Infosec Coordinator

A pioneer in K-12 education since 2000, Amplify is leading the way in next-generation curriculum and assessment. Our core and supplemental programs in ELA, math, and science engage all students in rigorous learning and inspire them to think deeply, creatively, and for themselves. Our formative assessment products help teachers identify the targeted instruction students need to build a strong foundation in early reading and math. All of our programs provide educators with powerful tools that help them understand and respond to the needs of every student. Today, Amplify serves more than 10 million students in all 50 states. For more information, visit amplify.com.
The InfoSec Coordinator will manage and maintain our internal third-party technology procurement workflow and assist with various program efforts for the Information Security team.
The role will help support efforts involving our annual SOC 2 Type 2 examination/Risk Assessment, incident response program and training, bug bounty program, policy work, and specific projects and multi-functional initiatives that may involve stakeholders and collaborators in Sales, Human Resources, Customer Care and Support, Legal, IT Support, and Engineering. This is a stepping-stone role for someone who wants to grow in information security and program management.
Amplify's COVID-19 vaccination policy requires all staff to provide proof of vaccination for in-person meetings unless an approved exemption is provided.
Responsibilities of the InfoSec Coordinator:

• Lead the Third Party Vendor SaaS/technology intake process and coordinate with partners and other Business Solutions owners to ensure purchasing guidelines and approval procedures are being followed.
• Prioritize and track procurement-related queries, documentation, action items, inventory, and vendor statuses in GSuite, Quickbase, and other filing systems.
• Assist with security-related vendor reviews and scheduling of initial scoping meetings with potential external vendors, as needed.
• Support new vendor purchases and renewal requests for DevOps & InfoSec and ensure all relevant vendor documentation and invoices are provided to the Finance department for processing in a timely manner.
• Collect security documentation required for annual reviews of critical vendors.
• Attend monthly vendor procurement syncs and other partner review meetings and identify areas for process improvements based on feedback.
• Assist with our SOC 2 Type 2 examination and Risk Assessments, including department interviews/follow-ups, prioritizing and tracking requests and updates, and filing of documentation.
• Participate in our OKR planning process and Scrum Master rotation.
• Partner with Sales and Legal for help crafting and updating our security deliverables schedule.
• Support triage efforts for our internal bug bounty program and work with teams on confirming remediation steps and timing.
• Update documentation and trackers with auditor follow-ups, team responses, and overall status for improvements next year.
• Coordinate with relevant teams to complete quarterly internal control auditing to confirm status and follow-ups.
• Compile monthly incident response times reports in Quickbase.
• Assist with facilitating and scheduling incident response and phishing training for teams, as needed.
• Schedule training and support onboarding steps for new incident response team members.
• Assist with reviewing, consolidating, and filing current InfoSec policies and other documentation.
• Coordinate monthly Grubhub credits and swag efforts for the incident response team. Ensure invoices are paid on time and submitted to the appropriate parties for expense reports.

Basic Qualifications of the InfoSec Coordinator:

• Bachelor's Degree
• 2+ years' experience in project/program management, security, vendor procurement, or a similar role/combination of roles
• Strong organizational and project management skills
• Experience with project management tools and systems
• Experience prioritizing multiple projects effectively in a fast-paced environment
• Experience using Google Apps and other common professional software
• Strong written and verbal communication skills
• Strong writing skills, including attention to details of grammar, punctuation, phrasing, and structure
• Organized and detail-oriented
• Keen curiosity about a career in Information Security, Security, or Engineering
• Ability to coordinate and communicate between multiple key partners at varying levels of an organization
• Flexible and adaptable: work experience in a fast-paced environment
• Experience effectively collaborating with colleagues to meet team goals
• Demonstrate initiative and ownership of assigned responsibilities

Preferred Qualifications of the InfoSec Coordinator:

• Candidate should have work experience and knowledge at the Information Security entry-level, evidenced by a minimum of 1 year of work experience in the information technology field, 1-2 years of information technology work experience, or Data Security Privacy skills
• Professional work experience in the education and/or education technology field
• Experience working in the education field
• Experience with compliance examinations and risk assessments

We celebrate diversity and are committed to creating an inclusive environment for all employees. To that end, we seek to recruit, develop and retain the most talented people from a diverse candidate pool.
Amplify is an Equal Opportunity Employer of Minorities, Females, Protected Veterans and Individuals with Disabilities.
This position may be funded, in whole or in part, through American Recovery & Reinvestment Act funds.
Amplify Education, Inc. is an E-Verify participant.