ACES Group LLC is hiring: Cybersecurity Analyst in Arlington

TS/SCI | Hybrid | 5 Yrs | Feb/Mar Start

ACES is seeking a Cybersecurity Policy Analyst to support DoD CIO. Hybrid Work requires ACTIVE TS/SCI CLEARANCE on 5 Year Contract starting in Feb/Mar at offices in the Pentagon, Arlington, VA. Work involves analyzing complex user, policy, regulatory, and resource demands and identifying threats, vulnerabilities, and risks to recommend effective mitigation measures. Email resume to info@ACESGroup.com

QUALIFICATIONS

• Clearance: Active TS/SCI
• Education/Experience: Bachelor’s degree in a cybersecurity related discipline, or any Bachelor’s degree and cyber related certification of CISSP or higher with 10 years related experience.
• Technical: Experience designing and implementing cybersecurity solutions for complex enterprise environments. Hands-on experience with risk assessment, threat modeling, and mitigation techniques. Familiarity with securing specialized DoD systems such as command and control networks.

STRUCTURE

• Contract Length: 5 years
• Work Location: Pentagon, Arlington, VA
• Telework: In office 2-3 days per week/as required – rest telework
• Start Date: Feb/Mar 2025

RESPONSIBILITIES

• Assist in planning, analysis, development, and implementation of cybersecurity strategies aligned with DoD CIO priorities, goals, and objectives.
• Provide expertise for policy, manual, and instruction development to enhance security engineering, cyber defense, and compliance with Digital Modernization goals.
• Support outreach and awareness activities for cybersecurity, Defensive Cyber Operations (DCO), and international efforts to promote cooperation, information sharing, and interoperability.
• Collaborate with stakeholders such as the Joint Staff, Combatant Commands, and other agencies to develop coordinated policies and foster strategic partnerships.
• Research and update cybersecurity management methodologies, ensuring Knowledge Service (KS) maps cybersecurity policies to actionable metrics with scalable processes and standard validation methods.
• Assist in enhancing enterprise-wide cybersecurity risk management frameworks, including migration from DIACAP to RMF, and provide analytical support for RMF deployment and functionality.
• Conduct assessments to document operational, functional, and technical requirements for the DoD cybersecurity portfolio, identifying gaps and developing closure plans, roadmaps, and decision briefings for leadership.
• Support evaluation of emerging technologies, cybersecurity architectures, and program oversight activities, including user activity monitoring (UAM), ICAM, C2C, ACEM, cross-domain solutions, and encryption technologies.
• Develop and integrate SCRM strategies, processes, and technical capabilities, promoting best practices and responding to Congressional directives.
• Provide expertise to national and DoD-level incident response efforts, conduct technical analyses, and support operational cybersecurity events and meetings with detailed summaries and action recommendations.
• Perform systems security, risk, and vulnerability assessments, advising on measures of effectiveness and providing support for CJCSI, CJCSM, and emerging technology evaluations such as 5G and IoT systems.
• Support the development and implementation of cybersecurity standards for technologies including control systems, IoT, weapon systems, and cloud capabilities, with additional support for FedRAMP initiatives.