This site uses cookies. To find out more, see our Cookies Policy

Cyber Compliance and Risk Manager, Mid in Pensacola, FL at Booz Allen Hamilton Inc.

Date Posted: 2/7/2019

Job Snapshot

Job Description

Job Number: R0047053

Cyber Compliance and Risk Manager, Mid

Key Role:

Serve as risk analysis subject matter expert (SME) to design, develop, and recommend integrated security system solutions to ensure proprietary and confidential data and systems are protected. Support Cybersecurity analysis, including Cybersecurity vulnerability scanning, patching, remediation, documentation, and reporting of Cyber vulnerabilities per platform to support customer system installation and operations at sites. Assist with developing system concepts and applying the systems engineering life cycle to translate strategic Cyber objectives, technology, and environmental conditions into engineering outcomes and solutions, drafting guidance for computer security programs, and responding to queries and requests for computer security information and reports. Assist with selecting and applying processes and methodologies to meet Cyber performance objectives, including analyzing trends and emerging technologies for potential program modernization and remediation on identified Cyber issues, including supporting sites to remediate Cyber issues, and develop Cyber baseline descriptions for each site under limited supervision. Provide technical knowledge and analysis when performing vulnerability assessment leveraging tools, including the Assured Compliance Assessment Solution (ACAS) and providing implementation guidance related to vulnerabilities, analyzing the development of Information Assurance Vulnerability Alerts (IAVA), security technical implementation guides (STIGs), Plans of Action and Milestones (POA&Ms), and mitigations. Conduct regular audits supporting Federal Information Security Management Act (FISMA) reviews to ensure systems are operated securely and computer security policies and procedures are implemented, including tracking of operation order (OPORD) and task order compliance and process change requests supporting A&A package amendments.

Basic Qualifications:

-3+ years of experience with Navy and DoD Cyber vulnerability assessment and security tools, including WSUS, ACAS, Security Center, and ePO

-3+ years of experience with Cyber vulnerability remediation and Cyber risk analysis

-1+ years of experience with DoD security technical implementation guidelines (STIG) and Security Readiness Guidelines (SRGs)

-Ability to research Cyber vulnerabilities and issues, develop and present solutions, and train clients to remediate

-Ability to produce high quality reports and recommendations for clients

-Secret clearance

-HS diploma or GED

-Security+ Certification or IAT Level II Certification

Additional Qualifications:

-1+ years of experience with CCRI process and scoring

-Experience with VMware, Cisco networking or switching devices, networks architecture, databases, TCP/IP, VLANs

-Experience with VRAM, CMARS, and eMASS

-Experience with the US Navy

-BA or BS degree in IT, Cyber, or Engineering field preferred; MA or MS degree in IT, Cyber, or Engineering field a plus

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

NMC

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.