Security Delivery Associate Manager

The Security Architecture Specialists will work in the Security Architecture, Engineering and Risk (ITSER) Tower in the CISO organization. The Specialist will work directly on the AFS IT Security Engineering (ITSR) team within our tower.

1. Working to ensure that IT solutions are tracked during the build process to incorporate secure designs and business priorities.
2. The candidate will have experience in one or more of the following areas:  cloud security, application security, network security, security plans/procedures, protecting systems from security risk, security data analysis tools, or data security.
3. Collaborate with variety of different technology teams within IT and IS to promote collaboration on secure engineering practices.
4. Coordinate with IT and Security stakeholders to develop security requirement with understanding of external regulations and best practices as well as unique business needs and capabilities. 

The primary responsibilities of this role include providing day-to-day tracking of ATO projects and Security Reviews for IT Security Engineering (ITSE), which involves maintaining project tracking sheets, updating the summary project tracker, and delivering weekly status reports on all new applications, re-ATOs, and Security Reviews. The position works closely with the ITSE lead to document strategies, IT intake workflows, and compliance documentation flows. It also requires implementing and interpreting ITAE work processes while coordinating with other compliance processes such as Continuous Monitoring (ConMon). Additional duties include participating in ITSE activities such as control assessments for applications and contributing to process improvements. The role involves creating documentation for new processes, updating Standard Operating Procedures (SOPs) during the annual cycle or as needed, and collaborating with the ITSE lead and project stakeholders to review requirements, update documentation, and ensure objectives are met. Responsibilities also include supporting ATO and Security Review development, assessing service requirements and deliverables, coordinating meetings with application stakeholder teams to gather responses, and reviewing documents for completeness while escalating issues to the ITAE team lead and following up as necessary. The position requires attending department, tower, and other assigned meetings, as well as collaborating with colleagues in Security Architecture, Engineering, and the Risk tower.

Here's What You Need:

• U.S. Citizen Required
• 5+ years of working experience information security or relevant experience.
• Experience with NIST 800-171 r2 and  NIST 800-53
• Knowledge of US Security requirements
• Good foundational understanding of policy, standard, procedure and baseline structure.
• Openness to, and ability to deal with, rapid change in business needs, processes and technologies
• General project management skills to:   - Create task structures and delivery timelines   - Understand resource allocation and constraints   - Identify, assessing, and mitigating delivery risks   - Document and follow up on ATO / Security Review issues   - Create and deliver ATO /  Security Review  status updates   - Track deliverables and process flow   - Understand ATO / Security Review timelines /Constraints   - Identify and managing scope changes 

Bonus if you have: