Senior Information Security Policy Analyst

				Overview:

TISTA is seeking an experienced Senior Information Security Policy Analyst to join our team that has a strong background in Policy for IT Security and Privacy.

TISTA associates enjoy above Industry Healthcare Benefits, Remote Working Options, Paid Time Off, Training/Certification opportunities, Healthcare Savings Account & Flexible Savings Account, Paid Life Insurance, Short-term & Long-term Disability, 401K Match, Tuition Reimbursement, Employee Assistance Program, Paid Holidays, Military Leave, and much more!

Responsibilities:

* Experience in technical writing, specific to security-related documents, policies and procedures
* Develop, update, and implement DISC security directives, policies, procedures and plans to support DISC Authority to Operate (ATO)
* Perform gap analysis of existing policies and procedures
* Develop, update, and implement DISC security directives, policies, and procedures to support cloud working group and cloud migrations
* Assist in the development and implementation of Departmental Regulations with CPOC
* Coordinate with system owners to develop Business Impact Analysis (BIAs)
* Assist in Disaster Recovery (DR), Business Continuity (BC) & Continuity of Operations (COOP) documentation and activities
* Demonstrate strong knowledge of migrating and securing IT systems in the cloud
* Experience with High Value Assets (HVA) systems and their security controls 
* Experience with Privacy related policy and compliance 
* Experience with developing risk impact assessments and risk mitigation strategies 
* Strong project management skills and familiarity with standard project management methodologies such as Agile and Scrum 
* Comfortable leading meetings 
* Strong familiarity with NIST Special Publications and guidance, specifically 800-53 rev. 4/rev. 5 and the NIST Risk Management Framework 
* Strong problem solving and analysis skills, self-motivated, leader and able to work and communicate in a team environment

Qualifications:

* A minimum of 5-7 years of demonstrated experience in the Information Security (Cybersecurity or Information Assurance) field 
* Experience with leading and directing the work of others 
* Demonstrates proficiency with developing, maintaining and managing Authorizations and Assessments (A&A) and Authority to Operate (ATO) packages 
* Knowledge of standard concepts, practices, and procedures within program management 
* Demonstrates proficiency in IT systems cloud migrations and securing systems in the cloud 
* A holistic understanding and knowledge of the Risk Management Framework (RMF) as defined by National Institute of Technology (NIST) Special Publication (SP) 800-53 (current revision), Recommended Security Controls for Federal Information Systems and NIST SP 800-53A Revision 4, Guide for Assessing the Security Controls in Federal Information Systems. 
* Strong problem-solving and analysis skills, self-motivated, and able to work and communicate in a team environment. 
* Excellent documentation skills - redacted samples may be requested. 
* Excellent oral and written communication skills. 

Desired Certifications: 

* Security+
* Certified Authorization Professional (CAP)
* Certified in Governance, Risk and Compliance (CGRC)
* Certified Information Privacy Professional (CIPP)
* Cloud Certification (Azure, AWS, CCSP, Cloud+, etc.)
* Certified Information System Security Professional (CISSP)
* Certified Cloud Security Professional (CCSP)
* Project Management Professional (PMP)

Education:

* Bachelor's degree or higher in computer science, Information Technology, Information Security, or similar fields. 

Clearance: 

* The ability to pass a Tier 4/HIGH Background Investigation. US citizens or permanent residents highly preferred.

Location:

* Remote, USA.

Pay Range:

* The pay for this position ranges from $85,730 to $102,500.
* The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and location.
* Also, certain positions are eligible for additional forms of compensation, such as bonuses.
* TISTA associates are eligible to participate in our comprehensive benefits plan! More information can be found here: https://tistatech.com/working-at-tista/
			

Apply

Share this job:

Share this Job

View company profile

Tista Science and Technology Corporation