IT Compliance Specialist
- Employer
- Carnegie Mellon University
- Location
- Pittsburgh, Pennsylvania, United States
- Salary
- Competitive Salary
- Date posted
- Jun 21, 2024
View more categoriesView less categories
- Position Type
- Administrative, Business & Administrative Affairs, IT & Technology, Technology Administration/Other, Legal Affairs
- Employment Type
- Full Time
Job Details
What We Do:
In Information Technology Services, our teams are responsible for defining, developing, supporting, and evolving the technology-related services needed by the SEI in the pursuit of its overarching mission. We provide the Institute with a current, reliable, and secure infrastructure.
Position Summary:
We are seeking a highly skilled and detail-oriented IT Compliance Specialist to join our team. The successful candidate will be responsible for ensuring that our organization adheres to all relevant IT compliance standards and regulations, with a focus on NIST 800-171 and Cybersecurity Maturity Model Certification (CMMC). This role requires a deep understanding of IT security frameworks, strong analytical skills, and the ability to collaborate effectively with cross-functional teams.
Requirements:
- 3+ years of experience in IT compliance, risk, or audit
functions assessing findings and implementing remediation actions
or equivalent combination of education and experience. Two (2)
years project management and/or experience in a team
environment.
- Familiarity with multiple operating systems including Windows,
Linux, and macOS.
- Flexible to travel to other SEI offices in Pittsburgh and
Washington, DC, sponsor sites, conferences, and offsite meetings on
occasion.
- You will be subject to a background investigation
- Applicants for this position must be currently legally
authorized to work for CMU in the United States. CMU will not
sponsor or take over sponsorship of an employment visa for this
opportunity.
- Compliance Assessments: You’ll measure the ongoing
compliance of our IT systems to the relevant cybersecurity
frameworks such as NIST 800-171 and CMMC, proactively identifying
and addressing compliance gaps.
- Organization and Record Keeping: You will document
necessary compliance action items, verify evidence, and monitor
activities to ensure all are closed on a timely basis. You’ll
monitor activities to ensure all activities are closed on a timely
basis. Ensure non-compliant findings have action items created and
are tracked to completion with routine oversight.
- Policy Development and Implementation: You will
contribute to the development, implementation, and maintenance of
IT compliance policies, procedures, and controls aligned with SEI,
NIST 800-171, and CMMC requirements.
- Stakeholder Collaboration: You’ll collaborate with
internal stakeholders to identify compliance gaps, develop
remediation plans, and provide guidance and support to IT and
research teams on compliance-related matters.
- External Coordination: You will coordinate with external
auditors and regulatory agencies during compliance audits and
assessments, ensuring smooth communication and compliance.
- Metrics Monitoring: We’ll look to you to monitor and
report on compliance metrics and key performance indicators to
senior management, providing insights for decision-making and
continuous improvement. Your reports and analysis will be key
contributions.
- Risk Management: You will participate in risk
assessments and assist in the development of risk mitigation
strategies to ensure the organization's compliance and security
posture. You’ll take the lead maintaining the IT decision matrix
and risk register.
- Training Development: You will contribute to the
development of training and awareness programs to foster a culture
of compliance within the organization, ensuring all staff members
are well-informed and compliant.
- Subject Matter Expertise: You will serve as a subject
matter expert on evolving regulation and IT compliance matters,
providing guidance and support to colleagues as needed, and
promoting best practices.
- Continuous Learning: You are eager to expand your
knowledge and stay up-to-date with the latest regulatory changes
and evolving needs of the SEI.
- Analytical Thinking: You possess strong analytical and
problem-solving skills, with keen attention to detail, to
effectively identify compliance gaps and develop solutions.
- Communication Proficiency: As part of a matrixed
organization, you’ll work effectively, engaging with team members
and stakeholders across the organization to troubleshoot issues,
provide guidance, and contribute innovative ideas.
- Positive Attitude: You approach tasks with enthusiasm
and a positive attitude, contributing to a supportive work
environment where teamwork and mutual respect are valued.
- Research-oriented: You have familiarity with working
within a research organization.
- Technical and Project Leadership: You have led technical
projects and have experience collaborating across teams.
- Credentialed: Certified Information Systems Auditor
(CISA), Systems Security Certified Practitioner (SSCP), or CompTIA
Security+.
Our benefits philosophy encompasses three driving priorities: Choice, Control, and Well-being. Learn more at https://www.cmu.edu/jobs/benefits-at-a-glance/. You can join an institution and inspire innovations that change the world.
Location
Arlington, VA, Pittsburgh, PA
Job Function
IT Project Management
Position Type
Staff – Regular
Full time/Part time
Full time
Pay Basis
Salary More Information:
- Please visit “ Why Carnegie Mellon ” to learn more about
becoming part of an institution inspiring innovations that change
the world.
- Click here to view a listing of employee benefits
- Carnegie Mellon University is an Equal Opportunity
Employer/Disability/Veteran .
- Statement of Assurance
Company
Carnegie Mellon University challenges the curious and passionate to imagine and deliver work that matters.
A private, global research university, Carnegie Mellon stands among the world's most renowned educational institutions, and sets its own course.
Carnegie Mellon was founded in 1900 by Andrew Carnegie under the premise that a school established to foster and develop the technical skills of its students would soon produce students and graduates whose work would astound Pittsburgh and the world. Over 120 years later, our institution continues to produce talented alumni and draws faculty and staff eager to be a part of the university's creative, passionate and close-knit community. We place emphasis on practical problem solving, interdisciplinary learning, an entrepreneurial spirit, and collaboration.
Over the past 10 years, more than 400 startups linked to CMU have raised more than $7 billion in follow-on funding. Those investment numbers are especially high because of the sheer size of Pittsburgh’s growing autonomous vehicles cluster – including Uber, Aurora, Waymo and Motional – all of which are here because of their strong ties to CMU.
With cutting-edge brain science, path-breaking performances, innovative startups, driverless cars, big data, big ambitions, Nobel and Turing prizes, hands-on learning, and a whole lot of robots, CMU doesn't imagine the future, we create it.
Pittsburgh is home to over 86,000 students from 10 colleges and universities. Pittsburgh was ranked as one of the top U.S. cities for millennials.
Some 177,000 people work in Pittsburgh's tech-related industries, and their ranks continue to grow as the city tops lists for jobs. Networking opportunities, small business accelerators, and an innovative community make the city appealing to entrepreneurs, especially recent graduates.
Pittsburgh is emerging as a tech and culture hub that The Washington Post praises for its "world-class art museums and colorful neighborhoods."
Robotics and software engineering lead the way. The city is home to Google, Uber and Apple offices and a budding ecosystem of tech startups including Duolingo, Modcloth and 4Moms, all of which have CMU roots.
Many seek Pittsburgh for being a hot spot for entrepreneurship and a model for future cities. Others come for the city's burgeoning food scene.
You’ll find CMU locations nationwide — and worldwide. Silicon Valley. Qatar. Africa. Washington, D.C. To name a few.
If your heart is in your work, come work with us.
Carnegie Mellon University isn't just one of the world’s most renowned educational institutions — it’s also a hotspot for some of the most talented doers, dreamers and difference-makers on the planet. When you join our staff, you’ll become an important part of our mission to create a healthier, safer and more just life for all. No matter what your role or location, you’ll connect and collaborate with dedicated, passionate colleagues — and you’ll have the satisfaction of delivering work that truly matters.
Carnegie Mellon University offers a wide range of competitive employee benefits to help you live well. Benefit eligibility varies based on the hours per week employees are scheduled to work and the employee's geographic location
We seek to cultivate diverse populations and perspectives and promote equity and inclusion. Our devotion to these ideals springs from a core belief in the power of education to be a transformative and enriching force for every person, irrespective of their background, identity or life circumstances.
Inclusion and belonging are intricately interwoven into the very essence of our university, helping to shape our values, policies and practices. Diversity, equity, inclusion and belonging are not only central to our ethos but also indispensable to our pursuit of academic excellence and innovation.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert