What are the responsibilities and job description for the Integrated Risk Management (IRM) Tool Developer position at George Mason University?
Department: Information Technology
Classification: Info Technology Spec 2
Job Category: Classified Staff
Job Type: Full-Time
Work Schedule: Full-time (1.0 FTE, 40 hrs/wk)
Location: Fairfax, VA
Workplace Type: Hybrid Eligible
Pay Band: 05
Salary: Salary commensurate with education and experience
Criminal Background Check: Yes
About The Department
George Mason University's Information Technology Services (ITS) organization provides information technology resources, systems, services, tools, and training to the university community. ITS' mission is to deliver enabling technology to the George Mason community by leveraging reliable and secure services. The organization consists of six groups: Enterprise Infrastructure Services, Enterprise Applications, Learning Support Services, IT Security Office (ITSO), Enterprise Service Delivery; Academic Strategies, and dotted line reporting to Research Computing.
The IT Risk and Compliance (ITRC) team works closely with other ITS groups to define and document service designs and strategies, promote the adoption and practice of consistent policies and processes, and, jointly with the IT Security Office, to identify and mitigate risk and compliance issues associated with ITS policies and processes. ITRC facilitates the Architectural Standards Review Board (ASRB) which, to ensure standards and legal obligations are met, reviews software for approval prior to purchase. Additionally, ITRC also provides audit support and coordination, oversight of the remediation activities, IT risk and compliance reporting, conducts Third-Party Risk Management (TPRM) activities, manages the application administration of the Archer Integrated Risk Management (IRM) tool, and oversees the delivery and enforcement of the IT Security Awareness training.
About The Position
The Integrated Risk Management (IRM) Tool Developer plans, directs, coordinates, and executes activities to develop and maintain the Integrated Risk Management (IRM) tool.
Responsibilities
Application Development and Administration
Other Duties As Assigned
For full consideration, applicants must apply for Integrated Risk Management (IRM) Tool Developer at https://jobs.gmu.edu/. Complete and submit the online application to include three professional references with contact information, and provide a Cover Letter/Letter of Intent with Resume for review.
Posting Open Date: January 6, 2025
Posting Close Date: January 17, 2025
Open Until Filled: No
Mason Ad Statement
Mason is currently the largest and most diverse university in Virginia with students and faculty from all 50 states and over 135 countries studying in over 200 degree programs at campuses in Arlington, Fairfax and Prince William, as well as at learning locations across the commonwealth. Rooted in Mason’s diversity is a campus culture that is both rewarding and exciting, work that is meaningful, and opportunities to both collaborate and create.
If you are interested in joining the Mason family take a look at our current opportunities and catch some Mason spirit at jobs.gmu.edu/!
George Mason University, Where Innovation is Tradition.
Equity Statement
George Mason University is an equal opportunity/affirmative action employer, committed to promoting inclusion and equity in its community. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any characteristic protected by law.
Campus Safety Information
Mason’s Annual Security and Fire Safety Report is available at http://police.gmu.edu/annual-security-report/
Classification: Info Technology Spec 2
Job Category: Classified Staff
Job Type: Full-Time
Work Schedule: Full-time (1.0 FTE, 40 hrs/wk)
Location: Fairfax, VA
Workplace Type: Hybrid Eligible
Pay Band: 05
Salary: Salary commensurate with education and experience
Criminal Background Check: Yes
About The Department
George Mason University's Information Technology Services (ITS) organization provides information technology resources, systems, services, tools, and training to the university community. ITS' mission is to deliver enabling technology to the George Mason community by leveraging reliable and secure services. The organization consists of six groups: Enterprise Infrastructure Services, Enterprise Applications, Learning Support Services, IT Security Office (ITSO), Enterprise Service Delivery; Academic Strategies, and dotted line reporting to Research Computing.
The IT Risk and Compliance (ITRC) team works closely with other ITS groups to define and document service designs and strategies, promote the adoption and practice of consistent policies and processes, and, jointly with the IT Security Office, to identify and mitigate risk and compliance issues associated with ITS policies and processes. ITRC facilitates the Architectural Standards Review Board (ASRB) which, to ensure standards and legal obligations are met, reviews software for approval prior to purchase. Additionally, ITRC also provides audit support and coordination, oversight of the remediation activities, IT risk and compliance reporting, conducts Third-Party Risk Management (TPRM) activities, manages the application administration of the Archer Integrated Risk Management (IRM) tool, and oversees the delivery and enforcement of the IT Security Awareness training.
About The Position
The Integrated Risk Management (IRM) Tool Developer plans, directs, coordinates, and executes activities to develop and maintain the Integrated Risk Management (IRM) tool.
Responsibilities
Application Development and Administration
- Provides administration & application support for the Integrated Risk Management (IRM) tool;
- Performs development and administration, automation, advanced workflow and configuration functions;
- Leads business requirements refinement with requestors and stakeholders;
- Integrates the IRM tool with other applications using Data Feeds / APIs as needed;
- Leads technical design of solutions to meet business requirements for functional enhancements that are high to moderate complexity and ensures technical designs are supportable, efficient, and scalable;
- Under general guidance from manager and senior staff, analyzes processes and workflows, and develops process maps and documentation in accordance with established ITS standards;
- Creates, periodically review and updates related documentation;
- Advises and supports partners and stakeholders during User Acceptance Testing;
- Manages and supports access provisioning and access reviews for the tool;
- Creates reports and dashboards;
- Conducts outreach and participates in events to communicate and train user groups about the tool;
- Reviews, triages, and responds to appropriate tickets in support of team activities related to the risk and compliance function;
- Participates in IRM tool related change, disaster recovery and business continuity, resiliency, and incident response exercises;
- Resolves production support tickets (ex. access issues, data correction, break/fix, etc.), as needed, including performing root cause analysis);
- Serves as overall application administrator and developer for the IRM tool, and performs activities to maintain the software and functionalities; and
- Participates in department and university programs and projects as needed to represent the ITS and/or IT Risk and Compliance services.
- Gathers and understands requirements, translates into implemented workflows and functionality within the IRM function and tool;
- Assists in triage of and responding to customer requests; and
- Supports risk and compliance activities including assessments and audits.
Other Duties As Assigned
- Associate’s degree in related field or the equivalent combination of education and experience;
- Hands-on experience in developing and customizing Archer IRM solution to meet business needs;
- Hands-on experience in configuring and managing access controls, user roles, and permissions within the Archer platform;
- Experience in API integrations;
- Experience in designing, implementing, and maintaining Archer applications, including data feeds, advanced workflows, and dashboards;
- Experience maintaining the application and developing in Archer Integrated Risk Management (IRM) platform at a university or institution of higher education;
- Knowledge of Archer on-demand applications and content offerings;
- Knowledge of scripting and coding needed to support the Archer IRM tool;
- Knowledge of software development lifecycle and change management processes;
- Knowledge of risk, controls, and assurance methods and practice;
- Excellent oral and written communications and interpersonal skills;
- Ability to gather requirements, design, and implement workflows in Archer IRM;
- Ability to create and maintain associated documentation;
- Ability to train users and stakeholders on using the applications within the Archer IRM tool;
- Ability to solicit feedback and incorporate, research options and help continually improve the adoption and use of the Archer IRM tool;
- Ability to learn quickly and pivot to changing technologies and methods, when needed;
- Ability to collaborate with business analysts and stakeholders to gather requirements and translate them into Archer solutions;
- Attention to detail;
- Must possess critical thinking, ability to connect the dots, question status-quo and present credible challenge;
- Demonstrated commitment to continual learning;
- Must be a U.S. Citizen or Permanent Resident (Green Card holder), and successfully complete a criminal background check as required by federal law; and
- Archer related trainings and certifications -preferred but not required: CISSP, CRISC, Security or similar certifications, VMWare, Cloud certifications.
- Bachelor’s degree in related field;
- Experience using Azure, AWS, or GCP for hosting applications;
- Experience in executive level reporting and creating dashboards;
- Experience in automating manual processes and workflows for better efficiencies;
- Knowledge of other integrated risk management tools and methods; and
- Knowledge of cloud technologies such as Azure, AWS, and GCP.
For full consideration, applicants must apply for Integrated Risk Management (IRM) Tool Developer at https://jobs.gmu.edu/. Complete and submit the online application to include three professional references with contact information, and provide a Cover Letter/Letter of Intent with Resume for review.
Posting Open Date: January 6, 2025
Posting Close Date: January 17, 2025
Open Until Filled: No
Mason Ad Statement
Mason is currently the largest and most diverse university in Virginia with students and faculty from all 50 states and over 135 countries studying in over 200 degree programs at campuses in Arlington, Fairfax and Prince William, as well as at learning locations across the commonwealth. Rooted in Mason’s diversity is a campus culture that is both rewarding and exciting, work that is meaningful, and opportunities to both collaborate and create.
If you are interested in joining the Mason family take a look at our current opportunities and catch some Mason spirit at jobs.gmu.edu/!
George Mason University, Where Innovation is Tradition.
Equity Statement
George Mason University is an equal opportunity/affirmative action employer, committed to promoting inclusion and equity in its community. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any characteristic protected by law.
Campus Safety Information
Mason’s Annual Security and Fire Safety Report is available at http://police.gmu.edu/annual-security-report/
