Skip Navigation

Job Description

Apply Now

Associate Director, Security, Risk, and Compliance (Remote Eligible)

Job ID 2121

Position Description:
Mathematica applies expertise at the intersection of technology, data, methods, policy, and practice to improve well-being around the world. We collaborate closely with public- and private-sector partners to translate big questions into deep insights that improve programs, refine strategies, and enhance understanding using technology and advanced analytics. Our work yields actionable information to guide decisions in wide-ranging policy areas, from health, education, early childhood, and family support to nutrition, employment, disability, and international development. Mathematica offers our employees competitive salaries, and a comprehensive benefits package, as well as the advantages of being 100 percent employee owned. As an employee stock owner, you will experience financial benefits of ESOP holdings that have increased in tandem with the company’s growth and financial strength. You will also be part of an independent, employee-owned firm that is able to define and further our mission, enhance our quality and accountability, and steadily grow our financial strength. Read more about our benefits here:

The Associate Director of the IT SRC department oversees the security risk assessments, FedRAMP certification & support, obtaining ATOs for various government agencies, and internal audits and assessments. This role is responsible for leading a team of risk analysts while collaborating with other stakeholders across the organization. The Associate Director will also ensure quality, timeliness, and security, as well as the alignment with our business goals and industry standards.

STAFFING AGENCIES AND THIRD-PARTY RECRUITERS: Mathematica is not accepting candidates for this role or any technical role from staffing agencies or third-party recruiters. Please do not contact technical or senior staff at Mathematica or share unsolicited resumes. All agency inquiries go through the talent acquisition team and will be routed accordingly. 


  • Manage and mentor a team of IT Risk professionals, providing technical guidance, feedback, and performance evaluation.
  • Define and implement risk and self-assessment strategies and best practices for various projects and platforms as well as participating in SOC2 audit meetings.
  • Maintain and enhance FedRAMP certification and documentation process.
  • Design, develop, and maintain project risk questionnaire.
  • Leverage Auditboard to maintain the risk posture of the organization.
  • Responsible for communicating critical and high risk on a weekly basis to senior leadership.
  • Continues to meet FedRAMP requirements, client ATO and other compliance framework standards. Ensure compliance with security policies, standards, and regulations for all other cloud environments.
  • Participate in technology solution business development activities, including partnering with project teams and contributing to proposal development.
  • Participate in FedRAMP, ATO, SOC2, and other compliance framework agency assessments and interviews.
  • Research and build governance around new technologies such as API, AI/ML and etc.
  • Collaborate with other teams to identify and resolve issues.
  • Actively support the advancement of organizational diversity, equity, and inclusion efforts, and apply diversity, equity, and inclusion lens across job responsibilities

Position Requirements:


  • Bachelor’s Degree in computer science, engineering, or related field. Master’s degree preferred.
  • 7+ years of experience in IT risk, governance, obtaining ATO, security controls, and various security standards.
  • 3+ years of experience in leading, managing, and mentoring projects, initiatives, and junior staff.
  • A combination of equivalent education and work experience may be substituted for the above requirements.
  • Proficient in FedRAMP, NIST, SOC2 and other compliance frameworks
  • Strong knowledge of security principles, policies, and standards
  • Strong knowledge of governance, assessments, and audits
  • As a federal government contractor, all staff working in our central ITS group with access to corporate computer systems are required to successfully undergo a background investigation or security clearance as a condition of employment.

This position offers an anticipated annual base salary range of $110,000 - $155,000.This position is eligible for a discretionary bonus based on company and individual performance.

To apply, please submit a cover letter (optional), resume, location preference, and salary expectations. Applications will be reviewed on a rolling basis starting March 25, 2024.

STAFFING AGENCIES AND THIRD-PARTY RECRUITERS: Mathematica is not accepting candidates for this role or any technical role from staffing agencies or third-party recruiters. Please do not contact technical or senior staff at Mathematica or share unsolicited resumes. All agency inquiries go through the talent acquisition team and will be routed accordingly. 

Available Locations: Washington, DC; Princeton, NJ; Remote


We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

At Mathematica, we understand the importance of building relationships with colleagues. If you’re not located near one of our offices but would like opportunities to meet up with co-workers, we offer coworking spaces where available. Ask your Talent Acquisition partner for more information about this opportunity and whether it’s an option in your area.

Any offer of employment will be contingent upon passing a background check. Various federal agencies with whom we contract require that staff successfully undergo security clearance as a condition of working on the project. If you are assigned to such a project, you will be required to obtain the requisite security clearance. Additionally, if you participate in/complete the application process and are denied, Mathematica may choose to terminate your employment.

Although Mathematica does not require vaccination from COVID-19 as a condition of employment, various projects or agencies may require documentation of vaccination (or an approved exception/accommodation).

We take pride in our employees and in their commitment to excellence. We encourage staff to collaborate in developing creative solutions to difficult problems and to share the responsibility and enjoyment of carrying out complex projects. This collegial spirit has helped us earn our reputation for innovative and high quality work.

One of Mathematica’s core values is a deep commitment to diversity, equity, and inclusion. Our work is more robust because it is informed by a variety of diverse perspectives, and our mission to improve societal well-being is strengthened by a greater understanding of issues and challenges facing the populations we serve. Mathematica’s ongoing commitment to diversity and inclusion is woven into our everyday actions, policies, and practices—including decisions regarding recruitment, training, compensation, and promotion. We are dedicated to maintaining a work environment in which everyone is treated with respect and dignity.

Apply Now

Sign Up for Job Alerts

Select InterestsSelect a job category from the list of options. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.

  • Information Technology, RemoteRemove
  • Information Technology, Washington, District of Columbia, United StatesRemove
  • Information Technology, Princeton, New Jersey, United StatesRemove

View All Jobs

Do you need assistance?

If you need an accommodation due to a disability to complete any part of the application or interview process (if selected), you can request an accommodation by contacting the Human Resources Department or [609-799-3535|]. Accommodations are considered on a case-by-case basis.