Job Information
Colorado School Of Mines Research Security Analyst in Golden, Colorado
Engineering a world of possibilities Research Security Analyst - Office of Research and Technology Transfer
THE OPPORTUNITY Colorado School of Mines invites applications for a Research Security Analyst at who will lead efforts to enhance the research enterprise at this R1 public research university.Mines applies innovative approaches, where faculty and graduate students work on interdisciplinary teams, and in top research centers.
As a member of the Office of Research and Technology Transfer (RTT), the analyst serves as the research security officer and drives and supports Mines' research security programs, including the facility security program, cybersecurity maturity model certification, export compliance, and security evaluations of international partnerships.The Officer manages Mines' relationship with federal industrial security authorities and sponsors; establishes processes to protect sensitive technologies; provides training and education; initiates personnel security clearances; manages all university employees' use of restricted party screening software; and corrects any deficiencies or violations.Research integrity and security are force multipliers for university research, demonstrating to research sponsors Mines' dedication to our research values.These initiatives directly contribute to the university becoming a first-choice partner for federal labs and agencies and public and private partners.
This is a full-time position with hybrid work arrangements within the State of Colorado.
RESPONSIBILITIES FACILITY SECURITY OFFICER (50%)
Develop and manage industrial security program
Partner with Mines faculty and sponsors to identify opportunities for research in this new space
Work with sponsor and university leadership to write and submit or update foreign ownership, control, or influence application materials
Advise and guide university researchers in applying for personnel clearances
Educate and train cleared researchers
Act as liaison between Mines' researchers, university leaders, and security agencies
Prepare Mines for federal inspections and maintain all systems required for industrial security
Implement structure for university efforts to promote international research collaborations in a manner consistent with laws and regulations as well as university policies and guidelines
Advise RTT and university faculty and administrative leaders on trends in facility and research security, including enforcement activities affecting the conduct of research
Report progress, challenges, and accomplishments to the Research Integrity and Security Committee (RISC) advisory group
Support periodic comprehensive risk assessments for effective risk-based decision making
Ensure current registration with agencies such as Directorate of Defense Trade Controls and US/Canada Joint Certification Program - share information with sponsors and employees
Build professional relationships with partners across and beyond campus for the benefit of RTT
CYBERSECURITY MATURITY MODEL CERTIFICATION PROGRAM (25%)
Develop, implement, and manage Mines' program for Cybersecurity Maturity Model Certification (CMMC)
Create a Secure Government Enclave (SGE) for use of each Mines faculty member with a restricted research contract by collaborating with Information Technology
Guide faculty members and researchers through process of requesting an SGE
Ensure training of all researchers engaging in controlled unclassified information (CUI) research prior to their gaining access to CUI and an SGE
Identify and work with the owners of each of the 110 standards identified by the National Institute of Standards and Technology (NIST Special Publication 800-171)
Establish and maintain Mines' score in the Supplier Performance Risk System (SPRS) to protect CUI - design and maintain CMMC-required records in Mines' compliance management platform
Establish echnology control plans (TCPs) to document and safeguard restricted technologies
Review existing TCPs for extension, modification, or close out
Conduct internal reviews of all CMMC operations - spot check, report, and address violations