Cybersecurity Validator/Security Control Assessor in Norfolk, VA at Booz Allen Hamilton Inc.

Date Posted: 4/13/2018

Job Snapshot

Job Description

Job Number: R0008913

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Cybersecurity Validator/Security Control Assessor

Key Role:

Provide Cybersecurity testing and security control validation and assessment of technical and non–technical security features implemented on a system or network in support of the DoD Risk Management Framework (RMF) Assessment and Authorization (A&A) process and legacy DoD Information Assurance Certification and Accreditation (DIACAP) for a Department of Navy (DoN) program. Validate security configurations to ensure they are implemented in accordance with DoD Cybersecurity policies, requirements, and directives, including compliance with Security Technical Implementation Guidance (STIG), Security Requirements Guides (SRGs), and checklists. Leverage automated testing tools and manual test methodologies to identify system vulnerabilities and noncompliance.


Basic Qualifications:

-3+ years of experience with Cybersecurity

-3+ years of experience with authoring comprehensive DoD DIACAP packages independently

-3+ years of experience with performing technical security assessments, including vulnerability assessments, security control reviews, and system configuration checks to support DIACAP

-3+ years of experience with planning and executing comprehensive Cybersecurity test events, including identifying applicable security controls, analyzing assessment procedures, and identifying and using required tools, including Retina, Nessus, Assured Compliance Assessment Solution (ACAS), or Security Content Automation Protocol (SCAP)

-3+ years of experience in working with federal or DoD government implementation of the NIST RMF for A&A

-Experience with performing manual testing methods and procedures using STIGs, SRGs, and checklists

-Secret clearance required

-AA or AS degree

-DoD 8140 IAM or IAT Certification, including Security+ CE, CISM, CISSP, or CASP

-Navy Validator Appointment, including NQV, FQNV, or IQNV required


Additional Qualifications:

-3+ years of experience with supporting Navy commands in the implementation or assessment of Cybersecurity controls or legacy DIACAP implementation

-3+ years of experience in working with NIST RMF for A&A

-Experience with eMASS

-Experience with performing Cybersecurity risk assessments and mitigation

-Experience with Microsoft Excel

-Experience with testing Navy systems

-Experience with Cloud and virtual environment security

-Experience with Linux RedHat

-Fully Qualified Navy Validator (FQNV) Legacy Appointment


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.