Cyber Policy Analyst

Summary

Join Keeper Security as a Cyber Policy Analyst and play a vital role in developing, implementing, and maintaining cybersecurity policies and frameworks. This 100% remote position (with hybrid options in select locations) offers the chance to work with a modern tech stack and cutting-edge tools within a fast-growing cybersecurity company. You will collaborate with various teams, enforce best practices, implement regulatory standards, and educate employees on cybersecurity matters. Your expertise will directly support the organization’s commitment to data protection, risk management, and regulatory compliance. Keeper's cybersecurity software is trusted by millions globally, making this a significant opportunity to enhance your career.

Requirements

• Due to this role’s involvement in GovCloud, qualified candidates must be a “U.S. Person”
• 3+ years of experience in developing, implementing, and managing cybersecurity policies
• Comprehensive understanding of cybersecurity frameworks, with proficiency in NIST Cybersecurity Framework (CSF), practical application of framework principles in enterprise environments, and the ability to translate theoretical framework guidelines into actionable security strategies
• Experience in achieving and maintaining high-level security compliance, including government security standards like DoD Impact Level 5(IL5), FedRAMP HIGH authorization requirements, SOC2, and ISO
• Expertise in developing and implementing data classification policies and defining data protection requirements for IT systems
• Proven capability to prepare and support comprehensive security documentation for compliance audits
• Excellent communication and training skills to effectively educate employees on privacy protections and restrictions
• Ability to review existing policies and drive practical implementation to ensure effective protection
• Familiarity with the Approval to Operate (ATO) process and its role in ensuring the security of IT systems

Responsibilities

• Develop and implement comprehensive cybersecurity policies, ensuring alignment with frameworks such as NIST CSF, and government standards like IL5 and FedRAMP HIGH
• Manage and maintain compliance with government security standards and ensure policies address both technical and non-technical security needs
• Define data classification and protection requirements for IT systems to safeguard sensitive information
• Collaborate with cross-functional teams to ensure cybersecurity policies are effectively integrated into business operations
• Educate employees on privacy protections and security restrictions, delivering training and communication to increase awareness
• Regularly review and update cybersecurity policies to maintain compliance with evolving regulations and industry best practices
• Support the Approval to Operate (ATO) process by ensuring all systems meet required security standards
• Troubleshoot security policy implementation issues and provide solutions to enhance protection
• Keep up-to-date with the latest industry trends in cybersecurity policies and regulatory compliance to continuously improve security protocols

Preferred Qualifications

Relevant certifications, such as CISSP, CISM, or CIPP/US, are highly desirable

Benefits

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)
• Above market annual bonuses