Senior Policy Reviewer with Security Clearance

---

Job description

Title: Senior Policy Reviewer Location: Reston, VA; Washington, DC; Northern Virginia National Capital Region Clearance: TS/SCI w/CI Poly This is an on-site role. Must be willing to travel up to 30%, including local travel within the National Capital Region (NCR) of Northern Virginia, Maryland, and Washington, DC. Apavo is at the forefront of cybersecurity, providing specialized services to military, defense, and critical infrastructure industries. Our vision of cybersecurity as a holistic, ongoing journey enables us to offer solutions that effectively mitigate risks and address vulnerabilities within any enterprise. As the cyber landscape continuously evolves, so do we, ensuring our services not only meet but exceed the ever-changing needs of our mission-critical clients. From compliance assessments and vulnerability analysis to comprehensive information system security management, Apavo's suite of services is designed to protect and serve the most sensitive and significant sectors of our society. Responsibilities: As a JCIP Technical Reviewer at Apavo, you will play a pivotal role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). Your responsibilities will include: Interacting with leadership and site technical staff to facilitate scoping, data support for security controls assessment, and execution of operational inspection plans.
Conducting interviews with organizational subject matter experts and using checklists for STIG, SRG, and IC policy assessments.
Collecting data to support the review of the Threat Informed Critical Controls List (TICCL), and providing written input on security controls, potential vulnerabilities, and MITRE ATT&CK techniques.
Participating in planning, executing, and reporting on security audits and network vulnerability assessments with minimal supervision.
Assisting in the preparation of assessment deliverables including Security Risk Assessments, compliance data, and STIG data.
Communicating the impact of vulnerabilities through presentations and written deliverables.
Planning, executing, and reporting on reviews to identify mission, privacy, security, compliance, IT, and regulatory risks.
Utilizing automated tools such as Tenable and Splunk for comprehensive assessments.
Contributing to organizational process improvements, training initiatives, and cross-functional collaboration. Policy Reviewer Responsibilities: Reviewing IC policies including Insider Threat, Host Based Security (HBS), Vulnerability Management, and more.
Coordinating with multiple organizations and reviewer staff.
Consolidating reports on an organization's enterprise and validating correct configurations.
Conducting interviews and completing checklists.
Providing input to written reports on compliance and associated risks.
Demonstrating advanced writing skills and the ability to coordinate multiple viewpoints into cohesive documents.
Paying close attention to detail and working independently. Knowledge, Skills and Abilities Education: Bachelor's degree in Computer Science or a related technical discipline. Certification: in DoD 8570.01-M Cybersecurity workforce, compliance with DoD Directive 8140 Cyberspace Workforce Management, and IAT Level III. Skills and Preferred Qualifications: Strong independent work ethic (auditor mentality) with exceptional oral and written communication skills.
Minimum 5 years of experience in compliance reporting activities.
Experience working in a DoD or Intelligence Community Environment is highly desired.
Ability to develop vulnerability-based vignettes for cyber tabletop exercises.
Demonstrated ability to operate across departments to implement cybersecurity principles effectively.
Skilled in identifying network anomalies and applying cybersecurity and privacy principles.
Capable of multitasking with efficient time management and a comprehensive understanding of cyber threats, vulnerabilities, and network security methodologies.
Join us at Apavo and become part of a company committed to integrity, quality, and communication. If you're ready to make a meaningful impact in the cybersecurity world while growing professionally in a supportive, dynamic environment, apply now! Apavo Corporation is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. Apavo Corporation takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

<!– job description page –>