at National Center for Supercomputing Applications in Urbana, Illinois, United States
Job Description
1) Assistant Cybersecurity Compliance and Policy Specialist
Duties & Responsibilities:
Cybersecurity Operations and Processes
- Assist in identifying cyber risks and appropriate mitigation for NCSA, industry partners and collaborators.
- Work with technology subject matter experts to develop risk assessments and the proper mitigation.
Cybersecurity Project Management
- Draft required cyber security processes derived from policy requirements.
- Help to coordinate efforts to design, deploy, and operate high-level security environments.
- Track and drive progress towards cybersecurity compliance projects.
Cybersecurity Policy Development
- Assist in developing new policies, standards and procedures to align NCSA practices with recognized security standards (e.g., NIST, HIPAA, CUI, HITRUST, SOC 2 Type 2).
2) Cybersecurity Compliance and Policy Specialist
Cybersecurity Operations and Processes
- Identify cyber risks and appropriate mitigation for NCSA, industry partners and collaborators.
- Work with technology subject matter experts to develop risk assessments and the proper mitigation.
Cybersecurity Project Management
- Coordinate efforts to design, deploy, and operate high-level security environments.
- Drive required cyber security processes derived from policy requirements.
- Work closely with project leadership and staff to both track and drive progress toward ensuring cybersecurity compliance project milestones are met, and that staff effort is aligned with project goals.
- Implementation and execution of decisions made by the project lead.
Cybersecurity Policy Development
- Develop new policies, standards and procedures to align NCSA practices with recognized security standards (e.g., NIST, HIPAA, CUI, HITRUST, SOC 2 Type 2).
Leadership and Outreach
- Represent NCSA in meetings and with presentations to existing or prospective collaborators, such as, NCSA industry partners, funding agencies, and university researchers.
3) Senior Cybersecurity Compliance and Policy Specialist
Cybersecurity Operations and Processes
- Identify cyber risks and appropriate mitigation for NCSA, industry partners and collaborators.
- Work with technology subject matter experts to develop risk assessments and the proper mitigation.
- Develop and update system baselines and threat models for deployment and risk acceptance decisions.
Cybersecurity Project Management
- Coordinate efforts to design, deploy, and operate high-level security environments.
- Drive required cyber security processes derived from policy requirements.
- Work closely with project leadership and staff to both track and drive progress toward ensuring cybersecurity compliance project milestones are met, and that staff effort is aligned with project goals.
- Provide leadership under the project lead’s direction, including delegating tasks, determining project milestones, and setting deadlines.
- Implementation and execution of decisions made by the project lead.
Cybersecurity Policy Development
- Develop new policies, standards, and procedures to align NCSA practices with recognized security standards (e.g., NIST, HIPAA, CUI, HITRUST, SOC 2 Type 2).
- Manage system life cycle events such as certification and accreditation activities, annual risk and contingency reviews, and privacy impact reviews.
Leadership and Outreach
- Represent NCSA in meetings and with presentations to existing or prospective collaborators, such as, NCSA industry partners, funding agencies, and university researchers.
- Coordinate with team leaders and other technical staff to ensure that appropriate security and networking expertise is applied to the planning and implementation of software and services at NCSA.
4) Lead Cybersecurity Compliance and Policy Specialist
Cybersecurity Project Management
- Manage cybersecurity compliance projects, developing execution plans and coordinating with other NCSA teams and external customers as appropriate.
- Coordinate efforts to design, deploy, and operate high-level security environments.
- Drive and monitor required cyber security processes derived from policy requirements.
- Work closely with project leadership and staff to both track and drive progress toward ensuring cybersecurity compliance project milestones are met, and that staff effort is aligned with project goals.
- Provide leadership under the project lead’s direction, including delegating tasks, determining project milestones, and setting deadlines.
- Implementation and execution of decisions made by the project lead.
Cybersecurity Operations and Processes
- Identify cyber risks and appropriate mitigation for NCSA, industry partners and collaborators.
- Work with technology subject matter experts to develop risk assessments and the proper mitigation.
- Develop and update system baselines and threat models for deployment and risk acceptance decisions.
- Develop or deploy tools to test and monitor organizational controls and processes.
- Coordinate efforts to design, deploy, and operate high-level security environments.
- Ensure compliance with the changing laws and applicable regulations and translate that knowledge to identification of risks and actionable plans to protect the NCSA.
Cybersecurity Policy Development
- Develop new policies, standards and procedures to align NCSA practices with recognized security standards (e.g., NIST, HIPAA, CUI, HITRUST, SOC 2 Type 2).
- Develop and manage system life cycle events such as certification and accreditation activities, annual risk and contingency reviews, and privacy impact reviews.
- Lead the implementation and maintenance of the cybersecurity risk assessment program.
Leadership and Outreach – Same as Senior-Level duties
