Cybersecurity Technical Writer

ECS Tech Inc•Washington, DC

4d•$80,000 - $95,000

About The Position

ECS is seeking a Cybersecurity Technical Writer to work in our Washington, DC office. ECS is seeking a skilled Cybersecurity Technical Writer to support the Department of State (DOS), specifically the Bureau of Diplomatic Technology (DT) and Consular Systems and Technology (CST). This position plays a critical role in the Independent Security Control Assessment (ISCA) program, ensuring that high-value mission systems comply with federal cybersecurity policies. The Technical Writer will collaborate closely with Security Control Assessors (SCAs), Information System Security Officers (ISSOs), and system owners to produce high-quality RMF artifacts. The ideal candidate will have specialized experience in NIST RMF Step 4 documentation and the ability to translate technical assessment findings into clear, actionable reports for Authorizing Officials (AOs).

Requirements

Active Secret Security Clearance.
5+ years of technical writing experience, with specific experience supporting Federal Cybersecurity or RMF programs.
Bachelor's degree in Technical Writing, Cybersecurity, English, or a related field.
Demonstrated understanding of the Risk Management Framework (RMF), specifically Step 4 (Assessment), and familiarity with NIST SP 800-53 and SP 800-115.
Proven ability to produce high-quality technical documents (SAR, SAP, POA&M) under tight deadlines.
Proficiency in Microsoft Office Suite (Word, PowerPoint, Excel) and diagramming tools (Visio) for creating system authorization boundaries.
Excellent written and verbal communication skills, with the ability to interface with technical assessors and government leadership.

Responsibilities

Develop and finalize critical RMF artifacts, including Security Assessment Plans (SAP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms) in alignment with NIST SP 800-37 Rev. 2 and SP 800-53 Rev. 5.
Compile and edit Executive Summary Briefings and Risk Acceptance Recommendation Reports to support risk-based decisions by the Authorizing Official.
Document objective evidence of control implementation, ensuring all findings are mapped correctly to NIST SP 800-53A Rev. 5 assessment procedures.
Maintain strict version control and quality assurance for all deliverables, ensuring documents are free of errors and compliant with DoS branding and formatting standards before submission to the Government.
Support the Issue Resolution Process by documenting risk-based decisions, remediation status, and closure verification reports.
Review and edit technical documentation for clarity, consistency, and accuracy, translating complex vulnerability data into accessible language for diverse stakeholders.
Create and maintain project documentation, including Kickoff Briefings, Transition-In/Out Plans, and Monthly Status Reports.
Collaborate with the Cyber Project Manager to produce financial and resource tracking reports, including Residual Risk Statements and Impact Assessment Reports.
Develop visual aids such as data flow diagrams and system boundary diagrams to support System Security Plans (SSPs).