Cybersecurity Risk Analyst, Senior

Booz Allen Hamilton Using tomorrow’s technologies, Booz Allen advances the nation’s most critical civil, defense, and national security missions.

Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to government agencies.

In all of this cyber noise, how can these organizations understand their risks and how to mitigate them? The answer is you.

We need your knowledge as an information security risk specialist to help break down complex threats into manageable plans of action.

Read on to fully understand what this job requires in terms of skills and experience If you are a good match, make an application.

As an information security risk specialist on our team, you’ll work with Navy programs to discover their cyber risks, understand applicable policies, and develop a mitigation plan.

You’ll get technical, environmental, and personnel details from engineers and SMEs to assess the entire threat landscape.

Then, you’ll help your team guide your client through a plan of action with presentations, white papers, and milestones.

You’ll work on translating security concepts for your client so they can make the best decisions to secure their mission-critical networks and systems.

This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity, security and network tools, systems engineering, and data science.

What You’ll Work On :

• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management.
• Implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.
• Perform risk and vulnerability assessments in network, system, and application areas; leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise.

Join us. The world can’t wait.

You Have :

• 10+ years of experience working in Information Assurance, including experience managing all aspects of cybersecurity analysis for DoD systems.
• 5+ years of experience leading and executing cybersecurity assessments in support of Risk Management Framework (RMF) accreditation for Navy organizations, including performing cybersecurity compliance testing using Assured Compliance Assessment Solution (ACAS) and DoD Security Technical Implementation Guides (STIG).
• 3+ years of experience developing HBSS policies.
• Experience using Xacta for cybersecurity risk and compliance.
• Knowledge of Navy RMF execution, including the Navy RMF Process Guide (RPG), RMF Steps Standard Operation Procedures (SOP), eMASS Security Plan and artifact generation, eMASS workflows, National Institute of Standards and Technology (NIST) 800-53 security controls, cybersecurity risk assessment, and Plan of Actions and Milestones (POA&M) development actions.
• Ability to lead and manage cybersecurity efforts for Navy systems across all classification levels, including providing guidance and direction on cross domain solution accreditation processes.
• Ability to manage cybersecurity analysis, develop and implement cybersecurity test plans, and develop system security packages.
• Ability to devise and execute client deliverables, work independently, provide guidance on assessment tools, and lead the accomplishments of client tasks from inception to completion.
• TS / SCI clearance.
• Bachelor’s degree in Cybersecurity, Information Systems, or Engineering and 4+ years of experience in cybersecurity, information systems, or engineering, or 7+ years of experience in cybersecurity, information systems, or engineering in lieu of a degree.

Nice If You Have :

• Experience working with classified RMF processes.
• Master’s degree in Cybersecurity, Information Systems, or Engineering.
• Ability to obtain Navy Qualified Validator (NQV) Certification within 6 months of start date.
• DoD 8140 Certification.

Clearance :

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information;

TS / SCI clearance is required.

Compensation :

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being.

Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care.

Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.

Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements.

The projected compensation range for this position is $75,600.00 to $172,000.00 (annualized USD).

Identity Statement :

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model :

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment :

We’re an equal employment opportunity / affirmative action employer that empowers our people to fearlessly drive change no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

J-18808-Ljbffr