Cyber Policy and Strategy Planner

MBL Technologies, Inc. offers a diverse set of management and technology consulting services to Federal government and commercial markets. Our solutions are tailored to support each client’s mission, accounting for their unique needs and operating environments to ensure success. We bring the right people, capabilities, and expertise together to assist our clients with enabling their mission. Together our individual differences drive successful business results.

If you are transitioning from military to civilian life, have prior service, are a retired veteran, or a member of the National Guard or Reserves, or spouse of an active military service member, we encourage you to apply. Please visit our webpage for information on our policies and benefits for the military and veteran community.

Why Work With Us?

• We trust, empower, and believe in our employees to soar to their fullest potential!
• We offer a robust benefits package (medical, dental, vision, STD, Accident, Life, Hospital Insurance, FSA, HSA, 401K match, professional development stipend, etc.).
• We love to have fun and give back to the community. Community Service and Employee Engagement events are atop our calendar events!
• We genuinely like each other and champion everyone to achieve their own greatness!

MBL Technologies is seeking a Cyber Policy and Strategy Planner to join our team. The individual will be instrumental in supporting and enhancing our organizational initiatives through strategic consulting and program management. This role requires a blend of analytical skills, leadership capabilities, and effective communication to address customer requirements and drive successful project outcomes.

This position offers a REMOTE environment.

Key Functions

Develops and maintains cybersecurity and privacy plans, strategy, and policy to support and align with organizational cybersecurity and privacy initiatives and regulatory compliance. Reviews existing and proposed policies with stakeholders. Interprets and applies applicable laws, statutes, and regulatory documents and integrates into policy. Provides policy guidance to cyber management, staff, and users. Seeks consensus on proposed policy changes from stakeholders.

Selected Responsibilities

• Review existing and proposed policies with stakeholders.
• Interprets and applies applicable laws, statutes, and regulatory documents and integrates into policy.
• Analyzes organizational cybersecurity and privacy policy.
• Assess policy needs and collaborate with stakeholders to develop policies to govern cybersecurity and privacy activities.
• Draft, staff, and publish cybersecurity and privacy policy.
• Seeks consensus on proposed policy changes from stakeholders.
• Provides policy guidance to cybersecurity and privacy management, staff, and users.
• Define and integrate current and future mission environments.
• Monitor the rigorous application of cybersecurity and privacy policies, principles, and practices in the delivery of planning and management services.
• Review, conduct, or participate in audits of cybersecurity and privacy programs and projects.
• Develop policy, programs, and guidelines for implementation.
• Establish and maintain communication channels with stakeholders.
• Ensure that cybersecurity and privacy workforce management policies and processes comply with legal and organizational requirements regarding equal opportunity, diversity, and fair hiring/employment practices.
• Promote awareness of cybersecurity and privacy policy and strategy as appropriate among management and ensure sound principles are reflected in the organization's mission, vision, and goals.
• Design/integrate a cybersecurity/privacy strategy that outlines the vision, mission, and goals that align with the organization’s strategic plan.
• Serve on agency security and privacy policy boards.
• Advocate for adequate funding for cybersecurity and privacy training resources, to include both internal and industry-provided courses, instructors, and related materials.
• Review/Assess cybersecurity and privacy workforce effectiveness to adjust skill and/or qualification standards

Qualifications /Skills

• Skill in preparing cybersecurity and privacy policy plans and related correspondence.
• Skill in drafting, editing and publishing cybersecurity and privacy policy documentation
• Skill in talking to others to convey information effectively.
• Skill in administrative planning activities, to include preparation of functional and specific support plans, preparing and managing correspondence, and staffing procedures.
• Skill in applying policy implementation and delivery capabilities.
• Skill in identifying gaps in policy implementation and delivery capabilities.
• Skill in utilizing feedback to improve processes, procedures and, services related to cybersecurity and privacy policy implementation

Required Abilities

• Ability to work from narrative interaction with senior managers and subject matter experts to produce insightful cybersecurity and privacy policy initiatives
• Ability to leverage best practices and lessons learned of external organizations and academic institutions dealing with cybersecurity and privacy policy issues.
• Ability to monitor advancements in information technologies that affect cybersecurity and privacy policy and ensure appropriate organizational adaptation and compliance.
• Ability to evaluate information for reliability, validity, and relevance.
• Ability to develop, update, and/or maintain policies and standard operating procedures (SOPs).
• Ability to develop clear policy directions and effective presentation materials.
• Ability to produce policy documentation.
• Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• Ability to prepare and present briefings.
• Ability to answer questions in a clear and concise manner.
• Ability to ask clarifying questions.
• Ability to function in a collaborative environment, seeking continuous consultation with analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise.
• Ability to map cybersecurity and privacy principles to policy implementations (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Preferred Experience and Certifications

• 7+ years of relevant cyber security experience and is a Senior Position.

Recommended Qualifications

• At least 3-5 years of relevant experience supporting enterprise cybersecurity and privacy policy