Research Data Security Project Manager

UVA Health

1d•Hybrid

About The Position

The Office of the Vice President for Research at the University of Virginia seeks a Research Data Security Project Manager. This position will be tasked with coordinating the university’s implementation and compliance with CMMC certification as well as not yet released cybersecurity elements applicable to all IT assets (individual, department, school or centrally managed in the Academic Division and Health System) that support the conduct, analysis and reporting of federally funded research. The project manager will be responsible for planning, organizing, and controlling resources/processes to achieve project/program objectives within scope, time, quality, and budget constraints. The position will spend the majority of time leading the design, implementation or delivery of processes, programs and policies using specialized knowledge and skills. Due to the nature of the compliance programs this position supports, this position is only open to U.S. persons, essentially U.S. citizens and lawful permanent residents. This position is a restricted 2-year term appointment, with possibility of renewal.

Requirements

Knowledge of IT risk management principles and practices and other cyber security frameworks
Ability to work independently but within a clear escalation framework
Experience managing a matrix-resourced project
Experience working in a decentralized environment
Ability to coordinate with related projects to ensure alignment
Ability to prioritize and balance work demands.
Outstanding written and verbal communication skills.
Ability to follow established procedures, including documentation of outcomes or results.
Education: Bachelor’s degree
Experience: 4+ years of relevant professional experience required, 5+ years strongly preferred (PMP certification highly recommended)

Nice To Haves

Knowledge of CMMC Requirements
Familiarity with sponsored research processes and associated regulatory requirements

Responsibilities

Lead and coordinate the University’s implementation of Cybersecurity Maturity Model Certification (CMMC) requirements for federally funded research.
Develop and manage project plans, timelines, and deliverables to ensure progress toward institutional cybersecurity compliance objectives.
Coordinate with central IT, school and departmental IT units, and research administration stakeholders in a decentralized environment.
Support development and implementation of policies, procedures, and controls necessary to meet CMMC and related federal cybersecurity requirements.
Track compliance activities including gap assessments, remediation plans, and documentation supporting certification readiness.
Facilitate the development of budget requests
Prepare project status updates, risk reports, and briefing materials for institutional leadership and governance bodies.
Support institutional readiness for external assessments, audits, and certification activities related to research cybersecurity compliance.