Cybersecurity Policy Analyst                              Job# JAPODT0080

Location: SE Washington, DC

Clearance: Ability to attain a Public Trust
Salary: $100,000 - $115,000

 

Client is seeking a Cybersecurity Policy Analyst to oversee and support critical Cybersecurity and Information Assurance (IA) initiatives for the Department of Transportation (DOT) Office of the Secretary of Transportation (OST) Office. The position will be responsible for the development of IA/security policy and procedures deliverables. The candidate will also be expected to be an expert in Information Technology (IT) security, offering recommendations on projects to ensure compliance with Federal standards, policy, and IT security metrics. In addition, the candidate must be able to work with stakeholders in functional and technical arenas in support of IT security priorities. The individual should have strong communication skills and be willing to take initiative in a dynamic, collaborative, and client-facing environment.

Position Responsibilities

  • Plan, develop, and assist in the coordination and communication of new policies and procedures relevant to the implementation of security guidance and solutions

  • Document current state policy and procedures, research best practices, identify gaps, and develop target state for IT security oversight process

  • Provide Cybersecurity technical advisory services regarding Federal and commercial leading practices, relevant strategic initiatives, and emerging technologies/trends

  • Development of referential architectures and strategies, technical standards, and requirements related to information system security projects

  • Communicate with both technical and functional clients regarding technical solutions and implementation approaches as appropriate

  • Conduct quantitative security risk analysis

  • Create and execute project work plans and revise as appropriate to meet changing needs and requirements

  • Estimate level of effort needed to administer and maintain the procedures associated with any recommended security initiatives

  • Consistently deliver high-quality services and deliverables to clients

 

Position Requirements

  • Minimum 5 years of experience in Federal cybersecurity environment

  • At least 3 years of experience in cybersecurity policy development, FISMA, and IA activities

  • Bachelor's degree in IA/Cybersecurity, Computer Science, Engineering, Mathematics, Management Information Systems or equivalent

  • Deep understanding of compliance requirements, standards, and guidelines governing security within the Federal Government (e.g., NIST publications, FISMA, OMB memoranda)

  • Deep understanding of NIST Special Publications; specifically 800-37, 800-53 rev 4, and 800-128

  • Familiarity with the System Development Lifecycle (SDLC) and how to implement security into the process properly

  • Experience with developing IT security metrics to facilitate compliance with Federal guidelines

  • Ability to support daily interaction with client management about day-to-day activities and strategic direction

  • Excellent oral and written communication skills targeted at a variety of technical and non-technical audiences

  • Documentation experience with the standard MS Office Suite, Visio, Project, and SharePoint

  • Ability to bring innovative ideas and exercise professional judgment within defined business model, methodologies, and procedures

  • Able to work on-site at client site located in Washington, D.C. and must be able to obtain a Public Trust clearance

  • Job Type: Full-time

 

Required experience:

  • NIST, FISMA, OMB, SDLC: 5 years

 

To apply send resume to Norris@FlexSR.com

Attn CSPA (JAPODT0080)

 

www.CyberSecSource.com