Information Security Program Manager

A pioneer in K–12 education since 2000, Amplify is leading the way in next-generation curriculum and assessment. Our core and supplemental programs in ELA, math, and science engage all students in rigorous learning and inspire them to think deeply, creatively, and for themselves. Our formative assessment products help teachers identify the targeted instruction students need to build a strong foundation in early reading and math. All of our programs provide educators with powerful tools that help them understand and respond to the needs of every student. Today, Amplify serves more than 15 million students in all 50 states. For more information, visit amplify.com.

We are seeking an Information Security Program Manager to join our team. The ideal candidate will be responsible for overseeing various programs and deliverables that derive from the work of the Information Security Committee, including but not limited to program management and execution, managing the third party services process and team renewals, overseeing with training and implementation for various campaigns, and assisting with incident response initiatives.

Responsibilities:

Program Management & Execution 

• Manage the Information Security team inbox process, including triage, assignment, follow ups, and automated responses.

• Support efforts for the annual internal NIST CSF assessment and SOC 2 engagements. 

• Assist with the development of policies, processes, procedures, user guides, Intranet, and How To’s for supporting internal company-wide and department-specific needs.

• Assist in the development and maintenance of best practices regarding information security through involvement with industry groups and contacts with peers at other organizations. 

Third Party Services

• Oversee the vendor security review and approval process for Amplify’s procurement process. 

• Lead the external TPRM engagement and maintain the internal vendor database repository. 

• Support new vendor purchases and service renewal requests for DevSecOps & Infosec.

• Assist with vetting initiatives for potential third party services within Infosec. 

• Oversee application provisioning and additions for our internal teams.

• Supervise development team to ensure projects are on track and within budget.

Training & Implementation 

• Assist with the development and delivery of the annual security awareness, new hire, and role-based training for all staff. Identify and monitor security and privacy training needs within the organization as a whole, and create a strategic plan to measurably track and improve security and awareness within Amplify and its targeted roles and departments. 

• Maintain and revise the library of all training materials and resources annually and on an ongoing basis as needed. Review existing training programs; suggest enhancements and modifications to improve engagement, learning, and retention.

• Assist with incident response program initiatives, including scheduling and documentation development for role-based training and company-wide training.

• Manage information security training initiatives including workshops, speaking events, newsletters/advisories, Intranet resources and other communications. 

• Oversee Amplify’s annual social engineering campaigns and remedial training efforts for all staff. 

Incident Response 

• Manage the FR team training and onboarding process.

• Coordinate with relevant teams to complete quarterly internal control auditing to confirm status and follow ups. 

• Compile monthly incident response times reports in Quickbase.

• Coordinate monthly Grubhub credits and swag efforts for the incident response team. 

• Assist with the annual Business Continuity Summit planning and quarterly BC/DR tests.

Basic Qualifications:

• Bachelor’s Degree

• 5+ years’ experience in project/program management, training delivery/development, security, or similar role/combination of roles

• 5+ years’ experience with compliance examinations and risk assessments (NIST CSF, SOC 2, etc.).

• 3+ years’ experience with vendor review and/or vendor relationship management.

• 5+ years’ experience managing team-level projects. Supports cross-functional collaboration to ensure projects are on track and communicated to stakeholders.

• Strong written and interpersonal skills, with acute organizational and self-awareness.

• Demonstrate initiative and ownership of assigned responsibilities, with the ability to work independently, break down complex problems into manageable goals, and create solutions. 

• Experience prioritizing multiple projects and tasks optimally in a fast-paced environment, while remaining flexible, positive, and open to feedback. 

• Flexible and adaptable with strong program and project management skills, including excellent organizational and time management skills.

• Experience using Google Apps and other common professional software. Bonus points for experience with Zapier, QuickBase, PagerDuty, EasyGenerator, Loom, etc.

• Experience in Agile methodologies.  

Preferred Qualifications:

• Professional work experience in the education and/or education technology field.

• Experience with developing low-code/no-code.

• Proven success working in a deadline-driven environment and establishing goals to deliver against the objectives of assignments to meet time, budget and quality criteria.

• Experience with risk and issue management and leading process improvement initiatives.

• Experience in effectively communicating with both technical and non-technical roles.

• Proven ability to apply critical thinking to make decisions and develop solutions using data and business knowledge.

• You're an innovative thinker and agile learner; able to readily apply past learning in new situations to generate solutions to challenges and/or create something entirely new. 

What we offer:

Salary is only one component of the Amplify Total Rewards package, which includes a 401(k) plan, competitive health insurance and mental health options, basic life insurance, paid time off, parental leave, and access to best-in-class development programs. The gross salary range for this role is $140,000 - $160,000. This role is eligible to earn an annual discretionary bonus that rewards individual and company performance.
 

We celebrate diversity and are committed to creating an inclusive environment for all employees. To that end, we seek to recruit, develop and retain the most talented people from a diverse candidate pool. 

Amplify is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. 

This position may be funded, in whole or in part, through American Recovery & Reinvestment Act funds.

Amplify Education, Inc. is an E-Verify participant.

If selected, a background check will be required. As required by state and local laws and district policies, you may also be required to provide additional documentation, such as proof of vaccination or submit to enhanced background screening, including fingerprints.