Job Description

Position Summary
The Associate Director, Research Data Management & Security is a mission-critical role that supports governance, operational security, and revenue protection for the University’s global research enterprise. This position functions as a strategic and operational hub and partners with others to implement federal mandates—including NSPM-33 and the CHIPS and Science Act—to safeguard the University’s research portfolio from financial, legal, and reputational risk. As a core member of a collaborative, multi-unit team, the Associate Director supports faculty and researchers in maintaining transparency in their activities and associations. They identify and mitigate research security risks by conducting comprehensive risk assessments for research data, federal contracts, and visiting scholar applications. This position acts as a strategic partner to faculty and university units to design research security plans for high-value research assets and manages the full research data lifecycle. The Associate Director negotiates complex Data Transfer and Use Agreements (DTUAs) and provides oversight and guidance to the research community during proposal submissions and negotiations for federal contracts subject to FAR/DFAR cybersecurity and dissemination restrictions. The Associate Director ensures a balance between openness and the security of research assets. As a member of the teams fulfilling stewardship responsibilities to sponsors and data providers, the Associate Director plays a critical role in maintaining the University’s standing as a compliant and high-performing institution for global research. This role serves as the operational bridge between the Global Office of Information Security (GOIS), Research Information Technology, the Office of Sponsored Programs (OSP), Contracts and Collaborations, the Office of Conflict of Interest (COI), Export and Trade Compliance, Technology Opportunities and Ventures (TOV), Finance and Procurement, and the Libraries.

Qualifications
Required Education:
Bachelor's Degree

Preferred Education:
Juris Doctorate (J.D.) or Master's degree A legal degree is highly preferred given the fiduciary responsibilities, the complexity of federal Science & Technology (S&T) mandates, and the understanding and implementation of various laws, including those governing data security, research security, and Export Controls.

Required Experience:
7+ years Experience working in research administration; specific work scope to include federal contracting, export compliance, intellectual property and technology transfer, data governance, and/or research security compliance within a global research university or federal setting. Experience leading working groups in developing policies and procedures that reduce administrative burden for faculty, researchers, and administrators. Proven experience with relationship management and navigating a 'hub-and-spoke' model, coordinating simultaneously with many administrative units, faculty, researchers and visitors.

Required Skills, Knowledge and Abilities:
Federal Fluency: Deep operational and knowledge and federal contract negotiation experience under NSPM-33, NIST 800-171, and the FAR/DFARS. Working knowledge of export control regulations, Bayh-Dole, the DOJ Bulk Data Rule, GDPR and other privacy laws. Ability to use data visualization tools (e.g., Tableau) to track compliance metrics and identify high-risk institutional trends. Federal Mandates: Expert knowledge of the FARs and DFARs, NSPM-33, the CHIPS & Science Act, and the NIH Data Management and Sharing (DMS) Policy. Proficiency with Restricted Party Screening (RPS) tools and electronic Research Administration (eRA) systems (e.g., Cayuse, InfoEd, ERACommons, Research.gov). Ability to use Research Data Management Systems (RDMS) for handling Controlled Unclassified Information (CUI). Export Controls: Comprehensive understanding of ITAR (International Traffic in Arms Regulations) and EAR (Export Administration Regulations) preferred. Privacy & Legal Frameworks: Deep familiarity with GDPR, HIPAA, and the False Claims Act as it relates to federal research funding certification. Risk Assessment: Skilled in conducting complex research reviews and risk assessments for both domestic and international research projects. Data Lifecycle Management: Proficiency in conducting data risk assessments and in using Research Data Management Systems (RDMS) to track, categorize, and inventory research data. Ability to use data visualization tools (e.g., Tableau) to track compliance metrics and identify high-risk institutional trends Excellent writing and communication skills: Ability to communicate clearly and succinctly in writing and verbally so as to convey actionable and understandable directives. Professional Abilities Fiduciary Mindset: A strong sense of accountability toward the Board of Trustees and federal sponsors to protect the university’s revenue and reputation. Cross-Functional Diplomacy: Ability to build 'capacity' by collaborating with Information Security (GOIS), Export Compliance (OEC), and diverse faculty groups. Strategic Communication: Superior ability to translate dense federal security regulations into clear, actionable advice for the academic community.

Additional Information
In compliance with NYC's Pay Transparency Act, the annual base salary range for this position is USD $140,000.00 to USD $160,000.00. New York University considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as, market and organizational considerations when extending an offer. This pay range represents base pay only and excludes any additional items such as incentives, bonuses, clinical compensation, or other items.