INFOSEC COMPLIANCE ANALYST III, IS&T Information Security

About The Position

Requirements

• Knowledge of controls required by NIST 800-53, NIST 800-171, and CMMC.
• Proficiency in completing NIST 800-53 and/or NIST 800-171 System Security Plans.
• The ability to translate regulatory and technical compliance requirements into clear guidance for IT staff, management, and researchers.
• A history of collaborating with technical teams, departments, and external partners to achieve compliance goals.
• Skill in evaluating risks, identifying gaps, and recommending improvements.
• A proven track record of mediating conflicts and coordinating deliverables to achieve compliance while meeting timelines.
• Alternative qualifications that may substitute for formal education, such as military service, certifications, or substantial hands-on work in compliance and risk management.

Nice To Haves

• Relevant professional certifications (e.g., CISSP, CCP, CISM, or equivalent), completion of bootcamps, or hands-on experience in compliance and security controls

Responsibilities

• Build relationships and communicate compliance requirements with academic, research, and clinical stakeholders, including Principal Investigators and external sponsors.
• Be the Subject Matter Expert on compliance topics, participating in committees and project teams to inform decisions and best practices.
• Independently partner with technology staff to validate physical, technical, and administrative controls and ensure alignment with compliance requirements.
• Lead or coordinate risk and gap assessments to identify needs and areas of concern and guide the development of solutions.
• Help design and implement compliant solutions for IS&T-run services.
• Oversee compliance-related projects, managing resources and deliverables.
• Monitor and investigate current and emerging compliance topics to inform strategic direction.

Benefits

• Time Off: In addition to PTO and leave policy, BU employees have a paid intersession break and 13 paid holidays.
• Retirement: University-funded retirement plan with full vesting after 2 years of eligible service.
• Tuition Assistance Program: Competitive tuition assistance program for yourself and family members.
• Check out https://www.bu.edu/wellness/ and https://www.bu.edu/hr/part-time-employee-perks/ for more information!
• Boston University IS&T invests in our staff and their personal and professional growth. We promote staff learning including lunch and learn sessions, an extensive library of online courses, Fun Advisory Board (FAB) arranges a number of events throughout the year and opportunities to engage with peers at NERCOMP and EDUCAUSE events.