Cybersecurity Policy and Compliance Analyst, Senior in John C. Stennis Space Center, MS at Booz Allen Hamilton Inc.

Date Posted: 8/24/2018

Job Snapshot

Job Description

Job Number: R0036396

Cybersecurity Policy and Compliance Analyst, Senior

Key Role:

Perform Risk Management Framework (RMF) Assessment and Authorization (A&A) responsibilities for various Naval commands. Develop the documentation, validation, and accreditation processes necessary to assure systems meet security and privacy requirements. Evaluate test results, analyze risk, and develop security assessment documentation to support accreditation decisions. Create risk mitigation strategy and ensure security configurations are maintained in accordance with DoD and Department of Navy mandated policies. Interpret RMF guidance from Authorizing Officials for clients and provide information and input for the preparation of accreditation packages. Assess the applicability of emergent vulnerabilities to individual systems. Provide advice and direction to program managers and other functional area SMEs representing Cybersecurity or IA policies and regulations.


Basic Qualifications:

-5+ years of experience with Cybersecurity or Information Assurance supporting DoD or federal programs

-3+ years of experience with performing Cybersecurity accreditation, including DIACAP C&A and RMF A&A activities, such as accreditation package development and security control testing or validation

-2+ years of experience with DoD STIGs, checklists, and Security Requirements Guides (SRGs)

-Experience with performing IT security assessments

-Experience with developing IT policy, guidance, or procedure documentation supporting Cybersecurity accreditation

-Experience with Cybersecurity principles, National Institute of Standards and Technology (NIST) Special Publications, federal regulations, and security standards

-Secret clearance required

-HS diploma or GED and 6 years of experience with Cybersecurity, system administration, or engineering or BA or BS degree in CS, Cybersecurity, or Engineering

-DoD Cybersecurity Workforce Certification, including Security+ or ability to obtain within 6 months of hire


Additional Qualifications:

-Experience with developing, managing, and securing Microsoft Windows, UNIX, or Linux platforms

-Experience with system security patch implementation, vulnerability management, and risk mitigation

-Experience with Cybersecurity best practices related to software and applications development, including Application Security Development STIG, software assurance, and secure coding standards

-Knowledge of Navy or DoD network environments and DoD and Department of Navy Cybersecurity policies

-Navy Qualified Validator (NQV) or ability to earn NQV rating within 6 months of hire


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

NMC

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.