Senior Policy Strategist/Architect

Peraton is looking for a Sr. Policy Strategist/Architect to become part of Peraton's Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program, providing leading cyber and technology security experience to enable innovative, effective and secure business processes.

Location: Rosslyn, VA

Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise Department of State (DoS) Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting Peraton's DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.

In this role, you will get to:

Execute the planning, design, development and implementation of policies and procedures associated with cyber security and the evolving technological landscape while ensuring policies and security standards encompass the risk appetite based on enterprise acceptance.
• Determine the impact of changes to the Department's IT environment, to include use of new and emerging technology, software, hardware, and firmware; develop technical rationale for policy and standard changes.
• Review, assess, and create Policy impact reports on the impact of new or revised National Level and Departmental policies and regulations affecting Department of State cyber security policies, standards and/or CTS programs or operations.
• Identify and diagnose operational issues and implement design alterations based on policy trends and reports.
• Recommend changes to Department of State cyber security policies, standards, and/or CTS programs or operations to comply with new or revised National Level and Departmental policies and regulations.
• Participate in intra-agency policy working groups.
• Develop processes for policy task automation; support user related system development life cycle activities, to include requirements definition, functional design, and user acceptance testing. Additionally, using Department policies, standards, and RMF/CSF controls to reduce enterprise wide risks
• Produce weekly, monthly, and quarterly updates and deliverables to the customer detailing the teams work efforts, accomplishments, and gaps.
• Review the current organization of the ET Division for opportunities for collaboration on specific priority objectives. Create a growth plan with the Customer to determine areas that require additional integration.
• Understand and unify the non-Peraton contract organizations technical capabilities into alignment for the overall Office.
• The following are the current technical needs that require additional lift:
  • Work with the cross functional teams in division to improve visioning on their mission and activities understanding the trade space of non-mapped PWS requirements or new mission directives.
  • Work with external organizations to collect requirements that ET can fill to better focus prioritization of work activities.
  • Provide business consulting (requirements collection) for future Applications so that we can get a head start in growth on the ADWS organization.
  • Develop a quarterly report of emerging technical trends that DS will need to mature; similarly, develop a quarterly report for on cyber/communications controls that impact security of Posts.
  • Assist the Policy Division in developing mission requirements to build an updated FAM/FAH that is relevant to new NIST 800-53 revision standards, NIST RMF, CSF 2.0, and federal mandate.
  • Develop an understanding of the current stakeholder lists necessary across State and support offices both within and outside our bureau.

#DSCM

Minimum Requirements:

• Bachelor's degree and minimum of 9 years of relevant experience; 7 years with Masters; 4 years with PhD. An additional 4 years of experience may be substituted in lieu of degree.
• Possess ONE of the following certifications or be able to obtain within 6 months of start date:
• CASP+ CE, CCNA Cyber Ops, CCNA-Security, CCNP Security, , CFR, CISA, CISSP (or Associate), Cloud+, CySA+, GCED, GCIA, GCIH, GICSP, SCYBER, VCA DCV, PPDA, Agile IC, or SNOW App Dev
• Experience monitoring and responding to inquiries on cyber policies and standards.
• Demonstrated technical and administrative support of cyber security policy.
• Experience examining requests and making recommendations for the development/approval of waivers/exceptions to policies and standards.
• Familiar with NIST 800-53 Security and Privacy Controls, NIST SP 800-37 Risk Management Framework, and NIST CSF 2.0.
• Experience with Policy development, Incident Response, Blue Team, Red Team, or ISSO related work.
• U.S. citizenship required.
• Active Secret clearance.
• Must have the ability to obtain a final Top Secret/SCI security clearance.

Preferred:

• Certifications in:
  • FITSP
  • ISACA-CISM
  • ISACA-ISSEP

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.