Organization: Accenture Federal Services
Location: Arlington, VA
Accenture Federal Services, helping our federal clients tackle their toughest challenges while unleashing their fullest potential…and then some. What makes our approach so unique? Operating from the nation’s capital, we bring together commercial innovation and leading-edge technologies to deliver an integrated and interactive experience that far exceeds expectations. How? Our passion meets purpose! Through our diverse culture and inclusive thinking, we embrace our employees' ideas taking them from concept to practical solutions. Not to mention, we sleep well at night knowing our work directly impacts and improves the way the world works. We keep our tech smarts sharp by providing abundant training and certification opportunities. Are you ready to learn and grow in a career, while making a difference?
The Security Governance Lead will oversee Security Governance, Risk and Compliance to ensure that the solution, deployment and operations of AFS IT solutions incorporates appropriate security designs, priorities, and strategies. This role will require active collaboration with various leads of the IT operations division and require an extensive knowledge of different technology teams within the company's IT and Technology Growth Platform, and Accenture Information Security to promote security engineering practices. The Security Governance Lead will lead a team in developing the security architecture and engineering functions, keeping on top of federal, regulatory, and client requirements related to cybersecurity, and integrating them into the IT and IS governance processes through the development of security standards, coordination with IT security initiatives, and planning for total system lifecycle management, including operationalization of associated security processes. The candidate will have expertise in one or more of the following areas: cloud security, application security, network security, system security.
This role is responsible for implementation and operations of the AFS Security Strategy, Security Architecture, and Security Governance & Compliance. Areas of scope include:
Strategy: Define security strategy and goals as well as progress towards accomplishments. Define the security design and controls for AFS systems, quasi-AFS systems, and project monitoring. Support standards development and monitor the external environment for new standards and requirements (eg CMMC etc.) Oversee Security Architecture team to represent AFS at information sharing organizations to gather best practices, understand regulatory environment and confirm AFS assumptions.
Compliance: Run compliance operations and audit support team to perform compliance tasks, gather evidence and validate security control effectiveness.
Governance: Track AFS compliance to governance frameworks, manage SSP and related documentation, and oversee security policy and other documentation.
This Senior Manager will oversee a team of roughly 8-12 people performing these tasks, and should possess strong security operations experience, be very familiar with regulations that AFS is subject to including 800-171 and CMMC, and be able to work well with AFS leadership to develop and mandate policy and compliance with security framework. This role will oversee implementation of security initiatives of large and small projects and must have a demonstrated ability to plan and execute security tasks.
Participate in application and infrastructure projects to provide security-planning advice
Coordinate with DevOps teams to advocate secure coding practices and escalate concerns
Validate IT infrastructure and other architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable
Determine and validate baseline security configuration standards
Oversee the Compliance Operations Team to design and improve processes related to enforcing and monitoring IT security requirements and the access management functions
Articulate security concerns related to the solution being developed and requests review and guidance to minimize risks associated with the proposed solutions
Identify security requirements by evaluating business needs and technical requirements and relate them to required/desired security controls, including mapping to appropriate security control frameworks (NIST SP 800-171, 800-53, etc.)
Review network architectures and drive security improvements based on industry best practices and the principles of least functionality and least privilege
Oversee the Risk Management Team as necessary in conducting security assessments of existing and potential vendors
Act as the primary technical point of contact to IT teams seeking guidance on security practices and controls to support secure solution design
Liaise with other security architects and security practitioners to share best practices and insights
Track developments and changes in the digital business and threat environments to ensure they are adequately addressed in security strategy plans and architecture artifacts
Here Is What You Need:
Bachelors Degree or 7 years of equivalent industry experience
Experience reviewing, writing, and maintaining system security plans and plans of action
Experience in one or more of the following: cloud security, identity management, application security, network security, systems security, security operations, incident response, compliance operations, audit support, project support of security programs
Experience integrating security requirements and standards into daily operations and process improvement projects
Bonus Points If:
10+ years of industry experience
Knowledge of US security requirements related to regulations/standards such as NIST SP 800-171, 800-53, RMF, ISO 27001, SOX, etc.
Experience using Agile within project or development team
Certifications: CISSP, CISSP-IASSP, CIPP, CISM, SSCP, SANS GIAC (e.g. GCIA, GCIH, GPEN), CASP, CCNP Security, PMP
Ability to oversee, communicate with and interpret technical recommendations and documents from the Security Architecture team
Ability to pull together information from multiple sources and make security risk decisions and recommendations for AFS IT, Project teams and internal projects
Strong capabilities in team management, work tracking, project delivery
Ability to leverage Service Now for workflow, standards management, and decision tracking
Excellent organization, project management and team leadership skills
Strong communication skills and experience delivering compliance and operational status and metrics to senior leadership Collaboration skills across security, IT, audit, legal and delivery groups.
US Citizenship Required
An active security clearance or the ability to obtain one may be required for this role
Compensation for roles at Accenture Federal Services varies depending on a wide array of factors including but not limited to the specific office location, role, skill set and level of experience. As required by local law, Accenture Federal Services provides a reasonable range of compensation for roles that may be hired in California, Colorado, New York City or Washington as set forth below and information on benefits offered is here.
Role Location: Range of Starting Pay for role
California: $141,800 - $230,100
Colorado: $141,800 - $198,800
New York City: $164,200 - $230,100
Washington: $151,100 - $211,800
The safety and well-being of our candidates, our people and their families continues to be a top priority. Until travel restrictions change, interviews will continue to be conducted virtually.
Subject to applicable law, please be aware that Accenture requires all employees to be fully vaccinated as a condition of employment. Accenture will consider requests for accommodation to this vaccination requirement during the recruiting process.
What We Believe
We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.
Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here
Equal Employment Opportunity Statement
Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Accenture is committed to providing veteran employment opportunities to our service men and women.
For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.
Requesting An Accommodation
Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at 1 (877) 889-9009, send us an email or speak with your recruiter.
Other Employment Statements
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.
Life at Accenture
Work where you're inspired to explore your passions and where your talents are nurtured and cultivated. Innovate with leading-edge technologies on some of the coolest projects you can imagine.
Learn more about Accenture
Our more than 700,000 people in more than 120 countries, combine unmatched experience and specialized skills across more than 40 industries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities.