Cyber Risk Management Analyst
About the role
The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming. In all of this “cyber noise,” how can these organizations understand their risks and how to mitigate them? The answer is an information security risk specialist like you who will break down complex threats into manageable plans of action.
Responsibilities
- Work with our team's and client’s subject matter experts to provide cybersecurity and privacy analysis throughout the security assessment and compliance lifecycle process.
- Review technical details from product designers, client subject matter experts, and organizational partners to assess the entire threat landscape.
- Plan and develop continuous monitoring of cybersecurity and privacy policies, programs, compliance artifacts, and standards in support of security governance and industry security compliance, systems accreditation, and management.
- Work with your team to guide your client through a plan of action with presentations, white papers, and milestones.
- Translate security concepts, so the client can make the best decisions to secure their tools, data, and interconnections to partners.
Requirements
- 2+ years of experience in cybersecurity or information technology
- Experience with a current operating system or with network devices
- Experience assessing organizational risks and recommending mitigation strategies
- Ability to communicate clearly with technical and non-technical audiences and collaborate closely with teammates, including client personnel
- Ability to hold yourself and your teammates accountable to deadlines
Qualifications
- Top Secret clearance
- HS diploma or GED
Skills
- Experience with a wide range of current and legacy operating systems, including Windows, Linux, and different varieties of Unix
- Experience with network devices, including switches and routers
- Experience describing cloud environments, physical server rooms, and stand-alone enclaves
- Experience using and configuring vulnerability assessment tools
- Experience using Risk Management Framework (RMF) and eMASS or Xacta
- Knowledge of software development practices and tools
- Knowledge of cybersecurity principles, threat intelligence, penetration testing, Red Team, or incident response
Benefits
Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $61,900.00 to $141,000.00 (annualized USD).
Pay
Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $61,900.00 to $141,000.00 (annualized USD).
Schedule
Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.