Cybersecurity Policy and Compliance Analyst in Annapolis Junction, MD at Booz Allen Hamilton

Date Posted: 2/28/2018

Job Snapshot

Job Description

Job Number: R0024004

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.

Cybersecurity Policy and Compliance Analyst

Key Role:
Serve as an Assessment and Authorization (A&A) Subject Matter Expert (SME) using knowledge of DIACAP and the Risk Management Framework (RMF). Design, develop, and recommend integrated security system solutions that will ensure proprietary and confidential data and systems are protected. Conduct regular audits supporting FISMA reviews to ensure systems are being operated securely and computer security policies and procedures are being implemented, as defined in security plans. Prepare materials for computer security education and awareness programs and respond to queries and requests for computer security information and reports. Perform ongoing A&A activities in support of the program by developing and maintaining A&A packages using the Enterprise Mission Assurance Support Service (eMASS). Provide technical knowledge and analysis when performing Vulnerability Assessment leveraging tools, including ACAS and provide implementation guidance on a way forward regarding vulnerabilities, such as analyzing the development of IAVA and STIG Plan of Action and Milestones (POA&Ms) and mitigations. Ensure tracking of OPORD and task order compliance and process change requests supporting A&A package amendments.

Basic Qualifications:
-2+ years of experience with executing A&A of DoD systems
-Experience with the DIACAP or RMF
-Secret clearance required
-BA or BS degree
-DoD 8570 or 8410 IAT II Certification, including CCNS Security, CSA+, GICSP, GSEC, Security+ CE, or SSCP

Additional Qualifications:
-Experience with DoD Cybersecurity policies, directives, and STIGs
-Experience with leveraging tools, including ACAS, CMRS, and eMASS preferred
-Experience with assessing organizational risks and recommending mitigation strategies
-Knowledge of NIST 800 series publications, including 800-30, 800-37, 800-53, and 800-53a

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.