DEPARTMENT:

The Division of Information Technology (DoIT) has approximately 85 full time staff members and 100 undergraduate or graduate students that work each day to support the mission of UMBC through the delivery of IT services to the campus. DoIT provides robust, secure IT environments that enable solutions for advancing the UMBC community. We do this through a staff of technology professionals that are connected both nationally and to UMBC.

POSITION OVERVIEW:

The Information Technology Research Security Specialist reports to the Chief Information Security Officer and collaborates with the Office of Research Protections & Compliance and The Hilltop Institute to enhance IT research security. This role implements and maintains robust security measures, advising on systems and controls tailored to the research environment and The Hilltop Institute’s data warehouse function. Additionally, this position contributes to a grant-funded research study, developing training materials and best practices for IT security-based research compliance at universities similar in size to UMBC.

REQUIRED MINIMUM QUALIFICATIONS:

• Requires a Bachelor’s degree in Computer Science or Information Systems
• A minimum two (2) years experience applying security control frameworks to information technology systems including but not limited to:
• Selecting and documenting security controls for an IT system,
• Developing risk mitigation plans for vulnerabilities and findings, and
• Experience conducting training and outreach related to information technology security.

PREFERRED QUALIFICATIONS:

• Master’s degree in Computer Science or Information Systems
• Two (2) years experience applying security control frameworks to information technology systems including but not limited to:
• Selecting and documenting security controls from the National Institute of Standards and Technology (NIST) or HITRUST for an IT system,
• Facilitating or supporting the HITRUST certification of an IT system,
• Conducting risk assessments against IT security control implementations or Data Use Agreements (DUA),
• Developing risk mitigation plans for vulnerabilities and findings,
• Designing secure IT solutions, and
• Experience conducting training and outreach related to information technology security.

Safeguard research and sensitive data as a key player in our cybersecurity team. You’ll provide important cybersecurity expertise for our dynamic research environment and The Hilltop Institute whose mission is advancing health and wellbeing through research and analytics.

Your mission? To build a robust security posture that protects vital information while empowering groundbreaking research. This includes:

• Designing and implementing security measures to combat data breaches, unauthorized access, and cyber threats.
• Assessing and strengthening existing security controls, identifying vulnerabilities, and developing mitigation strategies.
• Collaborating with internal and external auditors, assessors, and consultants to ensure compliance with rigorous standards (e.g., HITRUST).
• Serving as a trusted advisor to university research operations and The Hilltop Institute, providing expert security guidance tailored to their unique needs.
• Empowering the research community by developing and delivering training and resources on IT security best practices.

If you’re passionate about cybersecurity and want to make a real difference in protecting vital research data, we encourage you to apply!