization for UGARI administrative systems:
- Manage user access to systems, applications, and data.
- Work with unit personnel, Facilities Management, and the Office of Research Security and Compliance to ensure we have secure facilities when required.
- Define and enforce access control policies.
- Review and approve access requests.
|
| Percentage of time |
10 |
| Duties/Responsibilities |
Security Training, Awareness, Documentation, and Reporting:
- Provide security awareness training to employees.
- Ensure that staff members understand security policies and practices.
- Foster a security-conscious culture within the organization.
- Maintain accurate records related to security incidents, risk assessments, and compliance.
- Generate security reports for management and regulatory purposes.
|
| Percentage of time |
10 |
| Duties/Responsibilities |
Compliance, Certification, and Continuous Improvement:
- Ensure compliance with relevant regulations (e.g., DoD, HIPAA, FAR cybersecurity requirements, NIST 800-53 and 800-161, other USG etc.).
- Assist in obtaining and maintaining CMMC and SPRS ratings and scores.
- Monitoring NIST 800.171/CMMC-compliant environments, this position will facilitate their establishment.
- Key role in effort toward a centralized CUI-safeguarding solution.
- Stay informed about emerging threats, vulnerabilities, and security technologies.
|
| Percentage of time |
10 |
|
University of Georgia
retirement plan
Dec 20, 2024