Job Description
Join our mission-driven team at the Department of Technology Services, where we protect the digital infrastructure of our nation. We are seeking a highly analytical and strategic Senior Cybersecurity Policy Analyst to help shape the future of federal data protection standards and incident response protocols.
You will work at the intersection of law, technology, and public policy, providing high-level counsel to executive leadership while collaborating with inter-agency stakeholders to harden our defenses against sophisticated global threats.
Responsibilities
- Develop and maintain comprehensive cybersecurity policies in alignment with NIST frameworks and federal mandates.
- Lead inter-agency risk assessment initiatives to identify and mitigate systemic vulnerabilities.
- Translate complex technical security metrics into actionable strategic briefings for executive stakeholders.
- Coordinate with legal and privacy teams to ensure compliance with federal data protection legislation.
- Oversee the lifecycle of incident response policy updates and organizational preparedness training.
- Represent the agency in public-private partnership forums regarding national critical infrastructure security.
- Conduct periodic audits of existing security controls to ensure effectiveness and regulatory adherence.
Qualifications
- Bachelor's degree in Cybersecurity, Information Systems, Public Policy, or a related field (Master’s preferred).
- Minimum of 7 years of professional experience in cybersecurity, policy development, or risk management.
- Deep understanding of FISMA, NIST SP 800-53, and FedRAMP requirements.
- Proven ability to bridge the gap between technical IT infrastructure and government administrative policy.
- Exceptional verbal and written communication skills, with experience drafting formal government documentation.
- Active Secret or Top Secret security clearance (preferred).
- Professional certifications such as CISSP, CISM, or CRISC are highly desirable.