Research Information Security Officer (RISO) - UMKC Information Services

Hiring Department

Department of Information Security

Job Description

Position Summary

The Research Information Security Officer (RISO) provides leadership and oversight for UMKC’s research-specific information security and compliance program, ensuring protection of research data and adherence to federal, sponsor, and institutional requirements.

The Research Information Security Officer is mission critical to protecting research integrity, ensuring compliance with federal and sponsor requirements, and enabling UMKC to compete successfully for research funding involving sensitive or controlled data. Position will be responsible for coordination between IT, the Office of Research and Innovation, Missouri Institute for Defense & Energy, and researchers themselves to ensure that our research activities meet security & compliance requirements from state/federal agencies and from granting agencies (including sponsor compliance, regulated data protection, and specialized research computing environments).

Essential Duties & Responsibilities

• Develop and maintain research-focused information security policies aligned with federal and sponsor requirements.
• Develop and manage the frameworks, processes, tools and consultancy necessary for IT to properly manage risk and to make risk-based decisions related to IT activities.
• Oversee risk assessments for research projects involving sensitive or regulated data.
• Design and maintain secure research computing environments.
• Manage incident response for research systems and sponsor-regulated data. Conducts complex investigations; prepares written findings, recommendations and follow up evaluation; and analyzes patterns and trends.
• Ensure compliance with NIST SP 800-171, CMMC, DFARS, NIH, NSF, and other federal and sponsor requirements.
• Provide specialized security training for research personnel. Advise leadership on emerging research security risks.

Minimum Qualifications

Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field.

Experience with research cybersecurity or research compliance.

Knowledge of NIST frameworks including NIST SP 800-171.

Professional certifications (e.g., CISSP, CISM, CRISC).

This position requires eligibility for and the ability to obtain and maintain a Top Secret / Sensitive Compartmented Information (TS/SCI) security clearance. Employment is contingent upon the successful completion of a background investigation and continued eligibility for access to classified information in accordance with applicable federal regulations.

U.S. citizenship is required for this position due to the nature of the work and contractual requirements with federal sponsors

Preferred Qualifications

Master’s degree in Cybersecurity, Information Assurance, Research Administration, or related discipline.

Experience in higher education, federal contracting, or research environments.

Familiarity with NIST 800.171, CMMC, DFARS 7012, CTSA, HIPAA regulated research, IRB workflows, and secure enclave practices. - Certifications such as CISSP, CISM, or CRISC.

Knowledge and understanding of higher education, governmental agency or corporate/industry information security, governance, risk and compliance practices and standards

Prior experience supporting CMMC certification/readiness or similar compliance assessments (e.g., NIST 800-171).

Experience in GRC (governance, risk management, compliance), including control documentation and audit support.

Working knowledge of Microsoft 365 administration and security controls.

Systems administration experience in Windows and/or Linux environment

Anticipated Hiring Range

The anticipated hiring range for this position has been established as $110,000.00 - $120,000.000 annually.

Salary is determined by a variety of factors, including but not limited to, the individual’s particular combination of education, skills, and experience, as well as organizational requirements.

Your total compensation goes beyond the number on your paycheck. The University of Missouri provides generous leave, health plans, and retirement contributions that add to your bottom line.

Grade: GGS 13
University Title: INFORMATION SECURITY OFFICER
To review the University of Missouri’s Staff Compensation Structure you can view the Job Code detail page. Internal applicants can determine their university title by accessing the Talent Profile tile in myHR.

Application Deadline

Application review will begin immediately. Ideal start date is July 1, 2026

Sponsorship Information

Visa Sponsorship Information:
Applicants must be authorized to work in the United States. The University will not sponsor applicants for this position for employment visas.