Job Description
Are you a visionary leader passionate about protecting critical infrastructure? The State Department of Technology Services is seeking a Senior Cybersecurity Policy Analyst to help shape the digital defenses of our public sector systems. In this role, you will bridge the gap between complex technical security requirements and actionable government policy. Join a mission-driven team where your work directly impacts the safety and data privacy of millions of citizens.
Responsibilities
- Develop and maintain state-wide cybersecurity policy frameworks compliant with NIST and FISMA standards.
- Lead cross-functional risk assessment initiatives to identify vulnerabilities in legacy and cloud infrastructure.
- Facilitate communication between technical engineering teams and non-technical executive stakeholders.
- Manage incident response protocols and provide strategic guidance during security breaches.
- Oversee third-party vendor security audits and ensure contract compliance.
- Mentor junior analysts in policy interpretation and regulatory reporting.
- Collaborate with federal agencies to align state security initiatives with national defense strategies.
Qualifications
- Bachelor’s degree in Computer Science, Public Administration, or a related field.
- Minimum of 5 years of experience in cybersecurity governance, risk, and compliance (GRC).
- Proven track record of drafting security policy documentation for large, complex organizations.
- Strong understanding of federal and state data privacy regulations (e.g., CCPA, HIPAA, CJIS).
- Relevant professional certifications such as CISSP, CISM, or CRISC.
- Exceptional written and verbal communication skills tailored for executive briefings.
- Ability to obtain and maintain a government security clearance.