Policy Specialist
About The Position
Dragonfli Group is a cybersecurity and IT consulting firm providing services to federal agencies and Fortune 100 enterprises. Headquartered in Washington, DC, Dragonfli supports clients in securing mission-critical systems across on-site, hybrid, and fully remote environments. This contract Policy Specialist role supports a large federal agency by strengthening security governance documentation and ensuring policies align to recognized cybersecurity frameworks and organizational objectives within a large-scale IT environment. The specialist will research, draft, analyze, and update security policies and standards; perform gap analyses against frameworks and regulatory requirements; and translate complex security concepts into clear, actionable documentation, leveraging AI tools and capabilities to support technical writing. The role calls for seasoned policy analysis and technical writing expertise, strong collaboration across technical and non-technical teams, and excellent communication and planning to drive meaningful lifecycle updates and stakeholder alignment. It's a high-impact opportunity to shape security policy and governance within a major federal agency. This is a multi-year contract position involving a large US federal agency. Candidates with previous federal contracting experience are preferred. U.S. Citizenship or Permanent Residency required. If hired, all work related to this role must be performed within the continental U.S.
Requirements
- 2–3 years of technical writing experience in policy analysis or a related role
- Knowledge of AI tools and capabilities to perform technical writing
- Good working knowledge of NIST CSF and CIS Controls and other relevant security frameworks
- Ability to distill complex technical concepts into clear, concise, and actionable language
- Excellent written and verbal communication skills, including tailoring messaging for diverse audiences
- Strong research skills with the ability to contribute meaningfully to lifecycle updates
- Strong collaboration skills with the ability to work effectively across technical and non-technical teams
- Familiarity with security governance, risk management, and compliance (GRC) processes
- Bachelor’s degree in public policy, political science, law, economics, or a related field
- U.S. Citizenship or Permanent Residency required; work must be performed within the continental U.S.
Nice To Haves
- Previous federal contracting experience is preferred.
Responsibilities
- Research, draft, and analyze policies to align with stakeholder needs, subject matter expert input, industry standards, and organizational goals
- Conduct policy gap analyses against industry frameworks and regulatory requirements and recommend enhancements
- Collaborate with security engineers, compliance officers, and business managers to ensure policies are technically sound and operationally practical
- Translate technical security concepts into clear, concise, accessible documentation for diverse audiences
- Support annual lifecycle updates by collaborating with stakeholders to update CISO policies
- Review and contribute to policies and standards for groups outside of the CISO organization
- Apply NIST CSF, CIS Controls, and other relevant security frameworks to inform policy content and structure
- Use AI tools and capabilities to improve efficiency and quality in technical writing and policy analysis
- Perform research to support policy development and lifecycle updates
- Tailor written and verbal messaging to different stakeholder groups and levels of technical depth
Benefits
- Insurance – health, dental, and vision
- Paid Time Off (PTO) and 11 Federal Holidays
- 401(k) employer match
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
