Alpha Omega - Arlington, VA

posted about 2 months ago

Full-time - Mid Level
Remote - Arlington, VA
251-500 employees
Merchant Wholesalers, Durable Goods

About the position

As a Cybersecurity Policy Analyst at Alpha Omega, you will play a crucial role in shaping and implementing cybersecurity policies and procedures that align with federal regulations and best practices. This position is essential for ensuring that our clients, particularly those within the United States federal government, can effectively navigate the complexities of technology and security while safeguarding sensitive information. You will collaborate closely with senior leaders and stakeholders to develop comprehensive policies that govern applications and technologies, ensuring compliance with industry standards and regulatory requirements. Your responsibilities will include monitoring compliance with established policies and regulations, conducting thorough research, and synthesizing information from various sources to prepare detailed reports, briefings, and presentations. You will be tasked with writing, updating, and formatting cybersecurity policies and procedures, utilizing leading practices and frameworks such as NIST, FISMA, and ISO. Additionally, you will identify opportunities for process improvements and provide feedback to enhance document content and processes. This role requires strong project management skills, as you will manage multiple projects and deadlines while maintaining a keen attention to detail. You will set goals, establish timelines, and track progress to ensure that all initiatives are executed efficiently and effectively. Your ability to communicate complex information clearly to diverse audiences will be vital in conveying policies and procedures to employees, management, and stakeholders. Overall, this position offers a unique opportunity to contribute to the security and integrity of critical government assets and data, working alongside a distinguished federal law enforcement agency.

Responsibilities

  • Collaborate with leadership and stakeholders to create comprehensive cybersecurity policies and guidelines that align with federal regulations, security standards, and best practices.
  • Monitor and ensure compliance with policies, regulations, and standards.
  • Conduct research and synthesize information from various sources, preparing detailed reports, briefings, and presentations.
  • Ensure policies are comprehensive, clear, and aligned with industry standards and regulatory requirements.
  • Contribute to discussions and planning sessions.
  • Manage multiple projects and deadlines efficiently with strong attention to detail and exceptional organizational skills.
  • Write, update, edit, develop, and format cybersecurity policies and procedures to formalize cybersecurity policy.
  • Utilize leading practices and frameworks (NIST, FISMA, ISO, etc.).
  • Identify and make recommendations for process and tool improvements.
  • Evaluate and provide feedback for improvement to document content and processes.
  • Publish security policies, ensuring accessibility and prompt communication of changes.

Requirements

  • Master's Degree and 8 years of relevant experience in policy analysis, government relations, or related fields, with a focus on data policy, technology policy, cybersecurity, AI ethics, compliance, etc.; OR Bachelor's Degree and 10 years of relevant experience; OR No degree and 16 years of relevant experience.
  • Experience writing cybersecurity policies, technical standards, and standard operating procedures.
  • Experience applying cybersecurity and data protection frameworks and regulations such as NIST 800-53, HIPAA, GDPR, state privacy regulations, etc.
  • Demonstrated ability to independently strategize and implement cross-functional policy initiatives that address complex technology risks.
  • Strong project management skills including developing work plans/project plans, conducting resource planning, delegating tasks, mitigating risks, managing stakeholder feedback, and communicating project progress to executives.
  • Excellent written and verbal communication skills for communicating policies and procedures to employees, management, and stakeholders.
  • Understanding of change management best practices and bridging gaps between policy and behavior change.
  • Knowledge of current and emerging cybersecurity and data protection risks, threats, and vulnerabilities.
  • Knowledge of technology risk management best practices.
  • Flexibility to adapt to changing priorities and evolving policy landscapes and quickly learn and apply new information.
  • Ability to assess and weigh current and evolving security threats in an operational environment.

Nice-to-haves

  • Demonstrated knowledge of a variety of IT concepts, practices, and procedures to ensure the secure integration and operation of technology systems.
  • Experience implementing NIST controls.
  • Experience developing, updating, and managing policies for a federal organization, preferably DHS.

Benefits

  • PTO including paid parental, military, and bereavement leave
  • Eleven (11) paid Federal holidays, five of which are floating holidays
  • Health and Dental Insurance (including 100% employer paid premiums for employee coverage under the HDHP health plan)
  • Life Insurance, STD/LTD term disability coverage, with employer paid premiums
  • 401 (k) plan with a match that is 100% vested after you complete two years of service
  • FSA/DFSA/HSA flexible benefit plans
  • Annual Tuition & Professional Development Reimbursement benefit
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service