Computer Systems/Cybersecurity Policy and Compliance Analyst in Newport, RI at Booz Allen Hamilton Inc.

Date Posted: 7/28/2018

Job Snapshot

Job Description

Job Number: R0022366

Computer Systems/Cybersecurity Policy and Compliance Analyst

Key Role: 

Provide Cybersecurity and privacy analysis assistance throughout the security assessment and compliance life cycle process under general supervision. Maintain responsibility for continuous monitoring of Cybersecurity and privacy policies, programs, compliance artifacts, and standards in support of government and industry security compliance, systems accreditation, including supporting the creation of Cybersecurity Assessment and Authorization (A&A) packages for Navy information systems (ISs), Cross–Domain Solutions, Unmanned Undersea Vehicles (UUVs), Platform Information Technology (PIT), Navy trainers, software applications, and Research, Development, Test, and Evaluation (RDT&E) systems and management. Support the administration of the documentation, validation, and accreditation processes necessary to support positive accreditation decisions, including Authority to Operate (ATO), Interim Authority to Operate (IATO), Interim Authority to Test (IATT), PIT Risk Approval (PRA), and Interim PRA. Apply security standards and compliance requirements, processes, and documentation for information systems, and enclaves.

Basic Qualifications:

-5 years of experience with computer systems analysis and a Cyber–related focus

-Experience with identifying risks and providing technical solutions to mitigate and reduce risks during the A&A process to ensure the accreditation is maintained and performing periodic vulnerability scans on information systems and enclaves using DoD and Department of Navy (DON)–approved scanning tools and report technical findings

-Knowledge of DoD and Department of Navy (DON)–approved scanning tools

-Ability to patch, harden, and secure systems per applicable Security Technical and Implementation Guide (STIGs), Information Assurance Vulnerability Alerts, Bulletins, and Technical (IAV–A/B/T), and report compliance

-Secret clearance

-AA or AS degree

-CompTIA Security+ Certification

Additional Qualifications:

-Experience with generating Cybersecurity A&A strategy and boundary diagrams, A&A packages, and supporting documentation, including Standard Operating Procedure for Cybersecurity Vulnerability Management, Cybersecurity Certification Testing, and Configuration Management in accordance with the NAVSEA Cybersecurity Business Rules A&A submission requirements

-Knowledge of documenting security test and evaluation of IA controls and input results in the Enterprise Mission Assurance Support Service (eMASS) Navy database

-Ability to generate vulnerability reports in support of Cybersecurity risk assessments and mitigations for US Navy tactical and tactical support systems

-TS/SCI clearance

-BA or BS degree in a technical field

-NUWCDIVNPT Certification

-Cybersecurity Workforce status as defined by DoDI 8570.01 Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.