University of Utah
Overview
Job Summary
The University of Utah’s Center for High Performance Computing ( CHPC ) seeks a Compliance Analyst to support cybersecurity and regulatory compliance for research projects involving regulated data. This role coordinates with institutional offices ( ISO, IRB, Privacy Office, GRC ) and research teams to ensure secure and compliant operations across CHPC systems. This role is part of a small, embedded security & compliance team with ample opportunities for cross training and skill growth.
Responsibilities
Serve as primary contact for CHPC regulated research compliance coordination.
Coordinate background checks and regulatory prerequisites for research personnel.
Research and interpret security requirements in collaboration with campus compliance offices.
Maintain and update policies, procedures, and acceptable use documentation.
Liaise with university departments to resolve outdated or unclear compliance practices.
Manage project documentation, including Needs Assessments and regulated research records.
Lead and document compliance meetings; assign and track action items.
Coordinate and track required user training for secure computing environments.
Monitor and respond to project-related tickets and communications.
Oversee IRB closeout processes
Coordinate with other offices to ensure required documentation is in place (e.g., BAAs, NDAs, ISAFs).
Support security & compliance audit preparation.
Minimum Qualifications
Requires a bachelor’s degree in a related area or equivalency (one year of education can be substituted for one year of related work experience) and 2-4 years of experience in the field or in a related area.
Familiarity with federal regulations such as NIST SP 800-171, CMMC, HIPAA, etc.
Strong organizational, communication, and documentation skills.
Equivalency Statements
Equivalency Statement: 1 year of higher education can be substituted for 1 year of directly related work experience (Example: bachelor’s degree = 4 years directly related work experience).
Security Compliance Analyst Roles
Security Compliance Analyst, II: Requires a bachelor’s (or equivalency) + 4 years or a master’s (or equivalency) + 2 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Security Compliance Analyst, III: Requires a bachelor’s (or equivalency) + 6 years or a master’s (or equivalency) + 4 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Security Compliance Analyst, IV: Requires a bachelor’s (or equivalency) + 8 years or a master’s (or equivalency) + 6 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Preferences
Experience with cybersecurity governance, risk, & compliance ( GRC ).
Experience with IT ticketing systems, such as Service Now.
Familiarity with IRB processes.
Certifications such as Certified in Cybersecurity (CC), Security+, CRISC
Experience in higher education or regulated research environments.
Experience with compliance automation and compliance as code.
Type
Benefited Staff
Additional Information The University of Utah values candidates who have experience working in settings with students from diverse backgrounds and possess a strong commitment to improving access to higher education for historically underrepresented students. Veterans’ preference is extended to qualified applicants, upon request and consistent with University policy and Utah state law. Upon request, reasonable accommodations in the application process will be provided to individuals with disabilities. The University of Utah is an Affirmative Action/Equal Opportunity employer and does not discriminate based on race, ethnicity, color, religion, national origin, age, disability, sex, sexual orientation, gender, gender identity, gender expression, pregnancy, pregnancy-related conditions, genetic information, or protected veteran’s status. The University does not discriminate on the basis of sex in the education program or activity that it operates, as required by Title IX and 34 CFR part 106. Inquiries about the application of Title IX and its regulations may be referred to the Title IX Coordinator, to the Department of Education, Office for Civil Rights, or both.
To request a reasonable accommodation for a disability or if you or someone you know has experienced discrimination or sexual misconduct including sexual harassment, you may contact the Director/Title IX Coordinator in the Office of Equal Opportunity and Affirmative Action: Director/ Title IX Coordinator, Office of Equal Opportunity and Affirmative Action (OEO/AA), 383 University Street, Level 1 OEO Suite, Salt Lake City, UT 84112, 801-581-8365, oeo@utah.edu. Online reports may be submitted at oeo.utah.edu. For more information: https://www.utah.edu/nondiscrimination/. This position may require the successful completion of a criminal background check and/or drug screen.
#J-18808-Ljbffr
The University of Utah’s Center for High Performance Computing ( CHPC ) seeks a Compliance Analyst to support cybersecurity and regulatory compliance for research projects involving regulated data. This role coordinates with institutional offices ( ISO, IRB, Privacy Office, GRC ) and research teams to ensure secure and compliant operations across CHPC systems. This role is part of a small, embedded security & compliance team with ample opportunities for cross training and skill growth.
Responsibilities
Serve as primary contact for CHPC regulated research compliance coordination.
Coordinate background checks and regulatory prerequisites for research personnel.
Research and interpret security requirements in collaboration with campus compliance offices.
Maintain and update policies, procedures, and acceptable use documentation.
Liaise with university departments to resolve outdated or unclear compliance practices.
Manage project documentation, including Needs Assessments and regulated research records.
Lead and document compliance meetings; assign and track action items.
Coordinate and track required user training for secure computing environments.
Monitor and respond to project-related tickets and communications.
Oversee IRB closeout processes
Coordinate with other offices to ensure required documentation is in place (e.g., BAAs, NDAs, ISAFs).
Support security & compliance audit preparation.
Minimum Qualifications
Requires a bachelor’s degree in a related area or equivalency (one year of education can be substituted for one year of related work experience) and 2-4 years of experience in the field or in a related area.
Familiarity with federal regulations such as NIST SP 800-171, CMMC, HIPAA, etc.
Strong organizational, communication, and documentation skills.
Equivalency Statements
Equivalency Statement: 1 year of higher education can be substituted for 1 year of directly related work experience (Example: bachelor’s degree = 4 years directly related work experience).
Security Compliance Analyst Roles
Security Compliance Analyst, II: Requires a bachelor’s (or equivalency) + 4 years or a master’s (or equivalency) + 2 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Security Compliance Analyst, III: Requires a bachelor’s (or equivalency) + 6 years or a master’s (or equivalency) + 4 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Security Compliance Analyst, IV: Requires a bachelor’s (or equivalency) + 8 years or a master’s (or equivalency) + 6 years of directly related work experience. Assumes work equivalency (1 year of higher education can be substituted for 1 year of directly related work experience).
Preferences
Experience with cybersecurity governance, risk, & compliance ( GRC ).
Experience with IT ticketing systems, such as Service Now.
Familiarity with IRB processes.
Certifications such as Certified in Cybersecurity (CC), Security+, CRISC
Experience in higher education or regulated research environments.
Experience with compliance automation and compliance as code.
Type
Benefited Staff
Additional Information The University of Utah values candidates who have experience working in settings with students from diverse backgrounds and possess a strong commitment to improving access to higher education for historically underrepresented students. Veterans’ preference is extended to qualified applicants, upon request and consistent with University policy and Utah state law. Upon request, reasonable accommodations in the application process will be provided to individuals with disabilities. The University of Utah is an Affirmative Action/Equal Opportunity employer and does not discriminate based on race, ethnicity, color, religion, national origin, age, disability, sex, sexual orientation, gender, gender identity, gender expression, pregnancy, pregnancy-related conditions, genetic information, or protected veteran’s status. The University does not discriminate on the basis of sex in the education program or activity that it operates, as required by Title IX and 34 CFR part 106. Inquiries about the application of Title IX and its regulations may be referred to the Title IX Coordinator, to the Department of Education, Office for Civil Rights, or both.
To request a reasonable accommodation for a disability or if you or someone you know has experienced discrimination or sexual misconduct including sexual harassment, you may contact the Director/Title IX Coordinator in the Office of Equal Opportunity and Affirmative Action: Director/ Title IX Coordinator, Office of Equal Opportunity and Affirmative Action (OEO/AA), 383 University Street, Level 1 OEO Suite, Salt Lake City, UT 84112, 801-581-8365, oeo@utah.edu. Online reports may be submitted at oeo.utah.edu. For more information: https://www.utah.edu/nondiscrimination/. This position may require the successful completion of a criminal background check and/or drug screen.
#J-18808-Ljbffr