What are the responsibilities and job description for the Cybersecurity Policy Analyst position at MKS2 Technologies?
Founded in 2008, MKS2 Technologies has helped Federal government customers design, implement and sustain mission-focused IT solutions focusing on cyber security support, enterprise application development, and instructional design and training. MKS2 is a Service-Disabled Veteran-Owned Small Business (SDVOSB) headquartered in Austin, Texas, with regional offices in Colorado Springs, CO, Monterey, CA, Portland, ME, and Washington, D.C.
Our full-time staff works on Federal services contracts in 27 states and the District of Columbia to provide mission-critical support to the Department of Veterans Affairs, The U.S. Army, and the U.S. Navy.
A new contract award has created the opportunity for a Cybersecurity Policy Analyst to support our government customer based in Springfield, VA. In this position you will develop Cybersecurity plans, strategies, and policies to ensure organizational compliance with statutes, Executive Orders, and other National and Departmental directives and institutions.
Description
- Partner with program leadership to ensure compliance through management of cybersecurity metrics and the development of required reports (such as the Federal Information Security Modernization Act (FISMA)) and briefing
- Represent the organization at working groups ensuring organizational equities are considered as part of policy development
- Analyze the existing organizational security policy and procedures
- Develop, with government input, cybersecurity related policy for government approval based upon applicable statues, Executive Orders, and other government policy, directives, instructions, or special publications
- Collect and develop cybersecurity related metrics and recommend a presentation format based upon the metrics and the target audience
- Some limited travel (approximately 10% annually) may be required
Qualifications
Experience Requirements:
- 4 or more years of experience in policy interpretation and development
- 2 or more years of experience in development and analysis of metrics
Desired Experience:
• Experience in the development of cybersecurity related plans or policies implanting National, Intelligence Community or DoD policies, directives, instructions, and/or standards
• Experienced in, and comfortable with, developing presentations, briefings, and point papers for senior leadership
• Experience in collecting and reporting metrics associated with the Federal Information Security Modernization Act or the DoD Cyber Security Scorecard
• Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or GIAC Security Leadership Certification (GSLC).
• Experience in the development of cybersecurity related plans or policies implanting National, Intelligence Community or DoD policies, directives, instructions, and/or standards
• Experienced in, and comfortable with, developing presentations, briefings, and point papers for senior leadership
• Experience in collecting and reporting metrics associated with the Federal Information Security Modernization Act or the DoD Cyber Security Scorecard
• Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or GIAC Security Leadership Certification (GSLC).
Technical Requirements:
- Candidates must meet the Cyber IT/Cybersecurity Workforce (CSWF) SECNAV M-5239.2 requirements for this position. For more information visit: Navy Cool Cyber IT/CSWF Workforce Model.
Education: Bachelor's degree from accredited University. If no degree is held, qualified candidates must possess one of the following certifications*.
- CompTIA Security CE
- GIAC Security Essentials Certification (GSEC)
- Systems Security Certified Practitioner (SSCP)
*Other certifications may qualify as listed in the Navy Cool Cyber IT/CSWF Workforce Model.
Security Clearance
- This position requires U.S. citizenship and an active DoD TS/SCI clearance.