Cybersecurity Analyst, Mid in San Diego, CA at Booz Allen Hamilton Inc.

Date Posted: 11/6/2018

Job Snapshot

Job Description

Job Number: R0041872

Cybersecurity Analyst, Mid

Key Role:

Provide Cybersecurity Risk Management Framework (RMF) Assessment and Authorization (A&A) support for DoD systems, and serve as a Cybersecurity expert throughout all stages of the acquisition, systems engineering, and maintenance processes. Ensure system designs and implementations are consistent with DoD policies, requirements, and directives, including compliance with security technical implementation guidance (STIG), security requirements guides (SRGs), and checklists. Review, develop, and modify A&A documentation, analyze the architecture of IT systems for compliance with DoD policies, support and execute security test plans, and assess the Cybersecurity risk of IT systems, documenting them in formal risk assessments. Identify Cyber vulnerabilities and compliance issues, and track system POA&M updates and work with the programs to remediate existing vulnerabilities or develop mitigations that minimize impact, likelihood, or risks. Ensure traceability throughout A&A documentation, and register systems and analyze and enter implementation plans, continuous monitoring plans, security control compliance status, risk assessment reports (RARs), security assessment reports (SARs), and POA&Ms in the Enterprise Mission Assurance Support System (eMASS). Liaise with the client during team meetings and one-on-one on the completion of A&A documents.

Basic Qualifications:

-3+ years of experience with Cybersecurity

-Experience with managing and supporting RMF A&A activities, including conducting security control validation, performing risk assessments, and maintaining system authorization packages

-Experience with output from automated vulnerability assessment tools, including Nessus, assured compliance assessment solution (ACAS), and security content automation protocol (SCAP), and reviewing annual testing procedures using DoD STIGs, SRGs, and checklists

-Knowledge of the implementation of National Institute of Standards and Technology (NIST) Special publications, federal regulations, and DoD and Navy Cyber policies

-Ability to evaluate vulnerabilities and identify applicability to manage systems

-Active Secret clearance

-HS diploma or GED

-DoDI 8570 Certification for IA workforce

Additional Qualifications:

-Experience with supporting annual FISMA requirements

-Experience with system vulnerability management or security patch implementation

-Experience with the implementation of NIST special publications, federal regulations, and DoD policies

-Experience with eMASS

-BA or BS degree or 7 years of experience with relevant Cyber work

-Navy Qualified Validator Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.