Job Description
Are you ready to safeguard the nation's digital infrastructure? The Department of Technology Services is seeking a strategic and analytical Senior Cybersecurity Policy Analyst to join our elite task force. In this high-impact role, you will bridge the gap between complex technical requirements and federal compliance standards, ensuring the integrity and resilience of critical public sector data systems.
You will work alongside industry-leading subject matter experts to shape future cybersecurity protocols that protect millions of citizens. This position offers a rare opportunity to contribute to public service while advancing your career at the intersection of policy and innovative security engineering.
Responsibilities
- Develop, maintain, and enforce comprehensive cybersecurity policies aligned with NIST standards and federal mandates.
- Conduct deep-dive risk assessments of cloud-based infrastructure to identify potential vulnerabilities.
- Collaborate with inter-agency stakeholders to streamline incident response protocols and disaster recovery plans.
- Lead the audit process for system security authorization, ensuring continuous compliance across departmental networks.
- Provide expert technical briefings to executive leadership regarding emerging threat vectors and mitigation strategies.
- Architect secure workflows that balance operational efficiency with robust data protection standards.
Qualifications
- Bachelor’s or Master’s degree in Cybersecurity, Information Systems, or a related technical field.
- Minimum of 5 years of experience in cybersecurity policy development, risk management, or systems architecture.
- Active Secret or Top Secret security clearance (or ability to obtain one).
- Deep proficiency in NIST 800-53, FISMA, and FedRAMP compliance frameworks.
- Strong background in cloud security architecture (AWS, Azure, or GCP) within a government environment.
- Industry-recognized certifications such as CISSP, CISM, or CRISC are highly preferred.
- Exceptional verbal and written communication skills with the ability to translate technical risk into actionable policy.