Share Email Opening Apply Now
Title

Applications Security Manager 

Category Management  
Description

Posting Number: MGT-42-19-0919-V

Department: Administration & Infrastructure

Salary: $151,293.29

Special Note: The application security manager provides leadership on the future direction of IT systems. The incumbent provides insight into the impact and benefit of such systems by working with the software team and applications team to meet performance and supportability goals.

Position Summary: The application security manager reports to and works directly with the director of administration & infrastructure (A&I). The incumbent is responsible for the identification, tracking, mitigation, remediation, and verification of security vulnerabilities in software, systems, and application services, including network and application security of the organization. The operating systems are MS Server 2008 & 2012, Windows 7 & 8 (desktops) and software to include Microsoft SQL Server 2005, Exchange 2007/10, VMWare, SharePoint 2010/2013, Citrix, Microsoft Office 2010/2013 and AWS.

Position Responsibilities:

  • Monitor the security risk of the organization’s application portfolio.
  • Ensure that risk determination, status tracking, and risk acceptance processing are properly handled.
  • Proactively engage with security, software development, and product management stakeholders to ensure timely resolution of all security exposures.
  • Oversee and actively support the security assessment of applications using tools and techniques such as source code analysis, web vulnerability scanning, and manual testing techniques.
  • Coordinate departmental and cross-functional processes and projects; champion application security program interests.
  • Drive effective scheduling, risk and issue management and change management for these initiatives.
  • Participate in development and engineering efforts that include improvements to tools, processes, and technologies in support of security operations, process and productivity.
  • Develop, deploy, operate, maintain, support, and enhance security infrastructure and supporting tools such as Web Application Firewalls (WAFs), security assessment tools, issue tracking systems, and custom tools facilitating departmental processes.
  • Participate in all aspects of technology security service delivery including business case development, requirements analysis, architecture, design and development; product/service selection and procurement, testing, technology infrastructure implementation and deployment, operational process and procedure documentation, training; and internal marketing of security services.
  • Collaborate and coordinate with appropriate stakeholders throughout the organization to ensure that application security processes are appropriately engaged.
  • Monitor policies and standards to ensure that application security interests are appropriately addressed.
  • Produce and defend sound technical arguments that incorporate relevant technical and business considerations, as well as experience building consensus among stakeholders.
  • Coordinate and perform remedies to security issues including small-scale software development in support of systems that support risk management and application security processes.
  • Perform ad hoc analysis of security.
  • Develop IT security incident procedures and policies; follow IT security incident response and escalation procedures to ensure timely and effective handling of all situations.
 
Position Requirements
  • A Bachelor’s degree in computer science, business management or a related field is required; however, an MS in computer science or an MBA is highly desirable.
  • 8+ years of experience in IT with 4 years in a similar (hands-on) role.
  • Familiarity with CrowdStrike Remediation Tools and working with software written in open source languages.
  • Experience in programming, system administration, relational technology, telecommunications transaction processing and project management, is required.
  • Proficient understanding of all aspects of IT security.
  • Certification in CISSP, CompTIA Security+ preferred but not required.
  • Proficiency in penetration testing, IP port scans, firewall, proxy and IDS configurations and management, AD policy management, access controls, wireless security, VPN and encryption.
  • Knowledge of a variety of hardware and software, particularly Microsoft, VMware, BES, Exchange and Citrix is required.
  • Excellent written and oral communication skills, including the ability to confidently present to all levels of management with ability to effectively express complex technical concepts, is a must.
  • Proficient understanding of IP networking: Cisco, TCP/IP, Window Servers, network security, cloud technologies, VOIP, wireless and VPN.
  • Proficient understanding and experience in data center/server room build-out (power, network, racking, cooling, communication lines, etc.).
  • Proficient understanding in VMware ESX, SAN, monitoring tools, and operating systems (strong understanding of Windows Server 2012-2016).
  • Proficient understanding of software development practices, specifically software developed in Open Source Languages.
  • Ability to coach, mentor, and supervise both senior and junior members of a team, including proven ability to lead and develop a team.
  • Must be detailed oriented, analytical, and highly effective at decision making; results-driven, process oriented, and consistently serve as an advocate for our end users.
  • The successful candidate must be a proactive strategic thinker whose skills contribute to the efficient, systematic and cost-effective operation of AFT’s current and future system production enterprise.
  • Demonstrated ability to work well with people from many different disciplines with varying degrees of technical experience.
  • Experience working in a union environment and/or non-profit organization desirable.
 
Full-Time/Part-Time Full-Time  
Work Environment Work is generally performance in an office environment, but some travel is required.  
Position Application Security Manager  
Close Date  
Number of Openings 1  
Exempt/Non-Exempt Exempt  
Req Number MAN-19-00008  
Open Date 1/13/2020  
Location Washington  
About the Organization  
EOE Statement We are an equal employment opportunity employer. AFT is committed to building a culturally diverse workforce and strongly encourages applications from women, people of color, individuals with disabilities and veterans. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.  

This position is currently accepting applications.

Apply Now



WE ALSO RECOMMEND

Other Jobs Within Same Category
Acting Regional Director, Southwest & Mountain Region in Austin, TX
Posted on: 8/5/2020
[Apply Now]

Deputy Chief Financial Officer in Washington, DC
Posted on: 5/6/2020
[Apply Now]


Other Jobs Within 60 Miles
Deputy Chief Financial Officer in Washington, DC
Posted on: 5/6/2020
[Apply Now]

Senior Associate in Washington, DC
Posted on: 9/18/2020
[Apply Now]

Senior Associate in Washington, DC
Posted on: 7/17/2020
[Apply Now]

Assistant Director, AFT Nurses & Health Professionals in Washington, DC
Posted on: 2/20/2020
[Apply Now]

National Representative I-IV in Washington, DC
Posted on: 12/12/2019
[Apply Now]



 


 
Click here for technical assistance.