Skip to Main Content

Senior Policy Analyst Subject Matter Expert

Herndon, VA
  • Expired: over a month ago. Applications are no longer accepted.
Job Description

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking an Senior Policy Analyst SME who has experience providing cybersecurity architecture, engineering, and strategic consulting services in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.




Roles and Responsibilities

The ideal candidate will provide expert-level technical support services across a broad portfolio of cybersecurity and engineering domains, with an emphasis on enterprise level risk analysis, mitigation, and management. The Senior Policy Analyst SME will help lead the maturation of federal Enterprise Risk Management (ERM) capabilities. The SME will provide thought leadership to guide decision making and innovation at the enterprise level and will identify and implement improvements to increase the value and effectiveness of current and emerging risk management and mitigation strategies and best practices. Our customer’s requirements are dynamic and complex; we are seeking individuals who can effectively balance strategic, long-term planning with the tactical day-to-day demands of supporting a mission-focused customer. The ideal candidate must be a fast learner, and able to effectively engage resources and work across teams to decompose large, complex problems into workable solutions. An aptitude for learning, strategic planning, and the ability to effectively communicate at all levels of the organization are a must


Required Skills

  • Deep understanding of Cyber policy: ICD-503, ITIL, NIST 800-27, NIST Cybersecurity Framework,RMF, FISMA
  • Experience with specific software: Elastic, Cribl, ServiceNow, Splunk, Nessus, Arcsight, Jira, RSA Archer, Xacta
  • Experience working in Agile-based program structures
  • Demonstrated experience leading program delivery
  • Experience performing gap analysis on information assurance standards and common services for strategic cyber investment
  • Experience providing governance and project management support
  • Experience providing government costing estimates and requirements analysis for software and security applications
  • Experience developing FISMA reporting (CyberScope & OMB FISMA reporting requirements) and supporting narratives for compliance and/or gaps in compliance with FISMA reporting requirements
  • An understanding of a wide variety of IT system infrastructure and application development methodologies



Desired Skills

  • Security Engineering expertise in support of the security architecture of large scale and complex enterprise and/or major mission systems/investment programs - from initial threat and risk assessments, to security architecture requirement development and implementation
  • Experience providing cybersecurity engineering, support, analysis, documentation, and/or validation services for a broad set of IT solutions, including applications, networks, systems, architectures, and infrastructure
  • Experience developing and implementing security and risk mitigation strategies, technical and operational controls, POA&Ms, Risk Acceptance and Waivers
  • Extensive understanding of managing system vulnerabilities and associated Risk Management processes and artifacts
  • Experience developing and executing cybersecurity assessment plans, testing procedures, and providing risk mitigation guidance
  • Experience developing and providing guidance to organizations and/or program/system owners and teams in vulnerability and risk identification, remediation, as well as risk posture determination and risk mitigation
  • Knowledge of Analytic Hierarchy Process (AHP) with Pairwise comparison process and its use to inform decisioning



Education Requirement

  • Bachelor's Degree desired


Years of Experience Requirement

  • 6+ years working within Federal Enterprises supporting cybersecurity related programs




  • Remote with some travel required

Security Clearance

  • Must be a US Citizen & be able to obtain a clearance



Herndon, VA
20170 USA



View all jobs at ShorePoint