Technical Policy Analyst

Overview

Remote
Depends on Experience
Full Time
No Travel Required

Skills

NIST
critical thinking
Strong communication skills
problem - solving
Zero Trust

Job Details

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a work hard, play hard mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we re looking for:

We are seeking a Technical Policy Analyst who has experience providing Zero Trust support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Technical Policy Analyst will have the opportunity to be exposed to all aspects of the program and will be encouraged to grow as the organization expands.

What you ll be doing:

  • Reviewing, decomposing, and consolidating requirements from diverse government memoranda, policies, and directives.
  • Engaging with stakeholders and support the technical team in delivering high-quality products, including requirements documentation, gap analysis, Zero Trust roadmaps, and presentations, to meet customer needs.
  • Working with customers to outline roadmaps, strategies, and approaches for the realization of cross-cutting security solutions that utilize ZTA product services and capabilities.
  • Assist in drafting and proposing organization-wide IT security and action plans based on security risk and analysis based on potential and emerging threats to the client s environment.
  • Support management of multiple project timelines, deliverables, and information requests of IT security initiatives and engagements.
  • Developing and executing Zero Trust roadmaps for implementing and maintaining enterprise cyber security capabilities and mapping the 5 pillars of the CISA ZTA maturity model v2.0 and the respective cross-cutting capabilities to ZT solutions
  • Document and implement Zero Trust security solutions in both on-premises and cloud-based environments.

What you need to know:

  • Understanding of Zero Trust Framework, with experience performing gap analysis based on policy and requirements.
  • Deep understanding of federal policy that adhere to CISA s ZTA Maturity Model 2.0, Executive Orders, memorandums, and NIST standards; achieving Zero Trust security goals follow the guidance outlined in OMB Memo M-22-09.
  • Experience developing requirements for enterprise cybersecurity architectures from Federal Government customers with a focus on Zero Trust.
  • Experience with baseline enterprise cybersecurity capability configurations.
  • Experience validating and verifying enterprise cybersecurity capability implementation success and ongoing configuration changes.

Must have s:

  • 5+ years experience in similar or relevant role
  • Ability to pass background and suitability investigation.
  • Ability to decompose and consolidate requirements from multiple policy sources.
  • Ability to interpret and implement functional requirements for zero trust architectures.
  • Ability to work directly with program managers and technical team members.
  • Ability to actively participate in team discussions and brainstorming sessions.
  • Ability to create, discuss, and explain technical documentation.
  • Ability to create presentation slides or graphics for customer stakeholders and project team, and effectively communicate technical information to diverse audiences.
  • Strong communication skills to effectively convey complex cybersecurity concepts and initiatives.
  • Ability to interpret and implement functional requirements for zero trust architectures.
  • Ability to conduct stakeholder interviews and guide stakeholders through the gap analysis process.
  • Ability to effectively conduct meetings with stakeholders driving progress toward Zero Trust initiatives.
  • Adaptability, flexibility, and open mind to changing requirements.
  • Ability to navigate tasks that are not well-defined.

Beneficial to have the following:

  • Multiple industry recognized IT security vendor or vendor-agnostic certifications.
  • Analytical and critical thinking is crucial for decomposing and consolidating requirements in system planning, along with the ability to determine information system requirements through evaluation.
  • Proficiency in problem-solving to address challenges and obstacles encountered during the execution of cybersecurity initiatives.
  • Relationship Building - Ability to build and maintain positive relationships with diverse stakeholders, fostering collaboration and support for cybersecurity endeavors.

Where it s done:

  • Herndon, VA or Remote