This site uses cookies. To find out more, see our Cookies Policy

Cyber Compliance and Risk Manager, Senior in Honolulu, HI at Booz Allen Hamilton Inc.

Date Posted: 3/14/2019

Job Snapshot

Job Description

Job Number: R0047571

Cyber Compliance and Risk Manager, Senior

Key Role:

Provide Cybersecurity and privacy analysis and consulting throughout the security assessment and compliance life cycle process under limited supervision. Maintain responsibility for planning and continuous monitoring of Cybersecurity and privacy policies, programs, compliance artifacts or standards to support government and industry security compliance, systems accreditation, and management. Administer the documentation, validation, and accreditation processes necessary to ensure systems meet security and privacy requirements. Consult on the assessment of the effectiveness of an organization’s IT security and privacy training program, including consulting on social engineering exercises to ensure training remains consistent with current Cybersecurity and privacy threats and policies and assisting with achieving full compliance with any and all laws and regulations. Provide Cybersecurity, privacy analysis, and consulting throughout the security assessment and compliance life cycle processes and administer the documentation, validation, and accreditation processes necessary to ensure systems meet security and privacy requirements. Maintain responsibility for planning and continuous monitoring of Cybersecurity and privacy policies, programs, compliance artifacts, and standards supporting government and industry security compliance, systems accreditation, and management. Consult on assessments of the effectiveness of an organization’s IT security and privacy training program, including consulting on social engineering exercises to ensure training remains consistent with current Cybersecurity and privacy threats and policies and assist with achieving full compliance with applicable laws and regulations.

Basic Qualifications:

-1+ years of experience with performing Cybersecurity technical security assessments, including vulnerability assessments, security control reviews, and system configuration checks to support the DoD Information Assurance Certification and Accreditation Process (DIACAP) or Risk Management Framework (RMF)

-1+ years of experience with planning and executing comprehensive Cybersecurity test events, including identifying applicable security controls, analyzing assessment procedures, and identifying and using required tools, including Retina, Nessus, the Assured Compliance Assessment Solution (ACAS), or the Security Content Automation Protocol (SCAP)

-Ability to perform manual testing methods and procedures using STIGs, SRGs, and checklists

-Active Secret clearance

-BA or BS degree

-Cyber Workforce 8570 IAM Level I Certification, including Security+, CE, GSLC, or CAP

Additional Qualifications:

-1+ years of experience with supporting Navy commands in the implementation or assessment of Cybersecurity controls or legacy DIACAP implementation

-1+ years of experience in working with NIST RMF for A&A

-Experience with eMASS

-Experience with performing Cybersecurity risk assessments and mitigation

-Experience with Microsoft Excel

-Experience with testing Navy systems

-Appointment as a Navy Qualified Validator (NQV)
 

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.