Cybersecurity Policy and Compliance Analyst JobBooz Allen Hamilton Inc. - Norfolk, VA
Job Number: R0016745
Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Cybersecurity Policy and Compliance Analyst Key Role:
Support the Navy Cybersecurity risk assessment team in conducting assessments of Cybersecurity risk by evaluating Navy systems and assist with drafting Cybersecurity risk reports to highlight current architecture, mitigations, and Cybersecurity risk posture. Analyze, review, and critique assessment and authorization (A&A) documentation in compliance with DoD Cybersecurity policy and agency guidance, including DoD 8500 series, CNSS 1253, and NIST special publications. Assess program security compliance, support program briefs, and coordinate and compile program security documentation for various programs. Provide A&A and Cybersecurity support, including Risk Management Framework (RMF) for DoD IT, assess compliance with security technical implementation guides (STIGs), review automated scans, conduct security test and evaluation (ST&E), vulnerability assessments, and computer security responses, and create and manage RMF packages using the Enterprise Mission Assurance Support Service (eMASS). Provide results of unresolved discrepancies to the client for inclusion in that system's IA Plan of Action and Milestones (POA&M). Interact with clients to perform policy and technical audits. Brief client leadership on vulnerabilities in support of the government client and prepare brief slides and summary of findings analyses.
-5 years of experience with IT, including in a DoD environment
-5 years of experience with DIACAP and NIST Risk Management Framework (RMF) policies, including continuous monitoring, information system security policies, standards, and procedures
-Experience with preparing DIACAP or RMF packages and supporting documentation and DoD Authorization and Accreditation (A&A) process and standards
-Experience with using the Enterprise Management Assurance Support Service (eMASS)
-Knowledge of IA or INFOSEC concepts and requirements
-Ability to conduct security control selection, tailoring, and overlays
-Ability to analyze a security plan and perform system security analysis
-DoD 8140 IAM or IAT Certification, including Security CE, CISM, CISSP, or CASP
-3 years of experience with supporting Navy Commands in the implementation or assessment of Cybersecurity controls or legacy DIACAP implementation
-3 years of experience with system and network vulnerability analysis, risk assessment and risk mitigation analysis, security test and evaluation (ST&E), contingency planning, and firewall policy, ports, and protocols
-Experience with Retina, Nessus, SCAP Compliance Checker, STIGs, hardening systems, and applying IA controls
-Experience with supporting the Navy or NAVSEA or NAVAIR
-Experience with Nesses, ACAS, SCAP, and HBSS
-Possession of excellent oral and written communication skills
-Top Secret clearance
-Navy Qualified Validator (NQV) Appointment or Legacy Fully Qualified Navy Validator (FQNV) Appointment
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.
Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.
We are proud of our diverse environment, EOE, M/F/Disability/Vet.
Position Type: Full-Time Permanent
Years of Experience Required:
8 days 18 hours ago
applyCybersecurity Policy and Compliance Analyst Job Booz Allen Hamilton Inc. - Norfolk, VA, United States
Booz Allen leverages its past to help clients prepare for the future. Our legacy in management consulting enables us to see, hear, and innovate on behalf of our clients in ways our competitors cannot. Each day, we look beyond the requirements of a single client engagement to address the broader context of our client’s mission and business goals.
Jobs You Might Also Like
View More Jobs in Norfolk, VA:
- View More Jobs in Norfolk, VA
- More Cybersecurity Policy and Compliance Analyst Job Jobs in Norfolk, VA
- More Compliance Jobs in Norfolk, VA
- More Booz Allen Hamilton Inc. Jobs in Norfolk, VA
View More Jobs in Virginia:
- View More Jobs in Virginia
- More Cybersecurity Policy and Compliance Analyst Job Jobs in Virginia
- More Compliance Jobs in Norfolk, VA
- More Booz Allen Hamilton Inc. Jobs in Virginia