GDIT is seeking a Senior Cybersecurity Policy Subject Matter Expert to help share the future of cloud adoption at the U.S. Department of State (DoS).
The work you do here every day will ensure the safety, security, health and well-being of our nation. As a member of one of our outstanding teams, you’ll collaborate with customers and businesses to deliver the best technologies and solutions aligned to critical mission requirements. At GDIT we are proud of our diverse community, and we are strengthened by the many viewpoints and ideas shared by our employees who hail from every corner of the world.
The position supports the Department of State, Diplomatic Security, Directorate of Cyber and Technology Security. The Policy and Standards Program is responsible for developing, promulgating, and maintaining Department cybersecurity policies and standards; developing and providing guidance on the Overseas Security Policy Board (OSPB) information systems security policy and standards; and providing guidance on existing policies and standards for the Department. The Program is also responsible for Department representation and coordination of National level policies and guidance. The Program handles exception requests for standards and policies within the Directorate of Cyber and Technology Security’s scope of authority. Additionally, the program responds to user questions and inquiries about policy received via cables, memos, emails and phone calls.
Research, recommend, develop, maintain, and update domestic and overseas cybersecurity policies, to include use of new and emerging technology (e.g. WiFi, cloud, mobile devices), software, hardware, and other IT-related systems (e.g. VoIP, Building Automation Systems).
Examine incoming requests for exceptions to policy and draft recommended decision memorandum to include requisite mitigation strategies
Coordinate clearances of all draft cybersecurity policies and memorandum with DoS stakeholders
Participate in intra-agency policy working groups (e.g. WiFi) and provide cybersecurity policy subject matter expertise
Provide support for the review and coordination for National level classified and unclassified cyber and communications security policies and guidelines
Respond to cables, memos, emails and phone inquiries regarding security policies and standards
Help maintain the contents of the Frequently Asked Questions (FAQ) web page and web portal website
Maintain databases for tracking incoming and outgoing policy documents, policy inquiries, exception requests
Provide status reports as required. Prepare contract deliverables to include Trend Analysis reports, Quarterly Status Reports, etc.
**active secret security clearance required**
Bachelor’s degree in IT or related field with 2+ years of work experience or MA in the same fields combined with 1+ year of work experience
Experience in researching, developing, writing, and editing cybersecurity policies, best practices, standards, processes and procedures
Experience in research and analysis of information system issues and trends, and research and development in a technical discipline/field
Excellent written and verbal communication skills; strong organizational skills; research, analysis, and writing skills
Strong customer service and interpersonal skills to effectively relate to agency and customer needs; ability to build working relationships with leaders and key stakeholders
Proficiency with Microsoft Office
Some experience with the creation of IT security requirements, technical security safeguards, countermeasures, risk management, contingency planning, and data communications networking
Ability to work independently and as part of a team; ability to take initiative with minimal direction and to solve problems
Knowledge of, and experience with, current Federal security standards (e.g., FISMA/NIST, DOD, and CNSS)
CISSP, CCSP, industry certifications such as Azure, AWS, Google.
Familiarity with the Department of State’s mission is preferred and work with global policies is preferred
Security certifications such as ISC2 CCSP, CAP, SSCP, or CompTIA certifications such as: CySA or Security+ preferred.
PhD in cybersecurity, information security or related field
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.