Clearance Requirement: Active DoD TS/SCI clearance and willing to take a Polygraph.
A new, five-year contract award has created the opportunity for a Cyber Policy and Strategy Planner to support our customer located at the Washington, Navy Yard (Washington, D.C.). The position is required to be onsite.
Benefits include 15 days PTO, 11 days Paid Government Holidays, a 401k with 6% matching and an inclusion in our employee profit sharing program.
The Cyber Policy Analyst develops cyberspace plans, strategies, and policies to ensure organizational compliance with statues, Executive Orders, and other National and Developmental directives and instructions. Assist management with ensuring compliance through management of metrics and development of required reports, such as Federal Information Security Modernization Act (FISMA) and briefings. and briefings. Represent the organization at working groups ensuring organizational equities are considered as part of policy development.
Shall analyze the existing organizational security policy and procedures. Within 60 days of contract award, provide a written analysis and any recommendations for government consideration. The format shall be recommended for government approval.
Shall develop, with government input, cyber related policy for government approval based upon applicable statues, Executive Orders, and other government policy, directives, instructions, or special publications. The documents will be developed consistent with organizational guidance.
Shall collect and develop, with government input, cyber related metrics and recommend a presentation format based upon the metrics and the target audience.
Draft and/or preliminary documents shall be presented in one of the following electronic formats: Microsoft Office version 2007 compatible (.docx, .xlsx, or .pptx) or the standard Portable Document Format (PDF) format. Final and/or approved format shall be determined by the government; may recommend additional formats.
Travel approximately 10% annually.
- Shall have 4 or more years of experience in policy interpretation and development.
- Shall have 2 or more years of experience in development and analysis of metrics.
Shall meet the Cyber IT/Cybersecurity Workforce (CSWF) Cyber Policy and Strategy Planner (752); Intermediate Level for SECNAV M-5239.2 compliance. (See Navy Cool WebSite).
Education: Bachelor’s degree from accredited University; OR
- NSSI 4012-Senior Systems Managers; or
- CNSSI 4013-System Administrators; or
- CNSSI 4014-Information Systems Security Officers (ISSO); or
- CNSSI 4015-Systems Certifiers; or
- CNSSI 4016-Risk Analysts; or
- NDU CISO certificate-Chief Information Security Officer (CISO); OR
- AQD GA7-Information Dominance Warfare - Information Assurance Officer; or
- NEC 741A Information System Security Manager; OR
- Certified Authorization Professional (CAP); or
- Cisco Certified Network Associate (CCNA) Routing and Switching *Retired; or
- CompTIA Security+ ce; AND
OJT: If IP O1-3, NAVEDTRA 43360-2 - Information Professional (IP) Basic; AND
Continuous Learning: DoD requires 20 hours Continuous Learning each calendar year. This requirement is in addition to any industry certification Continuous Learning requirement. [Note: DoD 20 hours Annually - Industry certification Continuous Learning may be applied towards DoD 20-hour annual requirement. However, not all DoD Continuous Learning hours can be applied to industry certification Continuous Learning requirement, check with certification agency on what may be accepted.]; AND
Operating System/Computing Environment Certificate: Operating System/Computing Environment (OS/CE) certificate of training, as dictated by Command Cyber IT/CSWF-PM; AND
Sign Privileged Access Statement: System Authorization Access Request (SAAR) with Privileged Access agreement as required by Local Command.
- Strongly desired to have experience in the development of cybersecurity related plans or policies implementing National, Intelligence Community, or DoD policies, directives, instructions, and/or standards.
- Strongly desired to have experience in developing presentations, briefings, and point papers for senior leadership.
- Experience in collecting and reporting metrics associated with the Federal Information Security Modernization Act or the DoD Cyber Security Scorecard.
- Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or GIAC Security Leadership Certification (GSLC).