Jobs › Cyber Operational Analyst
Cyber Operational Analyst
Role at a glance
- Category
- GRC
- Work arrangement
- On-site
- Location
- Fort Meade, Maryland
- Salary range
- $131,841 to $180,186
- Posted
- Jul 15, 2026
Joint Activities is hiring a Cyber Operational Analyst in Fort Meade, Maryland. This is a GRC role in the governance, risk, and compliance field, with a posted range of $131,841 to $180,186. Review the full details below and apply directly with Joint Activities.
About the Position: This position is a DOD Cyber Excepted Service (CES) personnel system position in the Excepted Service under 10 USC 1599f. Employees occupying CES positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction 1400.25. This position is located at Fort Meade, MD. Qualifications: CYBER EXCEPTED SERVICE POSITIONS ARE NOT SUBJECT TO THE TWO-PAGE RESUME LIMIT. YOUR FULL RESUME WILL NEED TO BE UPLOADED TO YOUR USAJOBS PROFILE USING THE DOCUMENT TYPE "OTHER DOCUMENTS". This Position is in the Professional Work Category at the Full Performance Work Level within the CES Occupational Structure. Who May Apply: US Citizens Army CES positions apply Veteran's Preference to preference eligible candidates, as defined by Section 2108 of Title 5 U.S.C., in accordance with the procedures provided in DoD Instruction 1400.25, Volume 3005, "CES Employment and Placement". If you are a veteran claiming veterans' preference, as defined by Section 2108 of Title 5 U.S.C., you must submit documents verifying your eligibility with your application package. In order to qualify, you must meet the experience requirements described below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). You will receive credit for all qualifying experience, including volunteer experience. Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application. Additional information about transcripts is in this document. To qualify based on your experience, your resume must describe one year of specialized experience that demonstrates the possession of knowledge, skills, abilities, and competencies necessary for immediate success in the position. Such experience is typically in or directly related to the work of the position to be filled. Specialized experience would be demonstrated by 1. managing an operational requirements process which may include developing plans or recommendations to resolve substantive problems; 2. coordinating with stakeholders to ensure operational requirements are aligned with strategic guidance and established objectives; 3. facilitating the execution of decision boards to approve operational requirements; 4.
Full responsibilities and requirements are on Joint Activities's application page.
Apply for this role →Location and market context
This role is based in Fort Meade, Maryland on-site. Local candidates benefit from being close to Joint Activities's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About cybersecurity governance roles
Cybersecurity governance connects security control frameworks to business and regulatory risk, covering policy, risk assessment, and control assurance rather than hands-on operations. Roles like this one are typically evaluated against frameworks such as NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices.
How to position yourself for this cybersecurity governance role
Strong candidates emphasize security control frameworks, risk assessment, policy and standards, and translating technical security posture into governance and board-level reporting. In your resume and outreach, tie your experience to how Joint Activities would apply NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location