Cyber Security Analyst - Cyber Policy

Cyber Security Analyst - Cyber Policy at Savannah River National Laboratory

Savannah River National Laboratory (SRNL) is seeking an experienced cyber security policy professional to join the Cyber Assurance, Governance, Risk Management and Compliance team. The selected individual will serve as lead policy writer and subject‑matter expert for the DOE‑SRNL cybersecurity program.

• Serve as principal author for all new and revised SRNL specific cybersecurity policies and procedures
• Develop and maintain responses to contracts for DOE Orders and the Cyber Security Program Plan
• Review and advise on impact to cybersecurity approved policies for other SRNL procedures with cybersecurity references
• Assist ISSOs with creating and maintaining supplemental program documents, policies and procedures for multiple accreditation boundaries based on approved security controls
• Perform gap analysis for draft, new, or updated federal mandates (e.g., EO 14028, BODS, OMB Memos) and write comprehensive summaries that support efficient decision making where needed
• Support audits and assessments with policy evidence artifact/packages
• Review cybersecurity training and develop newly identified training, keeping aligned with approved policies
• Review and advise ISSOs on additional documents such as Risk Assessments, Security Impact Analysis, or others as requested
• Work effectively in a team environment and contribute to continuous process improvement efforts
• Participate/assist with compliance assessments/audits and data calls
• Interact with customers and peers in a professional and responsive manner

• Bachelor’s degree in Cybersecurity, Information Management/Assurance, or related field
• 6 to 9 years of experience in Cybersecurity and Policy in a federal‑contractor position
• Excellent and proven writing skills in the cybersecurity field that demonstrate the ability to be clear and concise for complex topics. Samples may be provided if required.
• US Citizenship is legally required to obtain and maintain a security clearance.

• Expert knowledge of DOE 205.1x and Cyber Security Program Plans
• Current or recent experience supporting DOE policies related to cybersecurity
• Good interpersonal skills and demonstrated ability to work collaboratively in a team environment
• Certifications in Cyber such as CISSP, CISM, CGRC (formerly ISC2 CAP), or CRISC
• Policy‑focused certifications (GIAC‑GLEG, GSLC, or similar)
• Strong attention to detail
• Ability to learn new technologies, concepts, and processes quickly
• Active DOE L clearance

Benefits vary based upon employment status. Highly competitive Medical, Dental, and Vision options, including HSA options with company‑provided seed. Short‑ and Long‑Term Disability (company paid). Life and AD&D insurance non‑contributory. Savings & Investment plan:
Qualified Non‑Elective Company Contribution 5% each pay period with immediate vesting;
Company match 50¢ per dollar up to 8% (3 yrs. vesting). Contributory Life Insurance up to 5× Salary with $1M cap. Contributory AD&D for employee, spouse, and children. Paid Time Off. Employee Assistance Plan. Competitive relocation package to ease the transition process; domestic and international relocation assistance available for certain positions.

“We put science to work!” Savannah River National Laboratory (SRNL) is a multi‑program laboratory applying state‑of‑the‑art science and practical, high‑value, cost‑effective solutions to complex technical problems to protect the nation. Located at the U.S. Department of Energy’s (DOE) Savannah River Site (SRS) in Aiken, SC, the laboratory develops and deploys innovative technologies to address some of the nation’s environmental, energy, and national security challenges.

Battelle Savannah River Alliance (BSRA) is constantly assessing trends to provide the best possible benefits to our workforce. Some of the benefits offered to employees include:

• Highly competitive Medical, Dental, and Vision options including HSA options with company‑provided seed
• Short‑ and Long‑Term Disability (company paid)
• Life Insurance non‑contributory 1× salary (company paid)
• AD&D…