Cyber Compliance and Risk Management Lead in Washington, DC at Booz Allen Hamilton Inc.

Date Posted: 7/11/2018

Job Snapshot

Job Description

Job Number: R0032343

Cyber Compliance and Risk Management Lead

Key Role:

Perform auditing and compliance duties, including audit readiness support to the client. Analyze the client's overall enterprise audit readiness process design and provide recommendations on how effectiveness could be improved to mitigate conditions that could impair future audit preparedness. Perform other audit readiness activities, including reviewing and evaluating OIG findings and making recommendations for OIT audit readiness, creating finding remediation strategies, developing and monitoring Plans of Action and Milestones (POA&Ms), evaluating Recommendation Completion Form (RCF) and Progress Status Report (PSR) narratives and evidence, and providing recommendations for improvements prior to submission. Contribute to OIG and agency level presentations, participate in audit finding debriefs to represent OIT interests, and develop responses for notices of findings and recommendations (NFR) and audit reports on behalf of OIT and agency. Perform remediation activities for high priority findings. Establish and deliver workshop sessions to educate impacted stakeholders on the contents of their audit readiness packages.

Basic Qualifications:

-8+ years of experience with FISMA, OMB Circulars, and executing NIST risk and security controls guidelines and special publications or documents

-Knowledge of Cyber threat capabilities and technical capabilities to defend networks and systems

-Knowledge of network operating systems, SLAs, and service expertise

-Ability to work effectively as a member of a team and be comfortable informing or briefing senior officials when appropriate

-Ability to obtain a security clearance

-BA or BS degree required

Additional Qualifications:

-5+ years of experience in a lead role working on IT audits and assessments preferred

-Knowledge of networking fundamentals, enterprise risk management, and NIST Risk Management Framework (RMF) preferred

-Possession of excellent oral and written communication skills to clearly and concisely document Cybersecurity vulnerability details and escalate appropriately when required

-Possession of strong initiative and critical thinking skills

-CISA Certification preferred

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.