Position Description: Mathematica applies expertise at the intersection of technology, data, methods, policy, and practice to improve well-being around the world. We collaborate closely with public- and private-sector partners to translate big questions into deep insights that improve programs, refine strategies, and enhance understanding using technology and advanced analytics. Our work yields actionable information to guide decisions in wide-ranging policy areas, from health, education, early childhood, and family support to nutrition, employment, disability, and international development. Mathematica offers our employees competitive salaries, and a comprehensive benefits package, as well as the advantages of being 100 percent employee owned. As an employee stock owner, you will experience financial benefits of ESOP holdings that have increased in tandem with the company’s growth and financial strength. You will also be part of an independent, employee-owned firm that is able to define and further our mission, enhance our quality and accountability, and steadily grow our financial strength. Read more about our benefits here: https://www.mathematica.org/career-opportunities/benefits-at-a-glance

The Associate Director of the IT SRC department oversees the security risk assessments, FedRAMP certification & support, obtaining ATOs for various government agencies, and internal audits and assessments. This role is responsible for leading a team of risk analysts while collaborating with other stakeholders across the organization. The Associate Director will also ensure quality, timeliness, and security, as well as the alignment with our business goals and industry standards.

STAFFING AGENCIES AND THIRD-PARTY RECRUITERS: Mathematica is not accepting candidates for this role or any technical role from staffing agencies or third-party recruiters. Please do not contact technical or senior staff at Mathematica or share unsolicited resumes. All agency inquiries go through the talent acquisition team and will be routed accordingly. 

Responsibilities:

• Manage and mentor a team of IT Risk professionals, providing technical guidance, feedback, and performance evaluation.
• Define and implement risk and self-assessment strategies and best practices for various projects and platforms as well as participating in SOC2 audit meetings.
• Maintain and enhance FedRAMP certification and documentation process.
• Design, develop, and maintain project risk questionnaire.
• Leverage Auditboard to maintain the risk posture of the organization.
• Responsible for communicating critical and high risk on a weekly basis to senior leadership.
• Continues to meet FedRAMP requirements, client ATO and other compliance framework standards. Ensure compliance with security policies, standards, and regulations for all other cloud environments.
• Participate in technology solution business development activities, including partnering with project teams and contributing to proposal development.
• Participate in FedRAMP, ATO, SOC2, and other compliance framework agency assessments and interviews.
• Research and build governance around new technologies such as API, AI/ML and etc.
• Collaborate with other teams to identify and resolve issues.
• Actively support the advancement of organizational diversity, equity, and inclusion efforts, and apply diversity, equity, and inclusion lens across job responsibilities

Position Requirements:

Requirements:

• Bachelor’s Degree in computer science, engineering, or related field. Master’s degree preferred.
• 7+ years of experience in IT risk, governance, obtaining ATO, security controls, and various security standards.
• 3+ years of experience in leading, managing, and mentoring projects, initiatives, and junior staff.
• A combination of equivalent education and work experience may be substituted for the above requirements.
• Proficient in FedRAMP, NIST, SOC2 and other compliance frameworks
• Strong knowledge of security principles, policies, and standards
• Strong knowledge of governance, assessments, and audits
• As a federal government contractor, all staff working in our central ITS group with access to corporate computer systems are required to successfully undergo a background investigation or security clearance as a condition of employment.

This position offers an anticipated annual base salary range of $110,000 - $155,000.** This position is eligible for a discretionary bonus based on company and individual performance.

To apply, please submit a cover letter (optional), resume, location preference, and salary expectations. Applications will be reviewed on a rolling basis starting March 25, 2024.

STAFFING AGENCIES AND THIRD-PARTY RECRUITERS: Mathematica is not accepting candidates for this role or any technical role from staffing agencies or third-party recruiters. Please do not contact technical or senior staff at Mathematica or share unsolicited resumes. All agency inquiries go through the talent acquisition team and will be routed accordingly. 

Available Locations: Washington, DC; Princeton, NJ; Remote

#LI-DI1

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.