Cyber Policy Analyst

ESM•Philadelphia, PA

19h•Remote

About The Position

Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Cyber Policy Analyst for an exciting remote opportunity. This role is responsible for reviewing, consolidating, and developing cybersecurity policy in coordination with government stakeholders to ensure compliance with applicable requirements. The position provides technical support and guidance across programs while evaluating IT policies, standards, guidelines, and procedures to maintain an effective balance between security needs and operational objectives. In addition, the role prepares and delivers briefings to senior management on cybersecurity policy updates, changes, and program progress, ensuring leadership remains informed and aligned with evolving security requirements. While this is a remote position, the client stipulates that all candidates must live within 50 miles of one of the following: Battle Creek, MI Columbus, OH Dayton, OH Ft. Belvoir, VA New Cumberland, PA Ogden, UT Philadelphia, PA Richmond, VA

Requirements

Knowledge of DoD cybersecurity policies, procedures, and implementation frameworks supporting enterprise security operations.
Experience developing and maintaining cybersecurity artifacts, including STIGs, TCG configuration guides, IAVMs, and task orders.
Ability to create, manage, and validate RMF documentation and cybersecurity compliance artifacts.
Skilled in maintaining and tracking POA&M records, including findings, remediation actions, and milestone updates to support issue resolution.
Proficient in data analysis and reporting using tools such as Microsoft Excel, Access, Power BI, and Power Platform to produce audit-ready cybersecurity reports, vulnerability assessments, and trend analyses.
Strong research, analytical, and communication skills with demonstrated ability to work independently or collaboratively and brief leadership on cybersecurity status, risks, and compliance findings.
Seven (7) years cybersecurity policy experience
IAT II or higher certification
ACAS training module/course completion
Tanium training module/course completion
DLA approved Computing Environment certification
Minimum Clearance Secret

Nice To Haves

Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
Candidate must communicate effectively with team members, team lead, management, and government customer
Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Responsibilities

Reviewing, consolidating, and developing cybersecurity policy in coordination with government stakeholders to ensure compliance with applicable requirements.
Providing technical support and guidance across programs.
Evaluating IT policies, standards, guidelines, and procedures to maintain an effective balance between security needs and operational objectives.
Preparing and delivering briefings to senior management on cybersecurity policy updates, changes, and program progress.
Ensuring leadership remains informed and aligned with evolving security requirements.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume