The IT Systems Research and Compliance Associate is a member of the Office of Information Security (OIS) within the Information and Technology Solutions (ITS) Department and works collaboratively with the Cyber Infrastructure and Advanced Research Computing (CIARC) group in support of researchers, the systems administration team, ITS staff, and other university departments to further the research and compliance missions of Mines. Responsibilities include working interdepartmentally to lead the design, configuration and implementation of a robust technology infrastructure in support of restricted data curation, management, and workflow development. This includes consideration of storage and networking architecture and infrastructure, data and storage architectures, research computing resources, and adherence to best practices of data management and the data management lifecycle. Integrated engagement with researchers to enhance and further scientific inquiry is expected.
Act as a liaison between ITS and researchers and make recommendations in the acquisition of additional infrastructure resources required to facilitate and extend research. Assist in the design, architecture, and implementation of those additional resources.
Develop storage and networking infrastructure, information storage architectures, research computing resources, and adhere to best practices of data management and the data management lifecycle.
Support technical implementation and maintenance within cloud environments designed to protect restricted information.
Coordinate, cooperate, and interact with other ITS staff, particularly front-line user support staff (e.g. desktop support, lab support, help desk) to provide second level (tier-2) support for researchers in their use of restricted information and supported environments.
Restricted Data Compliance
Support the Controlled Unclassified Information (CUI) Program by providing subject matter expertise in the CUI Lifecycle and NIST SP 800-171 Protecting CUI in Nonfederal systems.
Interprets and provides guidance derived from NIST SP 800-171, Protecting Controlled Unclassified Information (CUI).
Document, review and update CUI documentation, policies, guidelines and procedures for to make final determination and approval.
Implement policies and procedures to process and protect Department of Defense (DoD) classified information and CUI (Controlled Unclassified Information), CDI (Covered Defense Information), CTI (Controlled Technical Information), ITAR (The International Traffic in Arms Regulations), and other restricted information.
Develop and provide IT related training for end users.
Collaborate with Enterprise Cybersecurity and Privacy Offices to ensure CUI aligns with Mines direction.
Manage Mines Cybersecurity Maturity Model Certification (CMMC) process and ensure the institution maintains appropriate certification.
Meet with individuals or groups within the Mines community to discuss a broad-range of technical challenges and provide technical solutions. Solutions may range from one-off localized projects to campus-wide initiatives that ensure that IT procedures remain within defined regulatory framework and standards.
Support the IT team in audits of internal controls over compliance such as PCI DSS, NIST, and others.
Support the risk assessment, scoping, execution, reporting, issue management, and process improvement related to ITS portions of audits.
Review documents, work practices, and completed work and identify areas where changes might be necessary for purposes of compliance.
Consult with management on findings and play a lead role in updating training practices or manuals for employees.
Tier 3 Technical Support
Coordinate, cooperate, and interact with other ITS staff, particularly front-line user support staff (e.g. desktop support, lab support, help desk) to provide second level (tier-2) support for researchers in their use of the campus cyberinfrastructure.
Continuously monitor the Mines on Premise Enclave environments and the AWS GovCloud Environments to detect threats with Cyber Security and compliance with all 110 NIST 800-171 controls
Bachelor’s degree from an accredited institution of higher education, preferably in a STEM-related discipline. Individuals without a degree may be considered if they demonstrate possession of substantially the same knowledge level as found in a degree, but have attained the advanced knowledge through a combination of work experience and intellectual instruction.
Demonstrated collaborative approached to learning and sharing knowledge in STEM-related disciplines and research.
Demonstrated ability to diagnose/resolve technical problems independently
Five or more years of experience in support of a technical environment in one or more of the following areas: systems administration (Linux and Windows), data networking, storage architectures, cloud computing, research computing, or data management.
Must be eligible to work in secure computing environments including International Traffic in Arms Regulations (ITAR) and Controlled Unclassified Information (CUI).
Master’s degree in a STEM-related field of study.
PCI-DSS compliance experience.
Experience with data confidentiality, security, and privacy requirements related to a research university including, without limitation, the Federal Information Security Act, the Family Educational Rights and Privacy Act, and NIST 800-171.
Working knowledge of AWS GovCloud.
Knowledge of current and emerging technologies, such as Software Defined Networking, Science DMZ implementation, protected networks, and data enclaves.