Lead Cybersecurity Policy SME
2 weeks ago
Work Location: Hybrid/Washington, DC.
We are seeking a motivated and customer-oriented cybersecurity professional to support our Department of State client. The candidate will support maturation of the customer's cybersecurity program to enact cyber policy, roles, operations, and compliance.
Duties and responsibilities include:
- Leverage your expertise with existing Government IT Frameworks to create and implement robust cybersecurity policies tailored to a specific government bureau.
- Design and deliver comprehensive cybersecurity training programs for various roles (SO, ISSO, ISSM), ensuring personnel are equipped with essential knowledge and skills.
- Analyze and meticulously document existing cybersecurity processes and procedures. Identify areas for optimization and provide actionable recommendations for improvement.
- Establish and maintain a rigorous compliance tracking system for artifacts such as POA&M, ATO, and ISA.
- Work closely with software development teams to integrate cybersecurity considerations throughout the software development lifecycle.
- Analyze complex processes and workflows related to authorization, assessment, and continuous monitoring.
- Identify inefficiencies and compliance gaps, recommending data-driven improvements.
Required Qualifications:
- Minimum of bachelor's degree in Cybersecurity, Computer Science, Information Technology, Public Policy, or a related field OR Equivalent combination of education and relevant experience.
- Minimum of 3 years of experience as a Policy SME with a demonstrated focus on cybersecurity frameworks and compliance within the US government or government contracting environment.
- Proven track record in developing and implementing policies aligned with NIST standards (specifically NIST 800-53 and related Special Publications).
- Experience with the Risk Management Framework (RMF) process and associated documentation (SSP, SAR, POA&M, etc.).
- In-depth knowledge of NIST 800-53, and other relevant cybersecurity standards and regulations (e.g., FISMA, FedRAMP).
- Understanding of how to tailor cybersecurity policies to meet specific agency and mission requirements.
- Exceptional written and verbal communication skills, including the ability to translate technical concepts for non-technical audiences.
- Ability to collaborate effectively with cross-functional teams, including stakeholders at various levels within the government.
Desired Qualifications:
- Familiarity with Department of State FAM/FAH: Experience with internal framework is highly advantageous.
- Contracting Acumen: Familiarity with government contracting processes, terminology (FAR, DFARS, etc.), and how policy decisions impact contract compliance.
- Industry Certifications: Relevant cybersecurity certifications (e.g., CISSP, CISM, etc.) are a significant plus.
- Software Development Background: Understanding of the software development lifecycle and the integration of security principles within it.
Clearance Requirement: Active Secret clearance.
*This position is contingent upon future contract award to Gunnison.
Why Join Gunnison?
- Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
- Quality is our top priority.
- Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
- There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
- We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
- We hire for careers at Gunnison, not to fill a position.
Employee Benefits
Gunnison employee benefits meet or beat other companies in the Washington, D.C. metropolitan area, including:
- Bonuses AND profit-sharing
- 401k Matching
- Certifications and training allowance $2,500/year
- 3 weeks of personal leave your first year (160 hours can roll over every year)
- 5 days of Flex-Time-Off per year
Equal Opportunity/Affirmative Action Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time.
In 1994 Gunnison Consulting Group began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.
-
Lead Cybersecurity Policy SME
1 month ago
Washington, United States Gunnison Consulting Group Inc Full timeJob DescriptionJob DescriptionWork Location: Hybrid/Washington, DC.We are seeking a motivated and customer-oriented cybersecurity professional to support our Department of State client. The candidate will support maturation of the customer's cybersecurity program to enact cyber policy, roles, operations, and compliance.Duties and responsibilities...
-
Cybersecurity Subject Matter Expert
3 months ago
Washington, United States Hoplite Group Full timeJob DescriptionJob DescriptionOpportunity: Cybersecurity Subject Matter Expert (SME) to support U.S. Government contract building capacity in a partner nation (*Secret Security Clearance Required*).Location: Remote support during planning phase, with forward engagements in a partner nationLevel of Effort - Monthly Breakdown: 100 hours (templated overseas...
-
Cybersecurity Strategy and Policy Advisor
1 week ago
Washington, Washington, D.C., United States Hoplite Group Full timePosition OverviewOpportunity: Cyber Strategy and Policy Subject Matter Expert (SME)Summary: Hoplite Group is in search of a part-time Cyber Strategy and Policy SME to assist in enhancing Institutional Capacity Building (ICB) for partner nations. We are looking for professionals with extensive experience in crafting comprehensive cyber strategies.Work...
-
Cyber Strategy and Policy Subject Matter Expert
2 months ago
Washington, United States Hoplite Group Full timeJob DescriptionJob DescriptionOpportunity (Part-Time): Cyber Strategy and Policy Subject Matter Expert (SME) Bottom Line Up front: Hoplite Group is seeking a part-time Cyber Strategy and Policy SME to help in Institutional Capacity Building (ICB) for SOUTHCOM Partner Nation – seeking individuals with deep experience in developing long-term cyber...
-
Cybersecurity Engineer Subject Matter Expertise
4 weeks ago
Washington, United States Clearwaters.IT Full timeJob DescriptionJob DescriptionClearwaters.IT is seeking a Cybersecurity Engineer Subject Matter Expertise (SME) to oversee the design, development, implementation, and integration of Military OneSource architectures and systems across computing, network, and enclave environments, ensuring compliance with DoD Information Assurance (IA) requirements. The role...
-
Cybersecurity Engineer Subject Matter Expertise
4 weeks ago
Washington, United States Clearwaters.IT Full timeJob DescriptionJob DescriptionClearwaters.IT is seeking a Cybersecurity Engineer Subject Matter Expertise (SME) to oversee the design, development, implementation, and integration of Military OneSource architectures and systems across computing, network, and enclave environments, ensuring compliance with DoD Information Assurance (IA) requirements. The role...
-
Senior Cybersecurity Policy Advisor
2 weeks ago
Washington, Washington, D.C., United States Gunnison Consulting Group Inc Full timeJob OverviewLocation: Hybrid/Washington, DC.We are in search of a dedicated and client-focused cybersecurity expert to enhance our Department of State client's cybersecurity initiatives. The selected candidate will play a pivotal role in advancing the client's cybersecurity framework, focusing on policy development, operational roles, and regulatory...
-
Senior Cybersecurity Policy Advisor
2 weeks ago
Washington, Washington, D.C., United States Gunnison Consulting Group Inc Full timeJob OverviewLocation: Hybrid/Washington, DC.We are in search of a dedicated and client-focused cybersecurity expert to enhance our Department of State client's cybersecurity initiatives. The selected candidate will play a pivotal role in advancing the client's cybersecurity framework to implement cyber policies, define roles, streamline operations, and...
-
Lead Cybersecurity SME
3 months ago
Washington, United States Gunnison Consulting Group Inc Full timeJob DescriptionJob DescriptionWork Location: Hybrid/Washington, DC.We are seeking a motivated and customer-oriented cybersecurity professional to support our Department of State client. The candidate will support customer compliance with M-21-31 and E.O. 14028 (Cyber Incident Logging).Duties and responsibilities include:Provide expert guidance during the...
-
Lead Cybersecurity Compliance SME
3 months ago
Washington, United States Gunnison Consulting Group Inc Full timeJob DescriptionJob DescriptionWork Location: Hybrid/Washington, DC.We are seeking a motivated and customer-oriented cybersecurity professional to support our Department of State client. The candidate will support maturation of the customer's cybersecurity program to enact cyber policy, roles, operations, and compliance.Duties and responsibilities...
-
Lead Cybersecurity Process SME
1 month ago
Washington, United States Gunnison Consulting Group Inc Full timeJob DescriptionJob DescriptionWork Location: Hybrid/Washington, DC.We are seeking a motivated and customer-oriented cybersecurity professional to support our Department of State client. The candidate will support maturation of the customer's cybersecurity program to enact cyber policy, roles, operations, and compliance.Duties and responsibilities...
-
Cybersecurity Policy Consultant
2 weeks ago
Washington, United States Next City Full timeAbout Next CityNext City is a leading consultancy in the cybersecurity sector, dedicated to providing independent and customized guidance, assessments, technical evaluations, and a comprehensive range of cyber engineering services to federal clients. With a robust portfolio of esteemed clients and strong partnerships with top technology providers, Next City...
-
Cybersecurity Policy Consultant
2 weeks ago
Washington, United States Next City Full timeAbout Next CityNext City is a prominent consultancy firm specializing in cybersecurity, dedicated to providing customized guidance, assessments, technical evaluations, and a comprehensive range of cyber engineering services to federal agency clients. With a robust client portfolio and strong partnerships with leading technology providers, Next City has...
-
Cybersecurity Policy Specialist
2 weeks ago
Washington, United States Next City Full timeAbout Next CityNext City is a leading consultancy firm specializing in cybersecurity, dedicated to providing independent and customized guidance, assessments, technical evaluations, and a comprehensive range of cyber engineering services to government clients. With a robust portfolio of clients and strong relationships with top cloud and technology firms,...
-
Lead Cybersecurity Training Specialist
2 weeks ago
Washington, United States Feditc LLC Full timeJob OverviewPosition LevelExperiencedJob LocationWashington DC - Washington, DCEmployment TypeFull TimeEducational RequirementBachelor's DegreeCompany OverviewFEDITC, LLC is a rapidly expanding organization dedicated to supporting the Department of Defense and various intelligence agencies globally. We specialize in developing critical national security...
-
Cybersecurity Policy and Privacy Analyst
1 week ago
Washington, Washington, D.C., United States LMI Full timePosition OverviewLMI is in search of a Cybersecurity & Privacy Policy Analyst to deliver expert support for a government client in the Metropolitan Washington, DC Area.About LMIAt LMI, we are redefining the journey from insight to outcome at The New Speed of PossibleTM. With over 60 years of federal experience, we leverage our innovation ecosystem to reduce...
-
Cybersecurity Strategy and Policy Consultant
2 weeks ago
Washington, Washington, D.C., United States Hoplite Group Full timeJob OverviewPosition: Part-Time Cybersecurity Strategy and Policy ConsultantSummary: Hoplite Group is in search of a part-time Cybersecurity Strategy and Policy Consultant to contribute to Institutional Capacity Building (ICB) for SOUTHCOM Partner Nations. We are looking for candidates with extensive experience in crafting long-term cybersecurity...
-
Cybersecurity Public Policy Director
18 hours ago
Washington, Washington, D.C., United States Adobe Full timeAbout AdobeAt Adobe, we're passionate about empowering people to create beautiful and powerful digital experiences. We're a global leader in digital media and marketing solutions, and we're committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity.The OpportunityWe're seeking a seasoned leader to...
-
Cybersecurity Policy and Privacy Analyst
2 weeks ago
Washington, Washington, D.C., United States LMI Full timePosition OverviewLMI is looking for a Cybersecurity & Privacy Policy Analyst to assist a government client in the Metropolitan Washington, DC Area.About LMIAt LMI, we are redefining the journey from insight to outcome at The New Speed of PossibleTM. With over 60 years of federal experience combined with our innovative ecosystem, we expedite time to value and...
-
Cybersecurity Policy and Privacy Analyst
2 weeks ago
Washington, Washington, D.C., United States LMI Full timePosition OverviewLMI is looking for a dedicated Cybersecurity & Privacy Policy Analyst to provide essential support for a government client in the Metropolitan Washington, DC Area.About LMIAt LMI, we are transforming the journey from insight to outcome at The New Speed of PossibleTM. With over 60 years of federal expertise combined with our innovative...
