Technical Writer II - Enterprise Information Security, Policy, Trainin
Posted on Nov 5, 2020 by Octo Consulting Group
Octo Consulting Group (Octo) is an industry-leading, award-winning provider of digital services for the federal government. Octo specializes in providing agile software engineering, user experience design, cloud services, and digital strategy services that address government's most pressing missions. Octo delivers intelligent solutions and rapid results, yielding lower costs and measurable outcomes.
Our team is what makes Octo great. At Octo youll work beside some of the smartest and most accomplished staff youll find in your career. Octo offers fantastic benefits and an amazing workplace culture where you will feel valued while you perform mission critical work for our government. Voted one of the region's best places to work multiple times, Octo is an employer of choice!
Write and/or edit technical documents, including business proposals, reports, user manuals, briefings and presentations, functional descriptions, system specifications, guidelines, special reports, and other project deliverables to meet contract requirements. Develop outlines and drafts for review and approval by technical specialists and project management ensuring that final documents meet applicable contract requirements and regulations. Research and gather technical and background information for inclusion in project documentation and deliverables. Consult relevant information sources, including library resources, technical and financial documents, and client and project personnel, to obtain background information, and verify pertinent guidelines and regulations governing project deliverables. Commensurate experience, education, and level of supervision and direction. The following are the detailed (but not limited to) tasks you will perform:
Develop and maintain information security policy, standards, guidance, procedures, and associated technical and non-technical documentation in collaboration with the technical staff and IT Policy/Legislative Specialist;
Develop and maintain various documentation to support the Information Security Awareness Training and Role-Based Training Program campaigns, National Cybersecurity Awareness Month activities, and specialized activities for specific user communities;
Provide support in drafting of information security policies, standards, processes, procedures, and technical guidance and shepherding them through the appropriate review processes;
Provide analysis and review of new and emerging federal information security policy, directives, and mandates in collaboration with the IT Policy/Legislative Specialist;
Maintain the inventory of existing information security policies, standards, handbooks, frameworks, procedures, and guidance documentation;
Provide subject matter expertise in drafting, reviewing, and commenting on documentations; and
Maintain liaison and collaboration efforts with the Program Manager and other designated responsible official in support of Documentation and Asset Library Management activities.
We were founded as a fresh alternative in the Government Consulting Community and are dedicated to the belief that results are a product of analytical thinking, agile design principles and that solutions are built in collaboration with, not for, our customers. This mantra drives us to succeed and act as true partners in advancing our client's missions.
The program you will be working on will provide Information Security Program Support Services to preserve the National Institute of Health (NIH) information, prevent data breaches and to support the following:
Enterprise information security governance, communications, program and project management, and security metrics and reporting;
Threat identification and incident handling, including security event detection and situational awareness;
Security awareness, education, and training;
Asset and inventory management, including both internal, external, and cloud systems;
Vulnerability assessment and mitigation, including vulnerability scanning, security configuration development and scanning, and internal and external penetration testing;
Continuous Diagnostics and Mitigation (CDM);
Risk management, audit coordination, and corrective plan management;
Systems security assessment and authorization and plan of action and milestones (POA&M) management;
Security policy, standards and guidance formulation and oversight.
Skills & Requirements
Experience with Federal Documentation Standards and Regulations;
Experience with developing a broad range of Technical documentations (eg Technical Requirements document, Specification sheets, Build Documents, Standard Operating Procedures, etc.);
Experience in collaborating with technical staff to translate technical content to business/functional terms;
Experience in enterprise level content acquisition, compilation, prioritization, categorization, storage, archival, retention and disposal; and
Strong communication, organization, orientation to detail, Critical-thinking, analysis, design and recording skills.
Experience with formal written communication and response processes and practices in the U.S. Federal Government (eg Audits, Data Calls, Position Papers, etc.);
Experience with various Federal Policies and Directives aligned to Information Technology (eg FISMA, Cybersecurity, HSPD-12, PPD-21, FICAM, Section 508, OMB M-15-14, FITARA, etc.);
Experience National Archives and Records Administration (NARA); and
Able to think outside the box and provide innovative and positive recommendation of improvements to Template Development, Document repository, Records management and archival/restoration.
Years of Experience: 5+ years of experience or more in the detailed task areas.
Education: Bachelor's degree in English, Public policy, Business Administration, Technology, Engineering or equivalent degree (Technology or English preferred). The equivalent combination of education, professional training or work experience substituting each year of education with 1 year of experience (eg an Associate's degree with 7+ years of experience) will be acceptable. One or more of the following certifications are preferred:
Certified Professional Technical Communicator (CPTC): Expert - STC;
Certified Professional Technical Communicator (CPTC): Practitioner - STC;
Location: Bethesda, MD (Remote work option during Covid-19 restrictions)
Clearance: U.S. Citizenship required and ability to attain a Level 6: Public Trust - High Risk clearance which must undergo a Suitability Determination that includes a Background Investigation (BI) with Periodic Reinvestigation (PRI) reinvestigation every ten years.