Requirements
Minimum Qualifications:
• 3+ years of Information Systems Security and/or Technical Lead experience
• Demonstration of understanding of data privacy - familiarity with DoD rules/regulations on FedRAMp compliance including commercial IL2 and gov cloud IL4 environments hosting websites built in various platforms.
• Candidate should have a familiarity with eMass, web accessibility compliance, content management systems such as WordPress and Adobe Experience Manager, basic HTML/JS, quality assurance, etc.
• Possesses a general understanding of digital best practices, innovative technologies and data-driven creative while ensuring compliance and security requirements are met
• Successful candidates must understand how to effectively work both independently and across functions including digital production, engineers/developers, account service, information technology, and third-party partners
• Strong interpersonal skills, steady hand, ability to work in high-pressure situations.
• Effectively demonstrates autonomy over assigned work while working towards goals shared by the team
• Capable of executing projects across multiple disciplines. Authors and manages detailed documentation including functional and business requirements and technical specifications
• Outstanding organizational skills and attention to detail
• Strong written and oral presentation skills; ability to be client facing
• As this is a government account that may require access to systems requiring credentialing, candidate must be a United States citizen and may be required to complete a federal background check
Preferred Qualifications:
• Agency and/or military consulting experience - bonus if candidate has experience with ATOs (Authority to Operate)
• Experience with project management software (i.e., JIRA, Smartsheet)
Key Characteristics for Success:
• Highly driven and self motivated
• Demonstrate an ability to learn quickly, follow process, and show a passion for web compliance, data and product analysis, and security
External Description
Job Title: Technology Program Manager
Department: Digital Production
Reports to (Position): Director of Digital Production
Supervisory Responsibilities (Y/N): No
FLSA Status (Exempt vs. Non-Exempt): Exempt
Travel (%): 5-10%
Position Function:
GSD M is seeking a driven, detail-oriented and dedicated Technology Program Manager to join our U.S. Air Force Total Force (USAF) and U.S. Space Force (USSF) agency team. You will provide Risk Management, Security Compliance and Technical support across complex projects including all client web, experiential, and leads related work. This role is client facing and will work directly with a managed services provider, cloud services provider and client Cyber Security teams.
Position Specific Responsibilities/Duties:
• Be a subject matter expert for all USAF/USSF web and PII data collection/transfer projects. This includes ensuring all environments meet client requirements across airforce.com, spaceforce.com, afrotc.com, academyadmissions.com, airforceads.com, data collection integrations for USAF/USSF mobile tours, Salesforce leads management and any web/native applications
o Please note creative work on USAF/USSF is constantly evolving, so this role will entail both ongoing maintenance as well as support for new projects and implementations
• Provide Information Assurance, Cybersecurity, and Risk Management support to the production, account leadership, and development teams across projects. This will include working with a Salesforce environment managed by a third party
• Ensure real time compliance for secure operations across all digital properties
• Support the scoping, creative, and development process by participating in the assessment of feasibility of proposed solutions and ensuring all FedRAMP ATO requirements are met
o Reviewing VDP reports
o Running and interpreting site security scans (ex. RedHat7)
o Assisting in STIG implementation
• Develop accurate and thorough requirements documentation and specs as needed
• Review site security policies and client-provided security scans and communicate remediation plan with production, account, and development teams
• This role may also manage hosting and CMS partners, email web accounts, DNS, secure password storage, server-related updates, and SSL certificate renewals