Cyber Security Policy Specialist

Dragonfli Group is a cybersecurity and IT consulting firm providing services to federal agencies and Fortune 100 enterprises. Headquartered in Washington, DC, Dragonfli supports clients in securing mission-critical systems across on-site, hybrid, and fully remote environments.

This contract Cyber Security Policy Specialist role supports a large federal agency by strengthening security governance documentation and ensuring policies align to recognized cybersecurity frameworks and organizational objectives within a large-scale IT environment. The specialist will research, draft, analyze, and update security policies and standards; perform gap analyses against frameworks and regulatory requirements; and translate complex security concepts into clear, actionable documentation, leveraging AI tools and capabilities to support technical writing. The role calls for seasoned policy analysis and technical writing expertise, strong collaboration across technical and non-technical teams, and excellent communication and planning to drive meaningful lifecycle updates and stakeholder alignment. It's a high-impact opportunity to shape security policy and governance within a major federal agency.

This is a multi-year contract position involving a large US federal agency. Candidates with previous federal contracting experience are preferred. U.S. Citizenship or Permanent Residency required. If hired, all work related to this role must be performed within the continental U.S.

Responsibilities:

• Research, draft, and analyze policies to align with stakeholder needs, subject matter expert input, industry standards, and organizational goals
• Conduct policy gap analyses against industry frameworks and regulatory requirements and recommend enhancements
• Collaborate with security engineers, compliance officers, and business managers to ensure policies are technically sound and operationally practical
• Translate technical security concepts into clear, concise, accessible documentation for diverse audiences
• Support annual lifecycle updates by collaborating with stakeholders to update CISO policies

Searching for Cyber Security roles that provide visa sponsorship? Connect with international employers through Cyber Security Jobs with Visa Sponsorship opportunities actively seeking talented professionals.

• Review and contribute to policies and standards for groups outside of the CISO organization
• Apply NIST CSF, CIS Controls, and other relevant security frameworks to inform policy content and structure
• Use AI tools and capabilities to improve efficiency and quality in technical writing and policy analysis
• Perform research to support policy development and lifecycle updates
• Tailor written and verbal messaging to different stakeholder groups and levels of technical depth

Requirements:

• 2–3 years of technical writing experience in policy analysis or a related role
• Knowledge of AI tools and capabilities to perform technical writing
• Good working knowledge of NIST CSF and CIS Controls and other relevant security frameworks

Explore our comprehensive directory of visa sponsorship jobs from employers worldwide who are ready to sponsor talented international professionals.

• Ability to distill complex technical concepts into clear, concise, and actionable language
• Excellent written and verbal communication skills, including tailoring messaging for diverse audiences
• Strong research skills with the ability to contribute meaningfully to lifecycle updates
• Strong collaboration skills with the ability to work effectively across technical and non-technical teams
• Familiarity with security governance, risk management, and compliance (GRC) processes
• Bachelor’s degree in public policy, political science, law, economics, or a related field
• U.S. Citizenship or Permanent Residency required; work must be performed within the continental U.S.

Skill(s):

• Policy research, drafting, and analysis within cybersecurity or IT governance contexts

Interested in opportunities specifically in United State? Discover our dedicated Visa Sponsorship Jobs in United State page featuring roles from top employers in this location.

• Gap analysis and mapping policies to security frameworks and regulatory requirements
• Technical writing and editing for clarity, consistency, and actionability
• Ability to translate security concepts for both technical and non-technical audiences
• Stakeholder management and cross-functional collaboration
• Lifecycle management for policy updates and version control discipline
• Working knowledge of NIST CSF and CIS Controls
• Practical understanding of GRC concepts and how policies support compliance outcomes

Benefits:

• Insurance – health, dental, and vision
• Paid Time Off (PTO) and 11 Federal Holidays
• 401(k) employer match