Systems Administrator, Security & Compliance, Research Computing

Systems Administrator, Security & ComplianceAbout Empire AIEmpire AI is establishing New York as the national leader in responsible artificial intelligence. Backed by a consortium of top academic and research institutions including Columbia University, Cornell University, NYU, CUNY, RPI, SUNY, University of Rochester, RIT, Mount Sinai, and Flatiron Institute.By leveraging the state's rich academic resources and research institutions, Empire AI is driving innovation in fields like medicine, education, energy, and climate change—all while giving New York's researchers access to computing resources that are often prohibitively expensive and only available to big tech companies, fueling statewide innovation, driving economic growth, and preparing a future-ready AI workforce to tackle society's most complex challenges.The initiative is funded by $500+ million in public and private investments, State Capital Grant, Academic Institutions, Simons Foundation, Flatiron Institute, and Tom Secunda (Co-Founder of Bloomberg).Position SummaryThe Systems Administrator, Security & Compliance will implement, maintain, and enforce security controls across Empire AI's high-performance computing infrastructure, ensuring com UI pliance with healthcare and research data protection regulations including HIPAA, NIST 800-171, and NIH Genomic Data Sharing (GDS) policies.Reporting to the Manager, AI/ML Systems Administration, this role is responsible for securing HPC systems that span multiple academic and research institutions. The Systems Administrator, Security & Compliance ensures that cutting edge AI workloads operate within compliant, hardened environments while enabling researchers to work efficiently with sensitive and regulated datasets.Duties and ResponsibilitiesSecurity Architecture & ImplementationImplement and maintain security controls for Empire AI's shared and distributed HPC environments in alignment with HIPAA Security Rule requirements (Administrative, Physical, and Technical Safeguards)Deploy and manage secure enclave configurations for regulated data workflows, including PHI and controlled access genomic dataImplement encryption solutions for data at rest and in transit across heterogeneous storage platformsCompliance & AuditEnsure platform compliance with HIPAA, NIST 800-171, NIH GDS, and institutional IRB requirementsDevelop and maintain security policies, procedures, and standards documentation aligned with regulatory frameworksConduct regular security assessments, vulnerability scans, and risk analyses; coordinate remediation effortsPrepare for and support internal and external audits; maintain evidence of compliance controlsPartner with institutional compliance, legal, and privacy officers on data use agreementsTrack and report on security metrics, incidents, and compliance posture to leadershipMonitoring & Incident ResponseDeploy and manage SIEM solutions, log aggregation, and security monitoring across HPC clusters and research infrastructureDevelop and execute incident response procedures for security events and potential data breachesInvestigate security incidents, document findings, and implement corrective actionsEnsure audit log retention and integrity in accordance with HIPAA and institutional requirementsSystems Hardening & Vulnerability ManagementHarden Linux-based HPC clusters and GPU computing environmentsManage patch management processes and ensure timely remediation of vulnerabilities across infrastructureSecure containerized and virtualized research environments (Apptainer, Docker, Kubernetes)Collaboration & TrainingConsult with research teams on secure handling of sensitive data, including PHI, PII, and controlled access datasetsDevelop and deliver security awareness training for researchers and staff, with emphasis on HIPAA requirements and secure computing practicesTranslate user feedback and researcher needs into security configurations that balance protection with usabilityPartner with the AI/ML Systems Administration team to ensure security is integrated into system design and workload orchestrationDocumentation & Continuous ImprovementMaintain clear security documentation, configuration guides, and compliance runbooksContribute to technical reports, grant proposals (security/compliance sections), and risk assessmentsEvaluate emerging security tools, technologies, and best practices; make procurement recommendationsParticipate in special security initiatives aligned with Empire AI's mission and growthMinimum QualificationsBachelor's degree in Computer Science, Cybersecurity, Information Systems, Engineering, or related technical field5+ years of experience in systems administration with a focus on security3+ years of direct experience with HIPAA compliance in healthcare, research, or regulated environmentsStrong knowledge of HIPAA Security Rule, Privacy Rule, and Breach Notification RuleHands-on experience with Linux-based systems, HPC clusters, and job schedulers (e.g., Slurm)Experience with security tools, SIEM platforms and vulnerability scannersProficiency in scripting and automation (Python, Bash, or PowerShell)Demonstrated success collaborating with researchers or supporting scientific computing projectsPreferred QualificationsMaster's degree in Cybersecurity, Computer Science, Information Assurance, or related technical field, or equivalent professional experienceSecurity certifications such as CISSP, CISM, HCISPP (HealthCare Information Security and Privacy Practitioner), CompTIA Security+, or equivalentFamiliarity with Science DMZ network architecture for high-performance research data transfersExperience with compliance frameworks beyond HIPAA: NIST 800-171, NIST 800-53, NIH GDS, FISMA, or HITRUSTExperience securing GPU computing environments and AI/ML infrastructureFamiliarity with securing containerized workloads (Docker, Kubernetes, Apptainer) in research settingsExperience supporting or collaborating within academic or industry research environmentsBackground in securing environments for sensitive research data (genomic data, clinical data, human subjects research)