A&A Analyst and Security Control Assessor/Validator in Washington, DC at Booz Allen Hamilton

Date Posted: 1/31/2018

Job Snapshot

Job Description

Job Number: R0022014

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


A&A Analyst and Security Control Assessor/Validator

Key Role:

Provide Cybersecurity and privacy analysis and consulting throughout the security assessment and compliance life-cycle process. Plan and continuously monitor Cybersecurity and privacy policies, programs, compliance artifacts, and standards in support of government and industry security compliance, systems accreditation, and management. Administer the documentation, validation, and accreditation processes necessary to assure systems meet security and privacy requirements. Consult on the assessment of the effectiveness of an organization’s IT security and privacy training program, including consulting on social engineering exercises to ensure training remains consistent with current Cybersecurity and privacy threats and policies, and assist with achieving full compliance with any or all laws and regulations.


Basic Qualifications:

-8+ years of experience with Cybersecurity

-8+ years of experience with performing technical security assessments, including vulnerability assessments, security control reviews, and system configuration checks to support DIACAP or RMF

-3+ years of experience with planning and executing comprehensive Cybersecurity test events, including identifying applicable security controls, analyzing assessment procedures, and identification and using required tools, such as Retina, Nessus, Assured Compliance Assessment Solution (ACAS), or Security Content Automation Protocol (SCAP)

-Experience with performing manual testing methods and procedures using STIGs, SRGs, and checklists

-Active Secret clearance

-BA or BS degree in Engineering or Computer Science or 10+ years of experience in Cybersecurity

-Security+ or CISSP Certification


Additional Qualifications:

-3+ years of experience with supporting Navy commands in the implementation or assessment of Cybersecurity controls or legacy DIACAP implementation

-3+ years of experience with Navy and DoD systems

-2+ years of experience in working with NIST RMF for A&A

-Experience with eMASS

-Experience with performing Cybersecurity risk assessments and mitigation

-Experience with Microsoft Excel

-Experience with testing Navy systems

-Experience in a Fully Qualified Navy Validator (FQNV) legacy appointment

-IA Workforce 8570 Certification


Clearance

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

NMC

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.