Senior Cybersecurity and IT Policy SME

Job Description

Job Description

Job Title:  Senior Cybersecurity / Cyber and IT Policy Subject Matter Expert 
Location: Knoxville, TN 
Employment Type: Full-Time 

 

Job Summary: 
Management Solutions is seeking a Senior Cybersecurity / Cyber and IT Policy Subject Matter Expert (SME) to support delivery of mission-critical services within a federal IT environment. 

This role provides expert-level leadership in IT policy, cybersecurity strategy, and governance, supporting the development, implementation, and continuous improvement of cybersecurity policies and frameworks. The SME will ensure alignment with regulatory requirements, organizational objectives, and industry best practices while advising client leadership on policy, risk, and strategic initiatives. 

The position requires deep expertise in federal cybersecurity and IT policy, strong analytical and advisory capabilities, and the ability to lead policy development, coordination, and implementation efforts across a complex, multi-stakeholder environment. 

 

Key Responsibilities: 

IT & Cybersecurity Policy Leadership 

• Provide subject matter expertise across IT policy, cybersecurity, strategic planning, and governance to support mission-critical objectives.  

• Lead the development, refinement, and implementation of IT and cybersecurity policies, standards, and guidance.  

• Ensure alignment of policies with applicable regulatory requirements, federal frameworks, and client strategic objectives.  

Policy Review & Gap Analysis 

• Review  applicable IT and cybersecurity policies to ensure alignment and compliance with client requirements.  

• Conduct assessments to identify IT and cybersecurity policy gaps and provide written recommendations for remediation.  

• Evaluate policy effectiveness and recommend improvements to strengthen governance and compliance.  

Policy Development & Lifecycle Management  

• Lead drafting, review, and refinement of IT and cybersecurity policy and guidance documents.  

• Coordinate policy reviews, ensuring stakeholder alignment to shepherd policy through required approvals.  

• Track policy status, updates, and approvals to ensure transparency and accountability across stakeholders.  

Strategic Planning & Implementation 

• Develop policy implementation plans and roadmaps aligned with client strategic goals and cybersecurity initiatives.  

• Support development and maintenance of cybersecurity plans, strategies, and policy frameworks.  

• Provide expert input into enterprise-level planning, modernization efforts, and governance initiatives.  

Risk Mitigation & Compliance Support 

• Develop and maintain a repository of IT and cybersecurity policy risk mitigation strategies.  

• Identify policy-related risks and gaps, and recommend actionable mitigation approaches.  

• Support compliance with federal cybersecurity frameworks and regulatory requirements (e.g., NIST, FISMA, FedRAMP).  

Training, Awareness & Communication 

• Create and deliver IT and cybersecurity policy awareness campaigns, training sessions, and workshops for client personnel.  

• Promote understanding and adoption of policies, standards, and governance processes across the organization.  

• Translate complex policy and regulatory requirements into clear, accessible guidance for both technical and non-technical audiences.  

Documentation & Repository Management 

• Maintain a centralized, version-controlled library of all current and historical IT and cybersecurity policy documents.  

• Ensure proper documentation management, version control, and accessibility of policy materials.  

• Establish and enforce documentation standards, templates, and best practices.  

Stakeholder Engagement & Advisory 

• Interface with client leadership and stakeholders to provide expert guidance on cybersecurity policy, risks, and strategic initiatives.  

• Support executive briefings, governance forums, and cross-functional working groups.  

• Collaborate with business analysts, technical teams, and program leadership to ensure alignment between policy, operations, and reporting. 

Required Qualifications: 

• Bachelor’s degree from an accredited college or university in a relevant field (e.g., Cybersecurity, Information Technology, Information Systems, Public Policy, or related discipline), or equivalent combination of education and experience.  

• 10 years of relevant professional experience in cybersecurity, IT policy, governance, or related roles.  

• Demonstrated expertise in developing, reviewing, and implementing federal IT and cybersecurity policies.  

• Strong knowledge of cybersecurity frameworks and standards (e.g., NIST, FISMA, FedRAMP).  

• Experience conducting policy assessments, gap analyses, and compliance evaluations.  

• Experience coordinating policy reviews and managing policy lifecycle processes.  

• Experience advising senior leadership on cybersecurity strategy, policy, and risk management.  

• Strong analytical and problem-solving skills with the ability to assess complex environments and provide strategic recommendations.  

• Excellent written and verbal communication skills, including experience preparing executive-level materials and training content.  

• Ability to obtain and maintain a Q clearance. 

Preferred Qualifications: 

• Experience supporting federal agencies.  

• Familiarity with federal cybersecurity and IT governance frameworks (e.g., NIST, FISMA, FedRAMP).  

• Experience supporting IT or cybersecurity operations programs.  

• Prior experience in a consulting or professional services environment. 

• Possessing an active Q, L, or Top Secret clearance is strongly preferred. 
  
   

Work Authorization: U.S. Citizenship is required due to federal contract and/or security clearance requirements. 

Working Conditions: This position is primarily performed in an office environment or a home office setting. Employees will be required to use a computer and other office equipment for extended periods. Must be able to remain in a stationary position for extended periods and operate a computer and standard office equipment. 

Equal Employment Opportunity Statement: 

Management Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, disability, or protected veteran status. Equal Employment Opportunity (EEO) is the Law. 

Management Solutions is committed to providing reasonable accommodations to applicants and employees with disabilities. If you need assistance or an accommodation due to a disability, please contact Human Resources. 

Disclaimer:  

This job description is intended to convey information essential to understanding the scope of the position and is not a complete list of skills, efforts, duties, responsibilities or working conditions associated with it. 

Management Solutions LLC is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Powered by JazzHR

tKcTmfnzYM