Cybersecurity Policy Analyst

Position Overview Type
:
Full-Time, Exempt
Location
:
Huntsville, AL
Travel
:
Some travel is expected, 10%
Clearance
:
Active Department of Defense (DoD) Top Secret security clearance with SCI eligibility

Summary/Objective
Five Stones Research Corporation (5

SRC) is seeking energetic candidates to join our established and growing Huntsville-headquartered team.

Essential Functions

Identify and assess cybersecurity vulnerabilities using automated scanning tools and manual methods; coordinate mitigation activities.

• Manage the Information Assurance Vulnerability Management (IAVM) program for Department of Defense (DoD) Information Systems, ensuring timely remediation of identified risks.
• Oversee the 2-letter Incident Response Program, including drafting incident response policies and delivering annual training to organizational personnel.
• Monitor and interpret Cyber Tasking Orders (CTOs) and other cybersecurity directives from the DoD Information Network (DODIN), ensuring compliance and appropriate action.
• Develop, review, and edit Statements of Work (SOWs) in support of cybersecurity and IT initiatives.
• Identify customer requirements and translate them into actionable project plans, including schedule development, milestone tracking, and deadline management.
• Evaluate and make informed decisions when presented with multiple technical or operational options.
• Conduct quality control and assurance activities throughout the project lifecycle to ensure compliance with established standards and objectives.
• Create, refine, and present executive-level briefing materials that clearly communicate complex cybersecurity issues and project status updates to senior leadership.
• Support customer in developing, implementing, and maintaining a comprehensive cybersecurity policy and procedures framework to ensure agency-level requirements are effectively communicated and met at the CISO level.
• Assist in collaboration with stakeholders to refine and enhance policy requirements across the cybersecurity division.

Education:

Master’s in STEM / Cyber-related field or equivalent from an accredited institution with 5 Years of Cyber technical experience

Acceptable alternative:
Bachelor's Degree in other than STEM / Cyber-related field with 8 years DoD cyber technical experience and knowledge demonstrated in missile defense related or other complex, large DoD programs / projects

• IAT III Certification prior to accepting position
• Must have technical certification or 3 years’ experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and / or experience implementing network / enclave / system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions. Must achieve certification in required tools within 6 months of position acceptance

401(k) Matching

• Company Events
• Employee Recognition Programs
• Health Insurance
• Life Insurance
• Paid Time Off
• Performance Incentives
• Student Loan Repayment
• Tuition Reimbursement
• Vision Insurance

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Masters or better in STEM or related field.

TS/SCI

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
This employer is required to notify all applicants of their rights pursuant to federal employment laws.

For further information, please review the Know Your Rights notice from the Department of Labor.