IA Specialist/Cybersecurity Analyst, Mid in Washington, DC at Booz Allen Hamilton Inc.

Date Posted: 10/28/2018

Job Snapshot

Job Description

Job Number: R0036407

IA Specialist/Cybersecurity Analyst, Mid

Key Role:

Support the development and submission of DIACAP accreditation packages and Risk Management Framework (RMF) Assessment and Authorization (A&A) packages for the U.S Naval Observatory (USNO). Assist USNO with the accreditation or authorization of scientific mission applications under RMF. Assist with and lead coordination with USNO staff to create accreditation or system authorization packages, and submit them for approval using Enterprise Mission Assurance Support Service (eMASS). Support the creation and development of key DIACAP artifacts, such as C&A plans, hardware lists, software lists, network diagrams, ports, protocols and services diagrams, and contingency plans. Support the creation and development of key RMF artifacts, including the system categorization form, Security Assessment Plan (SAP), Security Assessment Report (SAR), Risk Assessment Report (RAR) and continuous monitoring strategy. Perform technical testing of USNO applications, systems and networks to evaluate levels of compliance with Security Technical Implementation Guides (STIG) and Security Requirements Guides (SRG), and assisting USNO Information Assurance or Cybersecurity team in preparing for Cybersecurity inspections, including enterprise level inspections, such as Command Cyber Readiness Inspection (CCRI) and Cybersecurity Inspections (CSI). Implement security controls and hardening on various operating systems in accordance with DoD Security Technical Implementation Guides (STIG), Security Requirements Guides (SRG), DIACAP IA Controls and RMF Security Controls.

Basic Qualifications:

-3+ years of experience with information assurance, Cybersecurity, Cyber policy and compliance, Cybersecurity testing and analysis, development and submission of C&A packages under DIACAP, and authorization packages under RMF

-3+ years of experience with conducting vulnerability assessments using both automated and manual tools and guidance, including Security Technical Implementation Guidance (STIG), and Security Requirements Guidance (SRG)

-Knowledge of DIACAP and RMF accreditation processes, Enterprise Mission Assurance Support Service (eMASS), DoD STIG and SRG, and DoD and Navy Cybersecurity policies and requirements

-Ability to work independently to certify and accredit DoD information systems and networks

-Secret clearance

-BA or BS degree in Electrical, Electronic or Computer Engineering, or CS or 6+ years of experience with Cybersecurity in lieu of a degree

-Security+ Certification

Additional Qualifications:

-Experience with performing vulnerability scans using the Assured Compliance Assessment Solution (ACAS)

-Experience with McAfee Host Based Security System (HBSS) and any associated Point Products

-Experience as a system administrator for Windows, Red Hat Linux (RHEL), Hewlett Packard Unix (HP-UX), Macintosh, or other UNIX-based operating systems

-Knowledge of Windows Server 2008 R2, Windows Server 2012, Windows 7, Windows 10, Red Hat Linux (RHEL) 5,6, and 7, Macintosh OSX, and HP-UX operating systems

-Ability to navigate the management interface of network technologies, including firewalls, router, and switches

-DoD 8570 CompTIA Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.