Cybersecurity Technical Writer_

Founded in 2003, IT Concepts’ core values – customer-centricity, teamwork, driven to deliver, innovation, and integrity – ensure we work together to be the best, realize objectives, and make a positive impact in our communities. We intentionally created and sustain our ITC culture that embraces change, experimentation, continuous learning, and improvement. We bring our design thinking problem-solving approach that challenges assumptions, prioritizes curiosity, and invites complexity to deliver innovative, efficient, and effective solutions. As we continue to grow in the support of our government customers, we are looking for driven and innovative individuals to join our team.IT Concepts is seeking a highly skilled Technical Writer to join our team and provide critical support to the Social Security Administration’s Office of Information Security (OIS) in developing and maintaining robust policy frameworks and procedures. The ideal candidate will have extensive experience in drafting and updating technical documentation, maintaining policy maps, and ensuring compliance with federal mandates, and a solid understanding of the NIST Cybersecurity Framework (CSF) version 2.0 and Risk Management Framework.Location: Hybrid (on-Site as needed)Responsibilities:The Technical Writer will conduct research and analysis to draft and update language for key security policies. They will review and validate documents for accuracy, conduct annual updates, and prepare documentation for publication. Key responsibilities include:+ Conduct research and analysis to draft new and updated language for the Information Security Policy (ISP), Program Operations Manual System (POMS), Administrative Instructions Manual System (AIMS), Controlled Unclassified Information (CUI) program, and associated security policy products.+ Ensure all changes align with NIST, OMB, FISMA, and other federal mandates and accurately incorporate all controls into the policies.+ Maintain the mapping of ISP with Cybersecurity Framework (CSF) and NIST 800 control families.+ Review documents within the security policy ecosystem to ensure accuracy and validity related to changes, updates, and new products related to NIST 800-53.+ Conduct annual reviews of POMS and CUI to address gaps and discrepancies.+ Prepare policy and supplemental document updates for publication, track changes, and capture metrics concerning published changes.+ Assist with the development of new policy documentation and maintain consistent templates for ecosystem documentation. Templates and documentation should have a consistent look and feel.+ Support policy waiver lifecycle and acquisition and procurement activities by compiling standard information security acquisition and supply chain risk language.+ Provide high level project plans for: ISP changes and updates, ISP gap assessments, analytical work to be performed including ISP, POMS, CUI, AIMS, and reviews of the security policy ecosystem, POMS, and CUI at least annually.+ Research and respond to requests for audit artifacts and findings related to the security policy or other ecosystem documents. Provide requested information to the COR and Task Manager or designated approval representative.+ Develop weekly reports across the various tasks.+ Facilitate and participate in various policy and risk related discussions. Assist with meeting logistics by recording meeting notes and action items.+ Continue to maintain the ecosystem inventory by adding relevant documents, performing reviews on a basis specified by the ecosystem categorization, removing documents that are obsolete, ensuring that links are current, inputting web updates, and documenting all actions in the inventory. Develop and maintain a change management process for all documents contained in the ecosystem.+ Continue to enhance the ecosystem user interface for ease of customer use.Requirements+ Bachelor’s Degree in Technical Communication, English, Information Technology, or a related field.+ 5+ years of experience in technical writing, preferably in cybersecurity or IT policy documentation+ Expert in Microsoft suite of word processing, spreadsheet, imaging and telecommunications software.+ Proficiency in drafting technical reports, plans, and related correspondence.+ Ability to effectively communicate complex technical information to diverse audiences.+ Familiarity with NIST Cybersecurity Framework (CSF), NIST 800-53, and other federal security policies.+ Skill in preparing drafts, technical reports, plans and related correspondence.+ Expert Familiarity with MS Office suite and documentation repositories such as SharePoint.+ Excellent written and oral communication skillsPreferred:+ Skill in developing, reviewing, and updating security policies, manuals, and instructions.+ Ability to work effectively both independently and as part of a team.+ Prior experience in technical writing in the field of information security or federal policies, is highly desirable.Clearance Requirements:+ Must be able to obtain and maintain Public Trust#itccareers #LI-SB1BenefitsThe CompanyWe believe in generating success collaboratively, enabling long-term mission success, and building trust for the next challenge. With you as our partner, let’s solve challenges, think innovatively, and maximize impact. As a valued member of our team, you have the unique opportunity to work in a diverse range of technology and business career paths, all while supporting our nation and delivering innovative technology solutions. We are a close community of experts that pride ourselves on creating an environment defined by teamwork, dedication, and excellence.We hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015) and two CMMI ML 3 ratings (DEV and SVC).Industry RecognitionGrowth | Inc 5000’s Fastest Growing Private Companies, DC Metro List Fastest Growing; Washington Business Journal: Fastest Growing Companies, Top Performing Small Technology Companies in Greater D.C.Culture | Northern Virginia Technology Council Tech 100 Honoree; Virginia Best Place to Work; Washington Business Journal: Best Places to Work, Corporate Diversity Index Winner – Mid-Size Companies, Companies Owned by People of Color; Department of Labor’s HireVets for our work helping veterans transition; SECAF Award of Excellence finalist; Victory Military Friendly Brand; Virginia Values Veterans (V3); Cystic Fibrosis Foundation Corporate Breath AwardBenefitsWe offer great benefits – Competitive Paid Time Off, Medical, Dental and Vision Insurance, Identity Theft Protection, Legal Resources Coverage, 401(k) with company matching with NO vesting period. ITC Health benefits have a $0 premium for certain plans for eligible employees.We invest in our employees – Every employee is eligible for education reimbursement for certifications, degrees, or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.We work hard, we play hard. ITC is committed to incorporating fun into every day. We dedicate funds for activities – virtual and in-person – e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative, innovative, and happy.AAEO & VEVRAAITC is an Affirmative Action/Equal Opportunity employer and a VEVRAA (Vietnam Era Veterans' Readjustment Assistance Act) Federal Contractor. As such, any personnel decisions (hire, promotion, job status, etc.) on applicants and/or employees are based on merit, qualifications, competence, and business needs, not on race, color, citizenship status, national origin, ancestry, sexual orientation, gender identity, age, religion, creed, physical or mental disability, pregnancy, childbirth or related medical condition, genetic information of the employee or family member of the employee, marital status, veteran status, political affiliation, or any other factor protected by federal, state or local law.ITC maintains a strong commitment to compliance with VEVRAA and other applicable federal, state, and local laws governing equal employment opportunity. We have developed comprehensive policies and procedures to ensure our hiring practices align with these requirements.As a part of our VEVRAA compliance efforts, ITC has established an affirmative action plan that outlines our commitment to the recruitment, hiring, and advancement of protected veterans. This plan is regularly reviewed and updated to ensure its effectiveness.We encourage protected veterans to self-identify during the application process. This information is strictly confidential and will only be used for reporting and compliance purposes as required by law. Providing this information is voluntary, and it will not impact your eligibility for employment.Our commitment to equal employment opportunity extends beyond legal compliance. We are dedicated to fostering an inclusive workplace where all employees, including protected veterans, are treated with dignity, respect, and fairness.How to ApplyTo apply to IT Concept Positions- Please click on the: “Apply for this Job” button at the bottom of this Job Description or the button at the top: “Application.” Please upload your resume and complete all the application steps. You must submit the application for IT Concepts to consider you for a position. If you need alternative application methods, please email careers@useitc.com and request assistance.AccommodationsTo perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations, please email careers@useitc.com.