Cyber Policy Analyst

Job Title

Cyber Policy Analyst

Employment Type

Full-Time, Direct Hire

Location

Alexandria, VA

Salary

$155,000 - $165,000 a year

Clearance Required

TS/SCI

Position Overview

We are seeking a highly skilled Cyber Policy Analyst with an active TS/SCI security clearance to support the development, analysis, and implementation of cybersecurity policies for a mission-critical federal program. The ideal candidate will have a strong background in cybersecurity policy writing and development, a deep understanding of federal cybersecurity standards and frameworks, and experience working in a classified environment.

Key Responsibilities

• Develop, analyze, and update cybersecurity policies, procedures, and governance documentation in alignment with federal regulations and organizational goals.
• Interpret and apply cybersecurity-related directives (e.g., NIST, FISMA, DoD, and IC standards) to existing and future cyber policy frameworks.
• Coordinate with cybersecurity, legal, compliance, and risk teams to ensure policy effectiveness and alignment with best practices.
• Prepare white papers, briefing materials, and recommendations for senior leadership on cybersecurity policy initiatives.
• Track evolving federal cybersecurity regulations and recommend updates to internal policies accordingly.
• Provide subject matter expertise to ensure consistent policy implementation across IT and cyber operations.
• Support audit and compliance activities by providing relevant policy documentation and interpretation.
• Facilitate policy workshops, working groups, and stakeholder meetings.

Qualifications

• Active TS/SCI security clearance (required).
• 3+ years of experience in cyber policy writing, development, or governance in a federal or defense environment.
• Strong knowledge of cybersecurity frameworks and guidance (e.g., NIST 800-53, NIST CSF, RMF, CNSSI 1253).
• Experience working with DoD, IC, or federal agencies in a cybersecurity or information assurance capacity.
• Excellent writing, editing, and communication skills with the ability to translate technical language into clear and actionable policy.
• Bachelor's degree in Cybersecurity, Information Assurance, Public Policy, or a related field (Master’s preferred).

Preferred Qualifications

• Experience supporting classified systems or programs.
• Familiarity with federal legislative processes or executive cybersecurity orders.
• Certifications such as CISSP, CAP, or CISM are a plus.