Be on Alert – Fraudulent Employment Offers. Learn More

A statement on social injustice. Click to read more.
Arlington, Virginia, United States of America
JOB #R2100175

Cyber Security Policy Specialist

ICF seeks a Cyber Security Policy Specialist to support the Governance, Risk and Compliance capabilities in the cyber security area for our federal client. In this role you will utilize your experience as a cybersecurity professional to provide policy, program and risk management support to our federal client in maturing their Information Security Program. This position is part of a large, business analysis and management support services contract for a federal civilian agency and is based on our client site in Arlington, VA.

What you’ll be doing:

  • Interface with cyber security and technical subject matter experts to gather information to inform policy statements, and develop/update organizational policies accordingly.

  • Use your experience with the NIST standards and special publications to produce, maintain and update security policies, technical guidance, and Standard Operating Procedures (SOPs).

  • Initiates and maintains Risk Management Framework (RMF) for all client systems and manages the process through assessment and authorization.

  • Develop, review, analyze, document, and maintain current and new security process documents including but not limited to SOPs, templates, plans, manuals, workflows, requirements documents, job aids, web content, and other security guidance documentation.

  • Perform periodic reviews of documentation and current publications to identify and inform recommendations for improving policies, processes, and procedures based on new and/or evolving Federal standards, requirements and/or guidelines.

  • Provide planning, documentation, logistics, and execution support for cybersecurity and risk management meetings, including meeting facilitation and documenting associated meeting minutes.

  • Develop and maintain content related to the client’s Information Security Program on the client Intranet and SharePoint Site(s). 

  • Maintain and manage security related items in the POA&M repository and draft POA&M summary reports to support communications with leadership and external auditors.

  • Support Security Risk Management with information security risk metrics collection and reporting.

  • Evaluate Authorization packages and make recommendations for authorization.

  • Evaluate security assessment documentation and provide written recommendations for security authorization to the Government.

  • Review security artifacts to ensure compliance with NIST controls.

  • Research, review, monitor, and report on industry best practices, latest cybersecurity developments and trends, standards, and guidelines, and apply these to the Federal environment.

  • Respond to emerging requirements or policies as set by legislation, regulation or policy.

  • Identify and implement process improvement initiatives that contribute to and enhance the efficacy of the client’s Information Security Program.

Basic Qualifications:

  • Bachelor’s degree with 5+ years’ experience in implementing Cybersecurity and risk management best practices in Federal agencies

  • Direct experience with FISMA/NIST standards and special publications is required. Specifically NIST 800-53 Rev4 and NIST 800-37 Rev2

  • Experience working with Federal clients

  • Familiarity with and experience assisting Federal agencies implement and align organizational security policies and practices to NIST Standards as well as Office of Management and Budget (OMB) and Department of Homeland Security (DHS) policies and directives.

  • CISSP certification

  • US Citizenship (required by federal contract for position)

  • Ability to pass a federal agency check

Preferred Skills/Experience:

  • Cybersecurity policy development/writing, Security Standards and best practices highly desired.

  • Experience in designing and implementing security standards and best practices.

  • Hands-on experience in establishing and maturing an organization’s Security Program.

  • Program/project management experience.

Professional Skills:

  • Strong analytical, problem-solving and decision making capabilities.

  • Strong written and verbal communication skills.

  • Proven track record of providing high quality professional services to Federal clients.

  • Demonstrated history of positive customer-oriented interactions.

  • Aptitude for working autonomously in a dynamic and fast-paced environment.

  • Ability to multi-task and prioritize according to changing circumstances.

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth. If you’re seeking to make a difference in the world, visit to find your next career. ICF—together for tomorrow.

ICF is an equal opportunity employer that values diversity at all levels. (EOE – Minorities/Females/ Protected Veterans Status/Disability Status/Sexual Orientation/Gender Identity). For more information, please read our EEO & AA policy.

Reasonable Accommodations are available for disabled veterans and applicants with disabilities in all phases of the application and employment process. To request an accommodation please email and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about non-discrimination:  EEO is the law and  Pay Transparency Statement.

Virginia Client Office (VA88)

Who is ICF?

A global consulting services company with +7,000 people across +70 countries, but we are not your typical consultants.

More jobs you might like

Feb 22, 2021
Arlington, Virginia, United States of America
Feb 8, 2021
Multiple locations
Jan 11, 2021
Adelphi, Maryland, United States of America
Nov 24, 2020
Woodlawn, Maryland, United States of America
See All Jobs

Join our talent network

ICF is growing, and we add new open roles to our site regularly. If you're waiting for that perfect opportunity at ICF or want an inside look at what it's like to do world-changing work, join our talent network to stay updated.

Join our talent network

ICF is growing, and we add new open roles to our site regularly. If you're waiting for that perfect opportunity at ICF or want an inside look at what it's like to do world-changing work, join our talent network to stay updated.