Research Information Security Manager

Key responsibilities include but are not limited to the following:

Research Information Security

In coordination with university units (Information & Infrastructure Assurance [IIA], Information Technology Services [ITS], Advanced Research Computing [ARC], Office of Sponsored Projects [ORSP]) and Schools/Colleges support a comprehensive program for research projects requiring information security controls, including compliance with CUI requirements in federal contracts.

In collaboration with ORSP review research agreements that include enhanced security requirement clauses to determine if they apply to the sponsored project.

Assist ORSP Project Representatives to get clarification from the sponsor and/or negotiate the contract clauses when necessary.

Work with the Principal Investigator (PI), school/college representatives, IIA, and unit IT to develop the appropriate security plan and provide ongoing management.

Maintain accurate records of all contract security reviews and related documentation.

Serve as a resource and liaison to faculty and administrators for the RISO program and other security compliance requirements.

In collaboration with compliance offices, conduct ongoing monitoring of sponsored programs to ensured continued compliance with security requirements.

Provide CUI and similar training to affected U-M personnel.

Monitor changes in CUI and similar security requirements affecting U-M training, policies, and procedures and take necessary action to keep them current.

Assist with the U-M planning effort to develop and deploy CUI services across the U-M research community.

Enter and maintain information in the Supplier Performance Risk System (SPRS) and similar sites as needed.

Maintain and manage applicable RISO program security records for U-M and affected personnel, affiliates, and subcontractors in accordance with CUI and other agency security requirements.

Draft documents to include business process guidelines, standard operating procedures, compliance assessments, self-inspections, approval letters, agendas, and correspondences.

Draft and implement RISO management plans and policies.

Maintain and update RISO websites.

Complete online and in-person security training as needed.

Travel and attend security conferences, seminars, and meetings as needed.

NISPOM

Execute security officer duties and responsibilities in the National Industrial Security System (NISS), Defense Information System for Security (DISS), National Background Investigation Services (NBIS), Secure Web Fingerprint Transmission (SWFT), and similar sites as necessary. 

Initiate, review, approve and maintain U-M employee security clearance applications and subsequent adjudications.

Facilitate initial, recurring, and annual security trainings, briefings, debriefings, and indoctrinations of affected U-M personnel. 

Act as the U-M counterintelligence and threat analyst to identify potential security threats, brief U-M Key Management Personnel (KMP), assist in threat mitigation efforts, and serve as the U-M primary point of contact with Federal counterintelligence and threat analysts.

Inform and coordinate U-M NISPOM status with the Facility Clearance Executive Committee (FCL-EC), Senior Management Official (SMO), and KMP 

Manage classified materials in accordance with the NISPOM and through coordination with Federal agencies. 

Facilitate the U-M Insider Threat Program (ITP) and Working Group (ITPWG). 

Administer U-M NISPOM visit authorizations and classified meeting requirements. 

Manage the U-M NISPOM foreign travel program. 

Maintain required documentation, participate in, and conduct annual NISPOM self-inspections and resolve findings. 

Prepare for, participate in, and respond to annual security reviews. 

Facilitate establishment and operation of NISPOM open storage areas and sensitive compartmented information facilities (SCIF) as needed and in accordance with Federal standards and requirements.

Facility Security Officer Training and Certification 

The incumbent will complete Facility Security Officer (FSO) and Insider Threat training and certification and act as a liaison between the University and the government to ensure the University's employees understand and comply with government security requirements to handle classified information.

Have or qualify for and maintain U.S. classified security clearance. 

Working knowledge and experience with information security policies, controls, and practices.

Ability to analyze, interpret and explain complex statutes, regulations, policies, and the terms and conditions of grants, cooperative agreements, contracts, and subcontracts. 

Bachelor's degree or equivalent combination of education and experience. 

Outstanding attention to detail and excellent organizational skills.

Demonstrated ability to navigate complex web-based systems. 

Experience handling highly sensitive information with a demonstrated ability to use sound judgment and diplomacy. 

Strong working knowledge of applications such as Microsoft Word, Excel, Power Point, Google workspace and Adobe Creative Suite. 

Ability to make sound decisions and employ effective problem-solving techniques. 

Excellent interpersonal skills, including strong active listening skills, highly developed emotional intelligence, ability to work well as a team member, and a positive attitude. 

Ability to work independently, prioritize work and multitask in a time sensitive, high volume work environment. 

A commitment to personal and professional integrity, and a strong sense of accountability.