Location: Remote
We are seeking a highly motivated and skilled professional to take lead in the development, review, and/or updating of Cybersecurity business writings such as, but not limited to, policies, directives, processes, procedures, and communications documents.
- Facilitate the review of cybersecurity business writings and adjudicate comments in a timely manner.
- Develop and coordinate communication plans for new publications, their reviews, and updates.
- Support the cybersecurity team in aligning and maintaining consistency of information security requirements defined in or derived from program policies and other business writings.
- Recommend and implement document management processes for storing, tracking, posting, and managing the flow of electronic files (e.g., MS Word, MS Excel, MS PowerPoint, PDF, electronic images of paper-based information captured using a document scanner, SharePoint, etc.) through their lifecycles.
- Provide technical writing and editing support to ensure all Program-level documentation is consistent with Agency styles, professional, and clear to all intended audiences.
- Ensure all work products produced by the Office of Cybersecurity are accurate, complete, concise, professionally presented, and complies with federal, Agency, and OCIO business writing requirements.
- Develop presentations and deliver briefs on new policy requirements or updates to existing policies to Agency leadership.
- Maintain or create new policy management standard operating procedures.
- Deliverable(s) include:
- Cybersecurity Policies, Directives, Processes, Procedures, and Communications
- Cybersecurity Document Management Schedule
- Cybersecurity Document Management Tracker
- Policy Management Standard Operating Procedures
- Cybersecurity Policy Briefs and Presentations
Required Qualifications:
- There is a strong emphasis on writing cybersecurity policies and procedures.
- Direct demonstrated experience developing and updating cybersecurity policies and procedures.
- Direct demonstrated experience with security control implementation and Plans of Action and Milestones (POA&Ms)
- Direct demonstrated experience with cybersecurity risk management, compliance management, and/or enterprise governance
- Subject Matter Expert (SME) applying and implementing NIST SP 800 series and OMB guidance
- Direct demonstrated experience developing strategic communications
- Direct demonstrated experience developing executive briefings, reports, and memos
Preferred Qualifications:
- 7+ years of experience in writing Information System Security policies and procedures
- 7+ years of experience with security control implementation and Plans of Action and Milestones (POA&Ms)
- 7+ years of experience with Information System Security risk management, compliance management, and/or enterprise governance
Clearance Requirement: Ability to obtain and maintain a Public Trust.
Why Join Gunnison?
- Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
- Quality is our top priority.
- Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
- There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
- We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
- We hire for careers at Gunnison, not to fill a position.
Employee Benefits
Gunnison employee benefits meet or beat other companies in the Washington, D.C. metropolitan area, including:
- Bonuses and profit-sharing
- 401k Matching
- Certifications and training allowance $2,500/year
- 3 weeks of personal leave your first year (160 hours can roll over every year)
- Up to 5 days of Flex-Time-Off per year
Equal Opportunity/Affirmative Action Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time
In 1994 Gunnison Consulting Group began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.