Cybersecurity Policy Analyst
- - TX-Austin
- Austin, TX, USA
- Full Time
The Cybersecurity Policy Analyst will perform duties and responsibilities to ensure the company's information assurance (IA) and network security posture is compliant with industry standards and requirements under limited supervision of the supervisor. Duties will include, but are not limited to, identifying and interpreting standards, requirements, and policies for IT systems; developing implementation recommendations regarding changes or additions to existing policies and production of new policies; and coordinating approval and implementation of policies, procedures, and plans across all stakeholders.
Essential Duties and Responsibilities:
- Designs, develops, and maintains policy, procedure, and plan documentation regarding the configuration, operation, and maintenance of IT systems to satisfy requirements defined in NIST SP 800-171 and the Cybersecurity Maturity Model Certification (CMMC).
- Maintains awareness of and develops actionable plans from current trends and advisories issued by federal government programs (e.g., the Defense Industrial Base Cybersecurity Program, the Department of Homeland Security Cyber Information Sharing and Collaboration Program, etc.), industry trade associations, and other sources.
- Analyzes current policies, processes, capabilities, and architectures for applicability to company systems, cybersecurity processes, and responsibilities.
- Coordinates with internal stakeholders to identify processes, define gaps, and provide recommendations for improvements on proposed policies and strategies.
- Assesses gaps in existing policy and proposes amendments to address those gaps.
- Successfully manages multiple concurrent tasks in a high volume environment.
Required Knowledge, Skills & Abilities:
- Incumbent must have prior, demonstrated experience in reading, interpreting, and developing policies and procedures based on IT system security standards.
- Incumbent must be able to read, write, and communicate to senior leadership to support decision-making for both internal and external consumption. Written work product must be of the highest standard.
- Incumbent must be able to participate in internal and external policy working groups, while supporting the advocacy of the company's interest, in briefings, and correspondence.
- Incumbent must be able to investigate and determine impacts and develop implementation recommendations regarding changes or additions to existing policies and production of new policies.
- Incumbent must possess sound reasoning skills and regularly show ability to follow general instructions from the supervisor or senior-level department staff, with great attention to detail.
- Incumbent must be highly knowledgeable in working with Microsoft Office standard applications, specifically Microsoft Outlook, Microsoft Word, Microsoft Excel, and Microsoft PowerPoint.
- Bachelors Degree in Information Technology, Computer Science, or a related field is required. Four year's professional experience working in an IT-related role may be substituted in lieu of a degree.
- A minimum of five years' experience working in a policy development or an information assurance management role is required, preferably in a position performing duties identified in DoD 8570.01-M at Information Assurance Manager (IAM) Level I or higher. If professional experience is utilized to satisfy the education requirement, a total of at least nine years' experience is required.
Certificates and Licenses:
A CompTIA Security+ certification or other certification identified in DoD 8570.01-M Appendix 3 at the IAM Level I or higher is preferred.
This position requires that the candidate be willing and able to complete a successful background screening for a security clearance. Candidates with an active security clearance will receive preference.
Working Conditions/ Equipment:
- Incumbent will work in a general office environment with general office equipment available. Incumbent will be required to sit for extended periods at a desk and work on a computer for up to eight hours per day.
- Incumbent will be required to work a set schedule negotiated with the supervisor. Occasional after-hours work (i.e., nights or weekends) may be required based on specific circumstances.
The above job description is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor.
THIS POSITION HAS BEEN CLOSED! PLEASE CHOOSE ONE OF THE OPTIONS BELOW:
- Search Current Openings