Lead Cyber Policy Analyst
Description:
Job Description
Salary:
SeKON is looking for a Lead Cyber Policy Analyst supporting and upcoming opportunity with the National Science Foundation (NSF) in Alexandria, VA. NSF’s comprehensive, agency-wide cybersecurity program encompasses all aspects of cybersecurity, including IT governance; planning and management; Capital Planning and Investment Control (CPIC) process, strategy, and enterprise architecture; policies and procedures; cybersecurity awareness training; assessment and authorization; cybersecurity assessments, continuous monitoring and independent reviews; vulnerability management activities; computer incident response and intrusion detection; managing cloud services, contingency planning; and privacy.
With over 25 years of mission-focused success, SeKON delivers cultural, operational, and technical transformation to support federal government customers including the National Institutes of Health (NIH), Substance Abuse and Mental Health Services Administration (SAMHSA), the Centers for Disease Control (CDC), Centers for Medicare and Medicaid Services (CMS) and Defense Health Agency (DHA). Our vision is “Better Health Through Innovation and Digital Transformation.”
RESPONSIBILITIES:
Provide technical knowledge and management of cybersecurity policy analyst.
Manage the review and development of policies, procedures, directives, regulations, and deliverables instructed by federal client.
Develops systems security contingency plans and disaster recovery procedures.
Provide guidance and support to improve processes and team effectiveness.
Write, review, and maintain privacy policies, plans and procedures to align with federal guidance, as needed.
Provide policy expertise and support in developing rules of engagement for independent vulnerability scans.
Manage and direct the creation, development, update, and retirement of IT security & privacy documents.
Update policies and procedures for audit purposes and to maintain a current program.
Maintain an accurate inventory of governance documents and must update IT security and privacy program documents in a timely manner.
REQUIREMENTS:
Eligible for a Government Issued clearance.
Must have a DoD 8570 certification (IAM II or IAT II level minimum)
5+ years of specialized Information Assurance/Cyber Security for Federal Agency
Undergraduate degree in Cyber Security, Information Technology, Computer Science, or a related field
Understanding and experience with the Federal Information Security Management Act (FISMA)
Vulnerability remediation activities, scanning and analysis and STIG/ Manual Checklist auditing.
Experience writing cyber security policies and procedures.