Cybersecurity Technical Writer

It Concepts - Woodlawn, MD

posted 4 months ago

Full-time - Senior
Hybrid - Woodlawn, MD
Professional, Scientific, and Technical Services

About the position

Founded in 2003, IT Concepts' core values - customer-centricity, teamwork, driven to deliver, innovation, and integrity - ensure we work together to be the best, realize objectives, and make a positive impact in our communities. We intentionally created and sustain our ITC culture that embraces change, experimentation, continuous learning, and improvement. We bring our design thinking problem-solving approach that challenges assumptions, prioritizes curiosity, and invites complexity to deliver innovative, efficient, and effective solutions. As we continue to grow in the support of our government customers, we are looking for driven and innovative individuals to join our team. IT Concepts is seeking a highly skilled Technical Writer to join our team and provide critical support to the Social Security Administration's Office of Information Security (OIS) in developing and maintaining robust policy frameworks and procedures. The ideal candidate will have extensive experience in drafting and updating technical documentation, maintaining policy maps, and ensuring compliance with federal mandates, and a solid understanding of the NIST Cybersecurity Framework (CSF) version 2.0 and Risk Management Framework. The Technical Writer will conduct research and analysis to draft and update language for key security policies. They will review and validate documents for accuracy, conduct annual updates, and prepare documentation for publication. This role is essential in ensuring that all changes align with NIST, OMB, FISMA, and other federal mandates, accurately incorporating all controls into the policies. The position is hybrid, requiring on-site presence as needed.

Responsibilities

  • Conduct research and analysis to draft new and updated language for the Information Security Policy (ISP), Program Operations Manual System (POMS), Administrative Instructions Manual System (AIMS), Controlled Unclassified Information (CUI) program, and associated security policy products.
  • Ensure all changes align with NIST, OMB, FISMA, and other federal mandates and accurately incorporate all controls into the policies.
  • Maintain the mapping of ISP with Cybersecurity Framework (CSF) and NIST 800 control families.
  • Review documents within the security policy ecosystem to ensure accuracy and validity related to changes, updates, and new products related to NIST 800-53.
  • Conduct annual reviews of POMS and CUI to address gaps and discrepancies.
  • Prepare policy and supplemental document updates for publication, track changes, and capture metrics concerning published changes.
  • Assist with the development of new policy documentation and maintain consistent templates for ecosystem documentation.
  • Support policy waiver lifecycle and acquisition and procurement activities by compiling standard information security acquisition and supply chain risk language.
  • Provide high level project plans for ISP changes and updates, ISP gap assessments, and analytical work to be performed including ISP, POMS, CUI, AIMS, and reviews of the security policy ecosystem.
  • Research and respond to requests for audit artifacts and findings related to the security policy or other ecosystem documents.
  • Develop weekly reports across the various tasks.
  • Facilitate and participate in various policy and risk related discussions.
  • Assist with meeting logistics by recording meeting notes and action items.
  • Continue to maintain the ecosystem inventory by adding relevant documents, performing reviews, removing obsolete documents, ensuring links are current, inputting web updates, and documenting all actions in the inventory.
  • Develop and maintain a change management process for all documents contained in the ecosystem.
  • Continue to enhance the ecosystem user interface for ease of customer use.

Requirements

  • Bachelor's Degree in Technical Communication, English, Information Technology, or a related field.
  • 5+ years of experience in technical writing, preferably in cybersecurity or IT policy documentation.
  • Expert in Microsoft suite of word processing, spreadsheet, imaging and telecommunications software.
  • Proficiency in drafting technical reports, plans, and related correspondence.
  • Ability to effectively communicate complex technical information to diverse audiences.
  • Familiarity with NIST Cybersecurity Framework (CSF), NIST 800-53, and other federal security policies.
  • Skill in preparing drafts, technical reports, plans and related correspondence.
  • Excellent written and oral communication skills.

Nice-to-haves

  • Skill in developing, reviewing, and updating security policies, manuals, and instructions.
  • Ability to work effectively both independently and as part of a team.
  • Prior experience in technical writing in the field of information security or federal policies.

Benefits

  • Health insurance
  • Dental insurance
  • Tuition reimbursement
  • Happy hour
  • Paid time off
  • Vision insurance
  • 401(k) matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service