Cybersecurity Policy Analyst

The Challenge:

Warnings about cyber threats are everywhere and the constantly evolving nature of these threats can make understanding them seem overwhelming to the Navy.  In all of this “cyber noise”, how can these organizations understand their risks and how to mitigate them? The answer is you – build your knowledge as an information security risk specialist who knows how to break down complex threats into manageable plans of action.

As an information security risk specialist on our team, you’ll serve as the Cybersecurity lead overseeing operations and maintenance security activities for a Network Operations Center supporting the US Marine Corps. You'll work with a team of system administrators, network administrators, database administrators, help desk agents, and testers to ensure system security and compliance. Leverage knowledge of system administration and networking technologies, review system security logs, and perform network traffic analysis to identify and remove potential threats against the network.  You'll monitor all infrastructure hardware using vulnerability assessment tools, including ACAS and HBSS, work with the NOC team to address and correct all findings, and document compliance with STIGs, IAVMs, and USMC Operational Directives (OPDIRS). Support A&A and C&A packages and its maintenance and upkeep using RMF and DIACAP frameworks, evaluate and mitigate security vulnerabilities, respond to security incidents, and produce various IA reports and compliance metrics. You'll work with Navy and Marine Corps leadership to discover their cyber risks, understand applicable policies, and develop a mitigation plan. Then, you’ll help your team guide your client through a plan of action with presentations, white papers, and milestones.

Empower change with us.

You Have:

-7 years of experience with developing and maintaining DIACAP and RMF packages and documentation

-3 years of experience in secure network and system design, analysis, procedure/test generation, test execution, and implementation of computer/network security

-Experience working in Marine Corps Compliance and Authorization Support Tool (MCCAST)

-Experience with maintaining assets and software packages in a Cloud or large virtualized environment

-Experience in working with and enforcing DoD directives, STIGS, and IAVMs

-Experience with system administration, operations, procedures, and troubleshooting

-Secret clearance

-BA or BS degree in CS, Computer Engineering, Computer Information Systems, Engineering, MIS, Math, or Physics

Nice to have:

-Masters degree in CS, Computer Engineering, Computer Information Systems, Engineering, MIS, Math, or Physics

-CISSP, CISM Certification 

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

  • Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.
  • Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
  • Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.
  • Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.
  • Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.