ZipRecruiter

Log In

1

Cybersecurity Policy Analyst Jobs (NOW HIRING)

Everwatch

Policy Analyst, Mid

Springfield, VA · On-site

$62.50 - $72.12/hr

Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.

Tau Six

Senior IT Policy Analyst (TS/SCI)

Arlington, VA · On-site

Tau Six, an agile small company delivering cybersecurity and systems integration services to the US National Security market, has an immediate need for a Senior Information Technology Policy Analyst ...

Tau Six

Senior IT Policy Analyst (TS/SCI)

Arlington, VA · On-site

Tau Six, an agile small company delivering cybersecurity and systems integration services to the US National Security market, has an immediate need for a Senior Information Technology Policy Analyst ...

next page

Showing results 1-20

All JobsCybersecurity Policy Analyst Jobs

Cybersecurity Policy Analyst information

See salary details

$43K

$99.4K

$150K

How much do cybersecurity policy analyst jobs pay per year?

As of Jun 10, 2026, the average yearly pay for cybersecurity policy analyst in the United States is $99,400.00, according to ZipRecruiter salary data. Most workers in this role earn between $79,500.00 and $115,500.00 per year, depending on experience, location, and employer.

What are Cybersecurity Policy Analysts?

Cybersecurity Policy Analysts are professionals who develop, implement, and evaluate policies and regulations to protect an organization’s digital assets and information systems. They analyze current security measures, assess risks, and ensure compliance with laws and industry standards. Their work helps organizations respond to evolving cyber threats and maintain robust security protocols. Cybersecurity Policy Analysts often collaborate with IT teams, legal advisors, and management to create effective security policies and incident response plans.

What is the difference between Cybersecurity Policy Analyst vs Cybersecurity Analyst?

AspectCybersecurity Policy AnalystCybersecurity Analyst
Required CredentialsBachelor's in cybersecurity, IT, or related field; certifications like CISSP, CISABachelor's in cybersecurity, IT, or related field; certifications like CompTIA Security+ or CISSP
Work EnvironmentPolicy development, compliance, and strategic planning in office settingsTechnical security monitoring, incident response, and system analysis
Employer & Industry UsageGovernment agencies, corporations, consulting firms focusing on security policiesIT departments, security firms, and organizations managing technical security

The main difference is that a Cybersecurity Policy Analyst focuses on creating and managing security policies and ensuring compliance, while a Cybersecurity Analyst handles technical security measures and threat mitigation. Both roles require similar credentials but serve different functions within cybersecurity teams.

How does a Cybersecurity Policy Analyst typically collaborate with technical and non-technical teams within an organization?

A Cybersecurity Policy Analyst often acts as a bridge between technical security teams and non-technical stakeholders such as legal, compliance, and executive leadership. They interpret complex cybersecurity regulations and translate them into actionable policies that align with organizational goals. Regular collaboration involves attending cross-functional meetings, providing policy guidance during security incidents, and ensuring everyone understands their roles in maintaining compliance. This collaborative environment helps ensure that security policies are both technically sound and practically applicable across the organization.

What are the key skills and qualifications needed to thrive as a Cybersecurity Policy Analyst, and why are they important?

To thrive as a Cybersecurity Policy Analyst, you need a strong understanding of cybersecurity principles, risk management, regulatory frameworks, and typically a degree in cybersecurity, information technology, or a related field. Familiarity with policy development tools, compliance management systems, and certifications like CISSP or CISM are often required. Excellent analytical thinking, communication, and stakeholder engagement skills will help you translate technical risks into actionable policy recommendations. These skills ensure organizations develop effective security policies that comply with regulations and mitigate cyber threats.
More about Cybersecurity Policy Analyst jobs
What cities are hiring for Cybersecurity Policy Analyst jobs? Cities with the most Cybersecurity Policy Analyst job openings:
What are the most commonly searched types of Cybersecurity Policy Analyst jobs? The most popular types of Cybersecurity Policy Analyst jobs are:
What states have the most Cybersecurity Policy Analyst jobs? States with the most job openings for Cybersecurity Policy Analyst jobs include:
What job categories do people searching Cybersecurity Policy Analyst jobs look for? The top searched job categories for Cybersecurity Policy Analyst jobs are:
Cybersecurity Policy Analyst jobs near you
Policy Analyst, Mid

Policy Analyst, Mid

Everwatch

Springfield, VA • On-site

$62.50 - $72.12/hr

Other

Posted 9 days ago

Job description

Job TitlePolicy Analyst, MidOverview

EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our country's most critical missions.  We are a full-service government solutions company. Harnessing the most advanced technology and solutions, we strengthen defenses and control environments to preserve continuity and ensure mission success.

EverWatch employees are focused on tackling the most difficult challenges of the US Government. We offer the best salaries and benefits packages in our industry - to identify and retain the top talent in support of our critical mission objectives.

Commitment to Non-Discrimination:

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Responsibilities

As a Policy Analyst, you will provide support to all policy development, review, coordination, adjudication, promulgation, communication, and compliance in accordance with Policy Life Cycle Management (PLCM) process. You will support Subject Matter Expert (SME) development, coordination, and maintenance of all assigned policies, self-inspection checklists, and gap analyses.

How You'll Contribute:

  • Support policy development, review, coordination, and compliance for corporate policies, IT services policies, cybersecurity, and information assurance policies.
  • Support the development of SME self-inspection compliance checklists to ensure policy implementation, monitoring, and tracking.
  • Lead and support SME analysis for gap analysis and policy revisions.Conduct independent verification and validation to ensure policies are clear, fact-based, accurate, and consistent with external guidance and strategic planning.
  • Identify policy gaps and propose appropriate solutions and resolutions to the policy lead.
  • Support the implementation of policy business process improvements.
  • Support the tracking and reporting of policy business analytics, metrics, and performance measures.
  • Support the organization's Cybersecurity Strategy.
  • Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.

Join us. The world can't wait. 

Qualifications

You Have:  

  • 2+ years of experience reviewing and analyzing high-level governance documents including, agency directives, statutes, and Executive Orders 
  • 2+ years of experience tracking and managing formal taskers 
  • 2+ years of experience in coordinating and collaborating on agency-level support agreements 
  • Experience leading, managing, and working policy compendiums, frameworks, strategic planning agendas, rescissions, and gaps 
  • Knowledge of NIST 800-53 controls, cybersecurity frameworks, and high-level cybersecurity policy 
  • Active TS/SCI clearance;  willingness to take a polygraph exam 
  • Bachelor's Degree in computer science, system engineering, cybersecurity, international affairs, policy and 7+ years of experience leading, managing, and working policies in accordance with a Policy Life Cycle Management (PLCM) process or HS Diploma or GED and 10 + years of experience leading, managing, and working policies in accordance with a Policy Life Cycle Management (PLCM) 

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. 

Compensation at EverWatch is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $62.50 to $72.12 per hour.  The estimate displayed represents the typical compensation range for this position and is just one component of EverWatch's total compensation package for employees.

Clearance LevelTS/SCIJob LocationsUS-VA-SpringfieldSkillsPolicy, Policy Life Cycle Management, Communications, Classified DocumentsMinMaxEmployment Type: OTHER

Apply