Requirements
-Roles, responsibilities, and processes that dictate the flow of information and decision making around: CUI project notification, access control, background check vetting, Sponsor contract language/requirements, research requests, multi-university research collaborations.
-Non-Technical security processes and compliance governance that include but are not limited to, self-assessment audits, reporting out of audit scores and potential compliance risks, security awareness training, incident response and risk management both physical and digital.
-Self-auditing of CMMC framework for long-term growth and compliance, change management, and reporting on measurable program gains/benefits to Mines, and financial processes for research contract charges.