Senior Cybersecurity Assessment and Authorization (A&A) Analyst
Description:
Position Overview Type: Full-Time, Exempt
Location: Huntsville, AL
Travel: Some travel expected
Clearance: Active Department of Defense (DoD) Top Secret Security Clearance with SCI eligibility.
Work Authorization: U.S. Citizenship required
Summary/Objective
Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville-headquartered team.
Essential Functions
Applies knowledge of Cyber policy, procedures, and workforce structure to develop, implement, and maintain a cyber-secure environment.
Relies on extensive experience and judgment to plan and accomplish enclave security related goals.
Supervises IAM and IAT personnel - Reports to government managers for enclave operational requirements.
Leads cyber management and operations for enclave(s) / systems / sites.
Leads and manages full RMF lifecycle activities in accordance with NIST SP 800-37, NIST SP 800-53, DoDI 8510.01, and DoD component policies.
Develops, updates, and maintains all A&A documentation, including SSPs, SCTMs, POA&Ms, continuous monitoring plans, and audit-ready artifacts.
Prepares systems for initial ATO, ATO renewals, interim authorizations, and continuous monitoring requirements.
Manages and maintains eMASS packages, ensuring accurate, timely, and compliant submissions.
Conducts assessments and validations of security controls, analyzing vulnerability results (ACAS, SCAP) and tracking remediation efforts.
Drafts and maintains cybersecurity SOPs, ISAs, and governance documentation to support secure system operation and external connections.
Ensures compliance with FISMA, DoD cybersecurity policies, and organizational directives through ongoing evaluation and exercises.
Identifies threats, vulnerabilities, and risk impacts; develops, manages, and monitors mitigation actions and POA&M entries.
Provides expert cybersecurity guidance to leadership, system owners, engineers, AOs, SCAs, ISSMs, and other stakeholders.
Supports audits and enterprise cybersecurity governance by compiling, editing, and coordinating policies, strategies, and operational guidance.
Required Education and Experience
Education: Master's in STEM / Program Management / or Cyber-related field or equivalent from an accredited institution with 5 years of cyber management experience
Acceptable alternative: Bachelor's Degree in STEM / Program Management / Cyber-related field with 8years DoD cyber experience and knowledge demonstrated in cyber and missile defense related or other complex, large DoD programs / projects
IAM III Certification prior to accepting position - no exceptions
eMASS Certification prior to accepting position - no exceptions
What We Offer:
401(k) Matching
Company Events
Dental Insurance
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Parental Leave
Performance Incentives
Student Loan Repayment
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
This employer is required to notify all applicants of their rights pursuant to federal employment laws.
For further information, please review the Know Your Rights notice from the Department of Labor.