Risk Analyst Risk Analyst …

Booz Allen Hamilton Inc.
in San Diego, CA, United States
Permanent, Full time
Be the first to apply
Booz Allen Hamilton Inc.
in San Diego, CA, United States
Permanent, Full time
Be the first to apply
Risk Analyst

The Challenge:

Everyone knows security needs to be baked in to a system architecture and that we need to understand Cybersecurity risks to systems instead of just being compliant to a checklist, but you actually know how to bake it in and assess risks to a complex system. You can identify and implement ways to harden systems and assess Cybersecurity risk. What if you could use your Cyber engineering skills to provide Cybersecurity solutions for Navy and DoD systems? Were looking for a Cybersecurity engineer and risk analyst who can help create solutions for the Navy that will stand up to even the most advanced Cyber threats.

As a Cybersecurity engineer and risk analyst on our project, youll analyze the Cyber posture of complex Navy systems, apply critical expertise to mitigating Cyber risk, and develop solutions to ensure Navy programs support mission critical operations and deliver needed Cybersecurity functionality. Youll work with our team of experts to identify the right mix of tools and techniques to translate your client's needs and future goals into a plan that will enable secure and effective solutions. We need to come up with the best solution, so youll investigate new techniques, break free from the legacy model, and go where the industry is going. As a team, well take a critical approach to Cybersecurity and systems engineering, providing alternatives and customizing solutions to maintain a balance of security and mission needs. This is a chance to learn from a team of experts as you make a difference in the security of the Navy warfighter. Your contributions will help customers overcome their most difficult challenges by integrating secure practices like risk management and mitigation, defense-in-depth, data analysis, and Cyber continuous monitoring. Youll be able to gain experience in Command, Control, Communications, Computers, and Intelligence (C4I), Cyber engineering, enterprise networks and systems, Cyber test and evaluation, and Cyber risk assessment while building peace of mind in a critical infrastructure. Join our team as we improve the warfighters ability to complete critical missions through Cybersecurity.

Empower change with us.

You Have:

  • 7+ years of experience with DoD assessment and authorization (A&A) processes and Cybersecurity engineering
  • 7+ years of experience in vulnerability assessment and scanning tools, including Assured Compliance Assessment Solution (ACAS), and assessing system compliance with security controls
  • 7+ years of experience with Security Technical Implementation Guides (STIG) and vulnerability remediation
  • 2+ years of experience with executing the Risk Management Framework (RMF)
  • 2+ years of experience with the Enterprise Mission Assurance Support Service (eMASS) and developing DoD authorization artifacts/documentation
  • Ability to develop and lead the development of DoD and Navy security A&A documentation and artifacts
  • Ability to help a customer improve the Cybersecurity risk posture of their program or system
  • Ability to perform system vulnerability scanning and develop mitigation recommendations
  • Secret clearance
  • HS diploma or GED
  • Security+ CE or IAT Level II Certification

Nice If You Have:

  • 7+ years of experience with Navy A&A processes and Cybersecurity engineering
  • 7+ years of experience with processing an Authorization to Operate (ATO) for a Navy program
  • Experience with leading teams providing Cybersecurity engineering, A&A, or Cybersecurity risk mitigation services
  • Experience with developing risk mitigations for programs with high security risks
  • Experience with NIST 800-53 security controls and developing requirements to satisfy controls
  • TS/SCI clearance
  • BS degree preferred; MS degree a plus
  • CISSP Certification
  • Navy Qualified Validator (NQV) Certification

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our peoplethats Booz Allen cyber. When you join Booz Allen, well help you develop the career you want.

Competitions From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, weve got plenty of chances for you to show off your skills.

Paid Research Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

Cyber University CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhereincluding your phoneand certification exam prep guides that include practical assessments to prepare you for your exam.

Academic Partnerships In addition to our tuition reimbursement benefit, weve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurityfully funded without a tuition cap.