IA Specialist/Cybersecurity Analyst, Junior in Washington, DC at Booz Allen Hamilton Inc.

Date Posted: 9/11/2018

Job Snapshot

Job Description

Job Number: R0037582

IA Specialist/Cybersecurity Analyst, Junior

Key Role:

Support the development and submission of DIACAP accreditation packages and Risk Management Framework (RMF) Assessment and Authorization (A&A) packages for a US Navy client. Assist the client with the accreditation or authorization of scientific mission applications under RMF. Assist and lead coordination with client staff to create accreditation or system authorization packages and submit them for approval using the Enterprise Mission Assurance Support Service (eMASS). Support the creation and development of key DIACAP artifacts, including C&A plans, hardware lists, software lists, network diagrams, ports, protocols and services diagrams, and contingency plans. Support the creation and development of key RMF artifacts, including the system categorization form, Security Assessment Plan (SAP), Security Assessment Report (SAR), Risk Assessment Report (RAR), and continuous monitoring strategy. Perform technical testing of client applications, systems, and networks to evaluate levels of compliance with Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs) and assist the client’s Information Assurance (IA) or Cybersecurity team with preparing for Cybersecurity inspections, including enterprise-level inspections, such as Command Cyber Readiness Inspection (CCRI) and Cybersecurity Inspections (CSIs). Implement security controls and hardening on various operating systems in accordance with DoD STIGs, SRGs, DIACAP IA controls, and RMF security controls, report directly to the senior information system security engineer (ISSE), and support ISSE functions.

Basic Qualifications:
-3+ years of experience with information assurance, Cybersecurity, Cyber policy and compliance, Cybersecurity testing and analysis and the development and submission of C&A packages under DIACA and authorization packages under RMF
-3+ years of experience with conducting vulnerability assessments using both automated and manual tools and guidance, including STIGs and SRGs
-Knowledge of DIACAP and RMF accreditation processes, eMASS, DoD STIGs and SRGs, and DoD and Navy Cybersecurity policies and requirements
-Ability to work independently to certify and accredit DoD information systems and networks
-Secret clearance
-BA or BS degree in EE, Electronic Engineering, Computer Engineering, or CS or 6+ years of experience with Cybersecurity in lieu of a Bachelor’s degree
-Security+ Certification

Additional Qualifications:
-Experience with performing vulnerability scans using the Assured Compliance Assessment Solution (ACAS)
-Experience with McAfee Host Based Security System (HBSS) and any associated point products
-Experience as a system administrator for Windows, Red Hat Linux (RHEL), Hewlett Packard UNIX (HP-UX), Macintosh, or UNIX-based operating systems
-Knowledge of Windows Server 2008 R2, Windows Server 2012, Windows 7, Windows 10, Red Hat Linux (RHEL) 5,6, and 7, Macintosh OSX, and HP-UX operating systems
-Ability to navigate the management interface of network technologies, including firewalls, router, and switches
-DoD 8570 CompTIA Certification

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.