IT Cybersecurity Maturity Model Certification (CMMC) Specialist at South Dakota School of Mines Technology
Rapid City, SD 57701, USA -
Full Time


Start Date

Immediate

Expiry Date

01 Dec, 25

Salary

88063.49

Posted On

01 Sep, 25

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Systems Engineering, Software Development, Security Intelligence, Programming Languages, Addition, Encryption, Threat Intelligence

Industry

Information Technology/IT

Description

Title: IT Cybersecurity Maturity Model Certification (CMMC) Specialist
Posting Number: CSA02451P
Department: Information Technology
Physical Location of Position (City): Rapid City
POSITION CLASSIFICATION: Cybersecurity Analyst (IT 7S) or Cybersecurity Engineer (IT 9S)
MINIMUM STARTING SALARY: $73,063.30 – $88,063.49+, depending on education and experience (Pay Grade IT7S/IT9S)
POSITION PURPOSE:South Dakota Mines is seeking a dedicated and knowledgeable IT Specialist for Cybersecurity Compliance to lead our Cybersecurity Maturity Model Certification (CMMC) efforts. This role is critical in ensuring the security of Controlled Unclassified Information (CUI) and safeguarding the university’s Department of Defense (DoD) research portfolio. The specialist will be responsible for developing, implementing, and managing a secure and compliant enclave for CUI data, ensuring adherence to federal cybersecurity regulations. This position will play a pivotal role in mitigating contractual risks, protecting the university’s research enterprise and maintaining the institution’s reputation as a trusted partner in national security research.

Final classification for this position will be determined at the time of hire based on the selected candidate’s experience and qualifications for the position:

  • Option 1: Cybersecurity Analyst (Pay Grade 7S – IT CSA Pay Structure)
  • Minimum Qualifications – Requisite Knowledge, Skills, and Experience:
  • Knowledge and skill in cybersecurity fundamentals such as incident management, forensic analyses, obfuscation techniques, vulnerability scans, threat intelligence, encryption, and decryption.
  • Broad understanding of client/server and webserver architectures and systems.
  • Broad understanding of networking technologies, architectures, and tools.
  • Knowledge of Internet network addressing.
  • Familiarity with programming languages and methodologies.
  • Knowledge of data management, retrieval systems, transfer technologies, and backup systems.
  • Option 2: Cybersecurity Engineer (Pay Grade 9S – IT CSA Pay Structure)
  • In addition to meeting the qualifications of the Analyst level listed above, candidates must also demonstrate:
  • A strong understanding of cybersecurity industry standards.
  • The ability to design, improve, secure, and standardize processes related to:
  • Networking
  • Software development
  • Systems engineering
  • Financial and risk analysis
  • Security intelligenc
Responsibilities
  • Lead CMMC Compliance Program: Oversee the university’s Cybersecurity Maturity Model Certification (CMMC) compliance program, from initial gap analysis to final certification and continuous monitoring. This position will serve as the principal architect and leader of the university’s comprehensive Cybersecurity Maturity Model Certification program.
  • Documentation Management: Develop and maintain essential documentation, including the System Security Plan (SSP) and Plan of Action & Milestones (POA&M). This position will oversee the lifecycle management of the full CMMC program.
  • Policy Development: Create and implement university-wide security policies and procedures that translate CMMC requirements into actionable practices.
  • Audit and Assessment Management: Manage and lead the response for all internal and external CMMC audits and assessments.
  • Risk and Vulnerability Management: Conduct risk assessments and oversee the vulnerability management lifecycle for the Controlled Unclassified Information (CUI) environment.
  • Collaboration with Researchers: Work closely with researchers and Research Affairs to develop Technology Control Plans (TCPs) that convey the data flow of CUI data on research projects.
  • Continuous Improvement: Regularly conduct internal audits to assess the effectiveness of security controls and provide reports and briefings on program status, risks, and milestones to university leadership.
  • Primary Contact for Assessments: Act as the primary point of contact for third-party assessment organizations (C3PAOs) during official CMMC and other assessments.
  • Team Member for ITS department: Position will be integrated with the IT department to provide support to campus.
    *
    Classification & Qualifications:This position requires access to federal government data made available through grant funding which limits access to U.S. citizens. Proof of U.S. citizenship will be required prior to hire.

Final classification for this position will be determined at the time of hire based on the selected candidate’s experience and qualifications for the position:

  • Option 1: Cybersecurity Analyst (Pay Grade 7S – IT CSA Pay Structure)
  • Minimum Qualifications – Requisite Knowledge, Skills, and Experience:
  • Knowledge and skill in cybersecurity fundamentals such as incident management, forensic analyses, obfuscation techniques, vulnerability scans, threat intelligence, encryption, and decryption.
  • Broad understanding of client/server and webserver architectures and systems.
  • Broad understanding of networking technologies, architectures, and tools.
  • Knowledge of Internet network addressing.
  • Familiarity with programming languages and methodologies.
  • Knowledge of data management, retrieval systems, transfer technologies, and backup systems.
  • Option 2: Cybersecurity Engineer (Pay Grade 9S – IT CSA Pay Structure)
  • In addition to meeting the qualifications of the Analyst level listed above, candidates must also demonstrate:
  • A strong understanding of cybersecurity industry standards.
  • The ability to design, improve, secure, and standardize processes related to:
  • Networking
  • Software development
  • Systems engineering
  • Financial and risk analysis
  • Security intelligence

TO APPLY:South Dakota Mines is committed to recruiting and retaining a talented workforce and offers an excellent comprehensive benefits package including medical, dental, vision, and life coverage options for employees, spouses and dependents; retirement plans; paid holidays; and a generous vacation and sick day allowance. Individuals interested in this position must apply online at Careers at Mines. Human Resources can provide accommodation to the online application process and may be reached at (605) 394-1203. Review of applications will begin August 20, 2025, and remain open until it is filled. Employment is contingent upon completion of a satisfactory background investigation.
Job Type: Full-time
Pay: $73,063.30 - $88,063.49 per year

Benefits:

  • Dental insurance
  • Health insurance
  • Paid time off
  • Vision insurance

Work Location: In perso

Loading...