The Governance, Risk, and Compliance Analyst (GRC Analyst) will serve as a key member of the Research IT team at the University of Nebraska. The GRC Analyst for Research is responsible for the assessment and documentation of the University’s compliance and risk posture as they relate to its Research information assets. The person in this position will focus on collaboration, review, and compliance with regulatory standards by campus research entities. The regulatory standards include, but are not limited to, NIST 800-171, CMMC, and DFARS.

Responsible for developing and maintaining cybersecurity control documentation and complying with cybersecurity standards.

(Senior Level) – The Senior Governance, Risk, and Compliance Analyst (Sr GRC Analyst) will serve as a key member of the Research IT team at the University of Nebraska. The Sr GRC Analyst for Research is responsible for the assessment and documentation of the University’s compliance and risk posture as they relate to its Research information assets. The person in this position will focus on collaboration, review, and compliance with regulatory standards by campus research entities. The regulatory standards include, but are not limited to, NIST 800-171, CMMC, and DFARS.

Responsible for implementing and maintaining cybersecurity control documentation and complying with cybersecurity standards.

This position will uphold the ITS core principles of outstanding collaboration and communication, a drive to succeed, a passion for higher learning, and acting with integrity.

Governance, Risk, and Compliance Analyst Qualifications:
Required Qualifications

Bachelor’s degree

3 years’ experience in Information Technology or with risk management frameworks and compliance practices

Knowledge of NIST standards and other applicable research compliance frameworks

Demonstrated ability to interpret and implement standards, guidelines, compliance frameworks and best practices

Experience performing risk assessments

Master’s degree

Understanding of information security standards and regulatory regulations related to higher education (FERPA, PCI, HIPAA)

Information security and compliance related training or certifications such as CISSP or CRISC

Experience within a higher education environment

Experience using security tools (vulnerability scanners, intrusion prevention systems, firewalls, VPN’s, data loss prevention, etc.)

Knowledge of securing network technologies, client, and server operating systems

Sr. Governance, Risk and Compliance Analyst Qualifications:
Required Qualifications

Bachelor’s degree

5 years’ experience in information technology preferably in IT security

Demonstrated knowledge of NIST standards and other applicable research compliance frameworks

Knowledge of securing network technologies, client, and server operating systems

Ability to develop security standards and guidelines based on security compliance frameworks and best practices

Experience using security tools (vulnerability scanners, intrusion prevention systems, firewalls, VPN’s, data loss prevention, etc.)

Preferred Qualifications

Master’s degree

Experience performing information security audits or risk assessments

Experience with security audit or assessment processes

Information security related training or certifications such as CISSP or CRISC

Experience within a higher education environment

Equivalent combination of education, experience, that provides the required knowledge, skills, and abilities may be considered.

The ideal candidate is an agile professional with strong interpersonal communication skills, flexibility and responsiveness; exhibits high ethical standards; proficient in managing time and competing priorities; responsive and committed to supporting University staff; committed to the ideals of a major public research university.

This position has a minimum annual salary of $67,100 and is eligible for alternative worksite arrangement (hybrid) and will be located in Lincoln, NE.

Position title and salary will be determined based on education and experience of
candidate.

Please complete a standard application and attach a resume, cover letter and the names, email addresses and telephone numbers for three professional references.
If you should need assistance with your application, please call 402-472-3701.

The University of Nebraska is an Affirmative Action/Equal Opportunity Employer and participates in E-Verify. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, disability, gender identity, sexual orientation or protected veteran status.