HimalayasHimalayas logo
Dragonfli GroupDG

Policy Specialist

The Dragonfli Group is a Washington, DC-based LLC that specializes in management and technology consulting.

Dragonfli Group

Employee count: 11-50

United States only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

Description

Dragonfli Group is a cybersecurity and IT consulting firm providing services to federal agencies and Fortune 100 enterprises. Headquartered in Washington, DC, Dragonfli supports clients in securing mission-critical systems across on-site, hybrid, and fully remote environments.

This contract Policy Specialist role supports a large federal agency by strengthening security governance documentation and ensuring policies align to recognized cybersecurity frameworks and organizational objectives within a large-scale IT environment. The specialist will research, draft, analyze, and update security policies and standards; perform gap analyses against frameworks and regulatory requirements; and translate complex security concepts into clear, actionable documentation, leveraging AI tools and capabilities to support technical writing. The role calls for seasoned policy analysis and technical writing expertise, strong collaboration across technical and non-technical teams, and excellent communication and planning to drive meaningful lifecycle updates and stakeholder alignment. It's a high-impact opportunity to shape security policy and governance within a major federal agency.

This is a multi-year contract position involving a large US federal agency. Candidates with previous federal contracting experience are preferred. U.S. Citizenship or Permanent Residency required. If hired, all work related to this role must be performed within the continental U.S.

Responsibilities:

  • Research, draft, and analyze policies to align with stakeholder needs, subject matter expert input, industry standards, and organizational goals
  • Conduct policy gap analyses against industry frameworks and regulatory requirements and recommend enhancements
  • Collaborate with security engineers, compliance officers, and business managers to ensure policies are technically sound and operationally practical
  • Translate technical security concepts into clear, concise, accessible documentation for diverse audiences
  • Support annual lifecycle updates by collaborating with stakeholders to update CISO policies
  • Review and contribute to policies and standards for groups outside of the CISO organization
  • Apply NIST CSF, CIS Controls, and other relevant security frameworks to inform policy content and structure
  • Use AI tools and capabilities to improve efficiency and quality in technical writing and policy analysis
  • Perform research to support policy development and lifecycle updates
  • Tailor written and verbal messaging to different stakeholder groups and levels of technical depth

Requirements

  • 2–3 years of technical writing experience in policy analysis or a related role
  • Knowledge of AI tools and capabilities to perform technical writing
  • Good working knowledge of NIST CSF and CIS Controls and other relevant security frameworks
  • Ability to distill complex technical concepts into clear, concise, and actionable language
  • Excellent written and verbal communication skills, including tailoring messaging for diverse audiences
  • Strong research skills with the ability to contribute meaningfully to lifecycle updates
  • Strong collaboration skills with the ability to work effectively across technical and non-technical teams
  • Familiarity with security governance, risk management, and compliance (GRC) processes
  • Bachelor’s degree in public policy, political science, law, economics, or a related field
  • U.S. Citizenship or Permanent Residency required; work must be performed within the continental U.S.

Skill(s)

  • Policy research, drafting, and analysis within cybersecurity or IT governance contexts
  • Gap analysis and mapping policies to security frameworks and regulatory requirements
  • Technical writing and editing for clarity, consistency, and actionability
  • Ability to translate security concepts for both technical and non-technical audiences
  • Stakeholder management and cross-functional collaboration
  • Lifecycle management for policy updates and version control discipline
  • Working knowledge of NIST CSF and CIS Controls
  • Practical understanding of GRC concepts and how policies support compliance outcomes

Benefits

  • Insurance – health, dental, and vision
  • Paid Time Off (PTO) and 11 Federal Holidays
  • 401(k) employer match

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Mid-level

Education

Bachelor degree

Experience

2 years minimum

Location requirements

United States

Hiring timezones

United States +/- 0 hours

Job categories

GovernanceRisk & Compliance (GRC)Policy AnalysisCybersecurity PolicyTechnical WritingSecurity Governance

Skills

NIST CSFCISPolicy ResearchPolicy WritingGap AnalysisTechnical WritingSecurity GovernanceRisk Management& Compliance (GRC)AI ToolsStakeholder ManagementSecurity FrameworksLifecycle ManagementCross Functional CollaborationMatter Remote

Browse similar jobs

Remote Mid-level Governance JobsRemote Full Time Governance JobsRemote Mid-level Governance Jobs in United StatesRemote Full Time Jobs in United StatesRemote Governance Jobs in United States

About Dragonfli Group

Learn more about Dragonfli Group and their company culture.

View company profile

The Dragonfli Group is a Washington, DC-based LLC that specializes in management and technology consulting. With a dedicated team of experienced consultants, Dragonfli focuses on transforming its clients' businesses through high-impact strategic planning and technology solutions. Our team's deep expertise spans across infrastructure, corporate strategy, and operations, allowing us to tailor our services to meet specific business needs.

At Dragonfli, we adopt a collaborative approach to provide strategic planning and information security solutions. We understand that every organization is unique, and thus, we take the time to evaluate each client's specific challenges and goals. Our offerings include cybersecurity solutions that empower organizations to manage risks, comply with regulations, and drive profitability. The industry’s dynamic landscape requires businesses to be proactive. As such, we prioritize integrating automated risk management and compliance monitoring into our strategies, ensuring that our clients can make informed, proactive decisions regarding their security posture.

Claim this profileDragonfli Group logoDG

Dragonfli Group

Company size

11-50 employees

Founded in

2008

Chief executive officer

Glenn Ballard

Markets

Management ConsultingTechnology ConsultingCybersecurityStrategic PlanningInformation SecurityRisk ManagementCompliance MonitoringInfrastructure ConsultingCorporate StrategyOperations Consulting

Employees live in

United States
View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

2 remote jobs at Dragonfli Group

Explore the variety of open remote roles at Dragonfli Group, offering flexible work options across multiple disciplines and skill levels.

View all jobs at Dragonfli Group
Top remote companies

Remote companies like Dragonfli Group

Find your next opportunity by exploring profiles of companies that are similar to Dragonfli Group. Compare culture, benefits, and job openings on Himalayas.

View all companies

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan