Cybersecurity Policy Analyst
Five Stones Research Corporation, Huntsville, AL, United States
Position Overview Type : Full-Time, Exempt
Location : Huntsville, AL
Travel : Some travel is expected, 10%
Clearance : Active Department of Defense (DoD) Top Secret security clearance with SCI eligibility
Summary/Objective Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville-headquartered team.
Essential Functions
Identify and assess cybersecurity vulnerabilities using automated scanning tools and manual methods; coordinate mitigation activities.
Manage the Information Assurance Vulnerability Management (IAVM) program for Department of Defense (DoD) Information Systems, ensuring timely remediation of identified risks.
Oversee the 2-letter Incident Response Program, including drafting incident response policies and delivering annual training to organizational personnel.
Monitor and interpret Cyber Tasking Orders (CTOs) and other cybersecurity directives from the DoD Information Network (DODIN), ensuring compliance and appropriate action.
Develop, review, and edit Statements of Work (SOWs) in support of cybersecurity and IT initiatives.
Identify customer requirements and translate them into actionable project plans, including schedule development, milestone tracking, and deadline management.
Evaluate and make informed decisions when presented with multiple technical or operational options.
Conduct quality control and assurance activities throughout the project lifecycle to ensure compliance with established standards and objectives.
Create, refine, and present executive-level briefing materials that clearly communicate complex cybersecurity issues and project status updates to senior leadership.
Support customer in developing, implementing, and maintaining a comprehensive cybersecurity policy and procedures framework to ensure agency-level requirements are effectively communicated and met at the CISO level.
Assist in collaboration with stakeholders to refine and enhance policy requirements across the cybersecurity division.
Required Education and Experience Education: Master’s in STEM / Cyber-related field or equivalent from an accredited institution with 5 Years of Cyber technical experience
Acceptable alternative: Bachelor's Degree in other than STEM / Cyber-related field with 8 years DoD cyber technical experience and knowledge demonstrated in missile defense related or other complex, large DoD programs / projects
IAT III Certification prior to accepting position
Must have technical certification or 3 years’ experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and / or experience implementing network / enclave / system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions. Must achieve certification in required tools within 6 months of position acceptance
What We Offer: 401(k) Matching
Company Events
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Performance Incentives
Student Loan Repayment
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Qualifications Education Required Masters or better in STEM or related field.
Licenses & Certifications Required TS/SCI
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws.For further information, please review the Know Your Rights notice from the Department of Labor.
#J-18808-Ljbffr
Summary/Objective Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville-headquartered team.
Essential Functions
Identify and assess cybersecurity vulnerabilities using automated scanning tools and manual methods; coordinate mitigation activities.
Manage the Information Assurance Vulnerability Management (IAVM) program for Department of Defense (DoD) Information Systems, ensuring timely remediation of identified risks.
Oversee the 2-letter Incident Response Program, including drafting incident response policies and delivering annual training to organizational personnel.
Monitor and interpret Cyber Tasking Orders (CTOs) and other cybersecurity directives from the DoD Information Network (DODIN), ensuring compliance and appropriate action.
Develop, review, and edit Statements of Work (SOWs) in support of cybersecurity and IT initiatives.
Identify customer requirements and translate them into actionable project plans, including schedule development, milestone tracking, and deadline management.
Evaluate and make informed decisions when presented with multiple technical or operational options.
Conduct quality control and assurance activities throughout the project lifecycle to ensure compliance with established standards and objectives.
Create, refine, and present executive-level briefing materials that clearly communicate complex cybersecurity issues and project status updates to senior leadership.
Support customer in developing, implementing, and maintaining a comprehensive cybersecurity policy and procedures framework to ensure agency-level requirements are effectively communicated and met at the CISO level.
Assist in collaboration with stakeholders to refine and enhance policy requirements across the cybersecurity division.
Required Education and Experience Education: Master’s in STEM / Cyber-related field or equivalent from an accredited institution with 5 Years of Cyber technical experience
Acceptable alternative: Bachelor's Degree in other than STEM / Cyber-related field with 8 years DoD cyber technical experience and knowledge demonstrated in missile defense related or other complex, large DoD programs / projects
IAT III Certification prior to accepting position
Must have technical certification or 3 years’ experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and / or experience implementing network / enclave / system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions. Must achieve certification in required tools within 6 months of position acceptance
What We Offer: 401(k) Matching
Company Events
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Performance Incentives
Student Loan Repayment
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Qualifications Education Required Masters or better in STEM or related field.
Licenses & Certifications Required TS/SCI
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws.For further information, please review the Know Your Rights notice from the Department of Labor.
#J-18808-Ljbffr