Cybersecurity Risk Analyst

$60,300 - $137,000/Yr

Booz Allen Hamilton - San Diego, CA

posted about 1 month ago

Part-time,Full-time - Mid Level
San Diego, CA
Professional, Scientific, and Technical Services

About the position

As a Cybersecurity Risk Analyst at Booz Allen, you will play a crucial role in helping government agencies navigate the complex landscape of cyber threats. Your expertise will be essential in breaking down these threats into manageable plans of action, particularly for Navy programs. You will work closely with stakeholders, engineers, and subject matter experts (SMEs) to gather technical, environmental, and personnel details necessary for assessing the entire threat landscape. Your responsibilities will include developing comprehensive mitigation plans and guiding clients through the process with clear presentations, white papers, and milestones. This position offers a unique opportunity to actively engage in information security while enhancing your skills in cybersecurity, security and network tools, systems engineering, artificial intelligence, and data science. Your contributions will directly impact the military's cybersecurity posture, making this a vital role in protecting mission-critical networks and systems. In this position, you will be expected to support the execution of the Navy Risk Management Framework (RMF), including familiarity with the Navy RMF Process Guide, RMF Steps Standard Operating Procedures, and eMASS workflows. You will also perform cybersecurity compliance testing using standard tools and methodologies, ensuring adherence to National Institute of Standards and Technology (NIST) 800-53 security controls. Your ability to devise and execute a Security Assessment Plan (SAP) in accordance with Navy Security Control Assessor (SCA) risk assessment guidance will be critical. You will need to communicate complex technical challenges effectively to both technical and non-technical clients, ensuring that all stakeholders understand the risks and mitigation strategies involved.

Responsibilities

  • Support Navy Risk Management Framework (RMF) execution, including the Navy RMF Process Guide and RMF Steps Standard Operating Procedures.
  • Perform cybersecurity compliance testing using standard tools such as Assured Compliance Assessment Solution (ACAS) and DoD Security Technical Implementation Guides (STIG).
  • Gather technical, environmental, and personnel details from stakeholders, engineers, and SMEs to assess the threat landscape.
  • Develop comprehensive mitigation plans and guide clients through the process with presentations and white papers.
  • Devise and execute a Security Assessment Plan (SAP) in accordance with Navy Security Control Assessor (SCA) risk assessment guidance.
  • Analyze and communicate complex technical challenges to both technical and non-technical clients and stakeholders.

Requirements

  • 2+ years of experience with supporting Navy Risk Management Framework (RMF) execution.
  • 2+ years of experience with performing cybersecurity compliance testing using standard tools.
  • Experience with IT technologies and security, including networking and Linux.
  • Experience with cyber hardening, vulnerability management, scanning, assessment, and associated tools.
  • Ability to work independently and lead client tasks from inception to completion.
  • TS/SCI clearance required.
  • Bachelor's degree in a relevant field.
  • DoD 8140 Certification, including CompTIA Security+.

Nice-to-haves

  • Ability to brief senior leadership on complex cybersecurity issues.
  • Ability to apply subject matter expertise to system engineering and acquisition documentation.
  • Master's degree in a relevant field.
  • CISSP Certification.
  • Vendor Technology Certification, including CCNA or Linux+.
  • Ability to obtain Navy Qualified Validator (NQV) Certification within 6 months of hire.

Benefits

  • Health insurance
  • Flexible spending account
  • Tuition reimbursement
  • Retirement plan
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service