Cybersecurity Policy Analyst
Five Stones Research Corporation, Huntsville, AL, United States
Description
Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville‑headquartered team.
Job Details
Position Overview Type:
Full‑Time, Exempt
Location:
Huntsville, AL
Travel:
Some travel is expected, 10%
Clearance:
Active Department of Defense (DoD) Top Secret security clearance with SCI eligibility
Work Authorization:
U.S. Citizenship required
Summary/Objective:
Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville‑headquartered team.
Essential Functions
Identify and assess cybersecurity vulnerabilities using automated scanning tools and manual methods; coordinate mitigation activities.
Manage the Information Assurance Vulnerability Management (IAVM) program for Department of Defense (DoD) Information Systems, ensuring timely remediation of identified risks.
Oversee the 2‑letter Incident Response Program, including drafting incident response policies and delivering annual training to organizational personnel.
Monitor and interpret Cyber Tasking Orders (CTOs) and other cybersecurity directives from the DoD Information Network (DODIN), ensuring compliance and appropriate action.
Develop, review, and edit Statements of Work (SOWs) in support of cybersecurity and IT initiatives.
Identify customer requirements and translate them into actionable project plans, including schedule development, milestone tracking, and deadline management.
Evaluate and make informed decisions when presented with multiple technical or operational options.
Conduct quality control and assurance activities throughout the project lifecycle to ensure compliance with established standards and objectives.
Create, refine, and present executive‑level briefing materials that clearly communicate complex cybersecurity issues and project status updates to senior leadership.
Support customer in developing, implementing, and maintaining a comprehensive cybersecurity policy and procedures framework to ensure agency‑level requirements are effectively communicated and met at the CISO level.
Assist in collaboration with stakeholders to refine and enhance policy requirements across the cybersecurity division.
Required Education and Experience
Education:
Master’s in STEM / Cyber‑related field or equivalent from an accredited institution with 5 years of cyber technical experience.
Alternative: Bachelor’s Degree in a non‑STEM / Cyber‑related field with 8 years of DoD cyber technical experience and knowledge demonstrated in missile defense or other complex, large DoD programs / projects.
IAT III Certification prior to accepting position.
Must have technical certification or 3 years’ experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and/or experience implementing network / enclave / system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions. Must achieve certification in required tools within 6 months of position acceptance.
What We Offer
401(k) Matching
Company Events
Dental Insurance
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Parental Leave
Performance Incentives
Student Loan Repayment
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr
Job Details
Position Overview Type:
Full‑Time, Exempt
Location:
Huntsville, AL
Travel:
Some travel is expected, 10%
Clearance:
Active Department of Defense (DoD) Top Secret security clearance with SCI eligibility
Work Authorization:
U.S. Citizenship required
Summary/Objective:
Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville‑headquartered team.
Essential Functions
Identify and assess cybersecurity vulnerabilities using automated scanning tools and manual methods; coordinate mitigation activities.
Manage the Information Assurance Vulnerability Management (IAVM) program for Department of Defense (DoD) Information Systems, ensuring timely remediation of identified risks.
Oversee the 2‑letter Incident Response Program, including drafting incident response policies and delivering annual training to organizational personnel.
Monitor and interpret Cyber Tasking Orders (CTOs) and other cybersecurity directives from the DoD Information Network (DODIN), ensuring compliance and appropriate action.
Develop, review, and edit Statements of Work (SOWs) in support of cybersecurity and IT initiatives.
Identify customer requirements and translate them into actionable project plans, including schedule development, milestone tracking, and deadline management.
Evaluate and make informed decisions when presented with multiple technical or operational options.
Conduct quality control and assurance activities throughout the project lifecycle to ensure compliance with established standards and objectives.
Create, refine, and present executive‑level briefing materials that clearly communicate complex cybersecurity issues and project status updates to senior leadership.
Support customer in developing, implementing, and maintaining a comprehensive cybersecurity policy and procedures framework to ensure agency‑level requirements are effectively communicated and met at the CISO level.
Assist in collaboration with stakeholders to refine and enhance policy requirements across the cybersecurity division.
Required Education and Experience
Education:
Master’s in STEM / Cyber‑related field or equivalent from an accredited institution with 5 years of cyber technical experience.
Alternative: Bachelor’s Degree in a non‑STEM / Cyber‑related field with 8 years of DoD cyber technical experience and knowledge demonstrated in missile defense or other complex, large DoD programs / projects.
IAT III Certification prior to accepting position.
Must have technical certification or 3 years’ experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and/or experience implementing network / enclave / system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions. Must achieve certification in required tools within 6 months of position acceptance.
What We Offer
401(k) Matching
Company Events
Dental Insurance
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Parental Leave
Performance Incentives
Student Loan Repayment
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr