Cybersecurity Policy Analyst Lead
CSRA is seeking a Senior Cybersecurity Policy Analyst in Arlington, Virginia to support a cybersecurity contract with the U.S. Department of State (DoS).
The work you do here every day will ensure the safety, security, health and well-being of our nation. As a member of one of our outstanding teams, you'll collaborate with customers and businesses to deliver the best technologies and solutions aligned to critical mission requirements. At CSRA we are proud of our diverse community, and we are strengthened by the many viewpoints and ideas shared by our employees who hail from every corner of the world.
The position supports the Department of State, Diplomatic Security, Directorate of Cyber and Technology Security. The Policy and Standards Program is responsible for developing, promulgating, and maintaining Department cybersecurity policies and standards; developing and providing guidance on the Overseas Security Policy Board (OSPB) information systems security policy and standards; and providing guidance on existing policies and standards for the Department. The Program is also responsible for Department representation and coordination of National level policies and guidance. The Program handles exception requests for standards and policies within the Directorate of Cyber and Technology Security's scope of authority. Additionally, the program responds to user questions and inquiries about policy received via cables, memos, emails and phone calls.
- Research, recommend, develop, maintain, and update domestic and overseas cybersecurity policies, to include use of new and emerging technology (e.g. Wi-Fi, cloud, mobile devices), software, hardware, and other IT-related systems (e.g. VoIP, Building Automation Systems)
- Examine incoming requests for exceptions to policy and draft recommended decision memoranda to include requisite mitigation strategies
- Coordinate clearances of all draft cybersecurity policies and memoranda with DoS stakeholders
- Participate in intra-agency policy working groups and provide cybersecurity policy subject matter expertise
- Provide support for the review and coordination for national level classified and unclassified cyber and communications security policies and guidelines
- Respond to cables, memos, emails and phone inquiries regarding security policies and standards
- Help maintain the contents of the Frequently Asked Questions (FAQ) web page and web portal website
- Maintain databases for tracking incoming and outgoing policy documents, policy inquiries, exception requests
- Provide status reports as required. Prepare contract deliverables to include trend analysis reports, quarterly status reports, and others
- Bachelor's degree in IT or related field with 5+ years of work experience or MA in the same fields combined with 3+ years of work experience
- Demonstrated experience in researching, developing, writing, and editing cybersecurity policies, best practices, standards, processes and procedures
- Experience in research and analysis of information system issues and trends, and research and development in a technical discipline/field
- Excellent written and verbal communication skills; strong organizational skills; research, analysis, and writing skills
- Strong customer service and interpersonal skills to effectively relate to agency and customer needs; ability to build working relationships with leaders and key stakeholders
- Proficiency with Microsoft Office
- Experience with the creation of IT security requirements, technical security safeguards, countermeasures, risk management, contingency planning, and data communications networking
- Ability to work independently and as part of a team; ability to take initiative with minimal direction and to solve problems
- Knowledge of, and experience with, current Federal security standards (e.g., FISMA/NIST, DOD, and CNSS)
COVID-19 Vaccination Requirement: To protect the health and safety of its employees and to comply with customer requirements, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.