The Policy Analyst advises, assists, leads, manages, and works all policy development, review ... Lead the development, review, and coordination of corporate, IT service, and cybersecurity ...
The Policy Analyst advises, assists, leads, manages, and works all policy development, review ... Lead the development, review, and coordination of corporate, IT service, and cybersecurity ...
Policy Analyst Mid
Saint Louis, MO · On-site
$124K - $148K/yr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps. Required ...
Quick apply
Policy Analyst Mid
Saint Louis, MO · On-site
$124K - $148K/yr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps. Required ...
Policy Analyst, Mid
Springfield, VA · On-site
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst, Mid
Springfield, VA · On-site
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst
Saint Louis, MO · On-site
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.
Policy Analyst
Saint Louis, MO · On-site
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps. SAIC is ...
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps. SAIC is ...
Policy Analyst
Saint Louis, MO · On-site
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.
Policy Analyst
Saint Louis, MO · On-site
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Quick apply
Policy Analysis - Mid The Policy Analyst - Mid, advises, assists, leads, manages, and works all ... A minimum of a Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity ...
Responsibilities & Qualifications We are seeking a Cybersecurity Policy Analyst REQUIRED QUALIFICATIONS Experience * Seven (7) years of relevant cybersecurity policy experience * Demonstrated ...
Responsibilities & Qualifications We are seeking a Cybersecurity Policy Analyst REQUIRED QUALIFICATIONS Experience * Seven (7) years of relevant cybersecurity policy experience * Demonstrated ...
Policy Analyst, Mid with Security Clearance
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst, Mid with Security Clearance
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
About the role Concept Plus is seeking a Cybersecurity Policy and RMF Analyst to provide Risk Management Support to identify shortfalls in the assessment and authorization process, track and manage ...
About the role Concept Plus is seeking a Cybersecurity Policy and RMF Analyst to provide Risk Management Support to identify shortfalls in the assessment and authorization process, track and manage ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our defense ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our defense ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Share Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Share Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our defense ...
Cybersecurity Mobility Policy Analyst
Alexandria, VA · On-site
$55K - $126K/yr
Cybersecurity Mobility Policy Analyst The Opportunity: When our country's cyber security is on the line, simply reacting is not enough-we need a plan. And when that plan needs to protect our defense ...
Policy Analyst, Mid
Springfield, VA · On-site
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst, Mid
Springfield, VA · On-site
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst, Mid
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Policy Analyst, Mid
$62.50 - $72.12/hr
Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances, such as IC and DoW policy and Executive Orders, to identify policy impacts, conflicts, or gaps.
Cyber Security Policy Analyst information
See salary details
$43K - $52.7K
1% of jobs
$52.7K - $62.5K
6% of jobs
$62.5K - $72.2K
10% of jobs
$78.8K is the 25th percentile. Wages below this are outliers.
$72.2K - $81.9K
12% of jobs
$81.9K - $91.6K
15% of jobs
The median wage is $95.8K / yr.
$91.6K - $101.4K
15% of jobs
$101.4K - $111.1K
10% of jobs
$115.3K is the 75th percentile. Wages above this are outliers.
$111.1K - $120.8K
16% of jobs
$120.8K - $130.5K
7% of jobs
$130.5K - $140.3K
5% of jobs
$140.3K - $150K
3% of jobs
$43K
$99.4K
$150K
How much do cyber security policy analyst jobs pay per year?
As of Jun 10, 2026, the average yearly pay for cyber security policy analyst in the United States is $99,400.00, according to ZipRecruiter salary data. Most workers in this role earn between $79,500.00 and $115,500.00 per year, depending on experience, location, and employer.
What does a Cyber Security Policy Analyst do?
A Cyber Security Policy Analyst develops, implements, and reviews policies and procedures to protect an organization's information systems from cyber threats. They analyze current security measures, stay updated on regulations and emerging threats, and ensure that the organization’s security policies comply with legal and regulatory requirements. Additionally, they may provide recommendations for policy improvements, conduct risk assessments, and educate staff on security best practices.
What is the difference between Cyber Security Policy Analyst vs Cyber Security Analyst?
| Aspect | Cyber Security Policy Analyst | Cyber Security Analyst |
|---|---|---|
| Credentials | Bachelor's degree in cybersecurity, IT, or related field; certifications like CISSP, CISA | Bachelor's degree in cybersecurity, IT, or related field; certifications like CompTIA Security+, CEH |
| Work Environment | Policy development, compliance, risk assessment, often in office settings | Security monitoring, incident response, vulnerability assessment, often in security operations centers |
| Employer & Industry | Government agencies, corporations, consulting firms focusing on policy and compliance | IT departments, security firms, organizations with active cybersecurity operations |
The main difference is that a Cyber Security Policy Analyst focuses on creating and managing security policies, ensuring compliance, and assessing risks, while a Cyber Security Analyst primarily monitors systems, responds to threats, and handles technical security issues. Both roles require cybersecurity knowledge but serve different functions within an organization.
What are some common challenges faced by Cyber Security Policy Analysts when translating technical risks into actionable policies?
Cyber Security Policy Analysts often face the challenge of bridging the gap between highly technical security risks and practical, understandable policies for non-technical stakeholders. They must ensure that policies are comprehensive yet accessible, balancing security needs with business operations. Additionally, keeping policies current with evolving threats and regulatory requirements can be demanding. Effective communication and collaboration with IT, legal, and executive teams are essential to address these challenges and ensure successful policy implementation.
What are the key skills and qualifications needed to thrive as a Cyber Security Policy Analyst, and why are they important?
To thrive as a Cyber Security Policy Analyst, you need a deep understanding of cyber security frameworks, risk assessment, and policy development, usually supported by a bachelor's degree in cyber security, information technology, or a related field. Familiarity with regulatory standards (such as NIST, ISO 27001), governance tools, and, sometimes, certifications like CISSP or CISM is important. Excellent analytical thinking, written communication, and stakeholder collaboration skills help you translate technical risks into effective policies. These skills ensure that organizations remain compliant, minimize cyber risks, and build resilient security postures.
More about Cyber Security Policy Analyst jobs
What cities are hiring for Cyber Security Policy Analyst jobs? Cities with the most Cyber Security Policy Analyst job openings:
What states have the most Cyber Security Policy Analyst jobs? States with the most job openings for Cyber Security Policy Analyst jobs include:
What job categories do people searching Cyber Security Policy Analyst jobs look for? The top searched job categories for Cyber Security Policy Analyst jobs are:
ManTech rating
8.8
Based on 13 frontline employees who took The Breakroom Quiz
32nd of 188 rated software companies
Job description
MANTECH seeks a motivated, career and customer-oriented Policy Analyst to join our team in St. Louis, MO. This role is 100% on-site. The Policy Analyst advises, assists, leads, manages, and works all policy development, review, coordination, adjudication, promulgation, communication, and compliance in accordance with NGA's Policy Life Cycle Management (PLCM) process. This role supports Subject Matter Expert (SME) development, coordination, and maintenance of all assigned policies, self-inspection checklists, and gap analyses. Responsibilities include but are not limited to: * Lead the development, review, and coordination of corporate, IT service, and cybersecurity/information assurance policies to ensure enterprise-wide alignment.
* Direct the creation of SME self-inspection checklists to facilitate rigorous monitoring, implementation tracking, and regulatory adherence.
* Lead specialized SME analysis to identify policy gaps, conducting deep-dive assessments to drive data-informed revisions and updates.
* Execute IV&V protocols to ensure all policy issuances are fact-based, accurate, and consistent with strategic planning and external mandates.
* Support the design and implementation of optimized policy workflows to enhance administrative efficiency and organizational agility.
* Manage the tracking and reporting of policy-related metrics and business analytics to measure the effectiveness of governance initiatives.
* Align internal policy frameworks with the organization's overarching Cybersecurity Strategy to fortify information assurance.
* Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and address emerging impacts. Minimum Qualifications: * 7+ years of demonstrated experience leading, managing, and working policies in accordance with a Policy Life Cycle Management (PLCM) process
* Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity, International Affairs, Policy, or a related field. In lieu of a degree, 10+ years of experience is required.
* 2+ years of demonstrated experience tracking and managing formal taskers.
* 2+ years of demonstrated experience in coordinating and collaborating on agency-level support agreements.
* 2+ years of demonstrated experience reviewing and analyzing high-level governance documents (e.g., agency directives, statutes, Executive Orders).
* Demonstrated understanding of NIST 800-53 controls, cybersecurity frameworks, and high-level cybersecurity policy.
* Proven expertise in policy lifecycle management, including the orchestration of strategic agendas, the maintenance of policy compendiums, and the resolution of regulatory gaps and rescissions Clearance Requirements: * Must have a current/active TS/SCI security clearance and be able to obtain a polygraph. Physical Requirements: * The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.
* Direct the creation of SME self-inspection checklists to facilitate rigorous monitoring, implementation tracking, and regulatory adherence.
* Lead specialized SME analysis to identify policy gaps, conducting deep-dive assessments to drive data-informed revisions and updates.
* Execute IV&V protocols to ensure all policy issuances are fact-based, accurate, and consistent with strategic planning and external mandates.
* Support the design and implementation of optimized policy workflows to enhance administrative efficiency and organizational agility.
* Manage the tracking and reporting of policy-related metrics and business analytics to measure the effectiveness of governance initiatives.
* Align internal policy frameworks with the organization's overarching Cybersecurity Strategy to fortify information assurance.
* Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and address emerging impacts. Minimum Qualifications: * 7+ years of demonstrated experience leading, managing, and working policies in accordance with a Policy Life Cycle Management (PLCM) process
* Bachelor's Degree in Computer Science, Systems Engineering, Cybersecurity, International Affairs, Policy, or a related field. In lieu of a degree, 10+ years of experience is required.
* 2+ years of demonstrated experience tracking and managing formal taskers.
* 2+ years of demonstrated experience in coordinating and collaborating on agency-level support agreements.
* 2+ years of demonstrated experience reviewing and analyzing high-level governance documents (e.g., agency directives, statutes, Executive Orders).
* Demonstrated understanding of NIST 800-53 controls, cybersecurity frameworks, and high-level cybersecurity policy.
* Proven expertise in policy lifecycle management, including the orchestration of strategic agendas, the maintenance of policy compendiums, and the resolution of regulatory gaps and rescissions Clearance Requirements: * Must have a current/active TS/SCI security clearance and be able to obtain a polygraph. Physical Requirements: * The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.
About ManTech
Sourced by ZipRecruiter
Industry
It services
Company size
5,001 - 10,000 Employees
Headquarters location
Herndon, VA, US
Year founded
1968