Share Email Opening
Title

Applications Security Manager 

Hiring Manager(s) FAITH PROCTOR  
Category Management  
Description

Posting Number: MGT-42-19-0919-V

Department: Administration & Infrastructure

Salary: $151,293.29

Special Note: The application security manager provides leadership on the future direction of IT systems. The incumbent provides insight into the impact and benefit of such systems by working with the software team and applications team to meet performance and supportability goals.

Position Summary: The application security manager reports to and works directly with the director of administration & infrastructure (A&I). The incumbent is responsible for the identification, tracking, mitigation, remediation, and verification of security vulnerabilities in software, systems, and application services, including network and application security of the organization. The operating systems are MS Server 2008 & 2012, Windows 7 & 8 (desktops) and software to include Microsoft SQL Server 2005, Exchange 2007/10, VMWare, SharePoint 2010/2013, Citrix, Microsoft Office 2010/2013 and AWS.

Position Responsibilities:

  • Monitor the security risk of the organization’s application portfolio.
  • Ensure that risk determination, status tracking, and risk acceptance processing are properly handled.
  • Proactively engage with security, software development, and product management stakeholders to ensure timely resolution of all security exposures.
  • Oversee and actively support the security assessment of applications using tools and techniques such as source code analysis, web vulnerability scanning, and manual testing techniques.
  • Coordinate departmental and cross-functional processes and projects; champion application security program interests.
  • Drive effective scheduling, risk and issue management and change management for these initiatives.
  • Participate in development and engineering efforts that include improvements to tools, processes, and technologies in support of security operations, process and productivity.
  • Develop, deploy, operate, maintain, support, and enhance security infrastructure and supporting tools such as Web Application Firewalls (WAFs), security assessment tools, issue tracking systems, and custom tools facilitating departmental processes.
  • Participate in all aspects of technology security service delivery including business case development, requirements analysis, architecture, design and development; product/service selection and procurement, testing, technology infrastructure implementation and deployment, operational process and procedure documentation, training; and internal marketing of security services.
  • Collaborate and coordinate with appropriate stakeholders throughout the organization to ensure that application security processes are appropriately engaged.
  • Monitor policies and standards to ensure that application security interests are appropriately addressed.
  • Produce and defend sound technical arguments that incorporate relevant technical and business considerations, as well as experience building consensus among stakeholders.
  • Coordinate and perform remedies to security issues including small-scale software development in support of systems that support risk management and application security processes.
  • Perform ad hoc analysis of security.
  • Develop IT security incident procedures and policies; follow IT security incident response and escalation procedures to ensure timely and effective handling of all situations.
 
Position Requirements
  • A Bachelor’s degree in computer science, business management or a related field is required; however, an MS in computer science or an MBA is highly desirable.
  • 8+ years of experience in IT with 4 years in a similar (hands-on) role.
  • Familiarity with CrowdStrike Remediation Tools and working with software written in open source languages.
  • Experience in programming, system administration, relational technology, telecommunications transaction processing and project management, is required.
  • Proficient understanding of all aspects of IT security.
  • Certification in CISSP, CompTIA Security+ preferred but not required.
  • Proficiency in penetration testing, IP port scans, firewall, proxy and IDS configurations and management, AD policy management, access controls, wireless security, VPN and encryption.
  • Knowledge of a variety of hardware and software, particularly Microsoft, VMware, BES, Exchange and Citrix is required.
  • Excellent written and oral communication skills, including the ability to confidently present to all levels of management with ability to effectively express complex technical concepts, is a must.
  • Proficient understanding of IP networking: Cisco, TCP/IP, Window Servers, network security, cloud technologies, VOIP, wireless and VPN.
  • Proficient understanding and experience in data center/server room build-out (power, network, racking, cooling, communication lines, etc.).
  • Proficient understanding in VMware ESX, SAN, monitoring tools, and operating systems (strong understanding of Windows Server 2012-2016).
  • Proficient understanding of software development practices, specifically software developed in Open Source Languages.
  • Ability to coach, mentor, and supervise both senior and junior members of a team, including proven ability to lead and develop a team.
  • Must be detailed oriented, analytical, and highly effective at decision making; results-driven, process oriented, and consistently serve as an advocate for our end users.
  • The successful candidate must be a proactive strategic thinker whose skills contribute to the efficient, systematic and cost-effective operation of AFT’s current and future system production enterprise.
  • Demonstrated ability to work well with people from many different disciplines with varying degrees of technical experience.
  • Experience working in a union environment and/or non-profit organization desirable.
 
Full-Time/Part-Time Full-Time  
Work Environment Work is generally performance in an office environment, but some travel is required.  
Position  
Close Date  
Created By  
Position Application Security Manager  
Close Date  
Created By Donna Kimbrue  
Number of Openings 1  
Exempt/Non-Exempt Exempt  
Open Date 1/13/2020  
Location Headquarters, Washington, DC  
About the Organization The American Federation of Teachers is a union of professionals that champions fairness; democracy; economic opportunity; and high-quality public education, healthcare and public services for our students, their families and our communities. We are committed to advancing these principles through community engagement, organizing, collective bargaining and political activism, and especially through the work our members do.  
EOE Statement The American Federation of Teachers is a union of professionals that champions fairness; democracy; economic opportunity; and high-quality public education, healthcare and public services for our students, their families and our communities. We are committed to advancing these principles through community engagement, organizing, collective bargaining and political activism, and especially through the work our members do. The AFT believes that a culturally diverse workforce advances our mission and we strongly encourage applications from under-represented communities of workers.

 

This position is currently not accepting applications.

To search for an open position, please go to http://AmericanFederationofTeachers.appone.com



WE ALSO RECOMMEND

Other Jobs Within Same Category
-- None found --



Other Jobs Within 60 Miles
Senior Associate, AFT Higher Education in Washington, District of Columbia
Posted on: 3/28/2024
[Apply Now]

Assistant Director, AFT Higher Education in Washington, District of Columbia
Posted on: 3/28/2024
[Apply Now]

National Representative I-IV in N/A, N/A
Posted on: 2/28/2024
[Apply Now]

Administrative Assistant, AFT Public Employees in Washington, District of Columbia
Posted on: 3/28/2024
[Apply Now]

File Processing Coordinator in Washington, District of Columbia
Posted on: 3/28/2024
[Apply Now]



 


 
Click here for technical assistance.