Booz Allen Hamilton Cybersecurity Policy and Compliance Analyst in Warner Robins, Georgia

Cybersecurity Policy and Compliance AnalystinWarner Robins, GAatBooz Allen Hamilton Inc.

Date Posted:4/26/2018

ApplyApplyNot ready to Apply?

×Join Our Talent Network

Join us. The world can’t wait.

The Booz Allen Talent Network is your opportunity hub—a chance to learn about what we do, how we do it, and how you can help.

Tell us what interests you. We’ll send you:

  • Job alerts that match your passions

  • Details about relevant upcoming events

  • Information about our work in the news

  • And more

Empower change with us. Start by joining the Network.

Privacy Policy

Terms and Conditions

  • {{ err }}

Thanks for joining our Talent Network, {{vm.userName}}

This service is currently unavailable. Please try again at a later time.


By joining our Talent Network you have not officially applied to a position.

By joining our Talent Network you have not officially applied to a position.

Thanks for joining our Talent Network, {{ vm.userName }}

By joining our Talent Network you have not officially applied to a position. To apply for this position, please click the continue button.


Redirect in {{vm.counter}}

Share With:

Job Snapshot

  • Employee Type:


  • Location:

Warner Robins, GA

  • Job Type:

Strategy - Planning

  • Experience:

Not Specified

  • Date Posted:


About Us

At Booz Allen, we harness our collective ingenuity to solve our clients' toughest management and technology problems. We work with governments, Fortune 500 corporations, and not-for-profits around the globe, in industries ranging from defense to health, energy to international development. We believe there is no product, code, or strategy that can create progress-only people can. That's why for more than 100 years we've empowered our team: over 24,000 dreamers, drivers, and doers who work together to change the world.

Job DescriptionJob Number: R0025289

Cybersecurity Policy and Compliance Analyst

Key Role:

Serve as a Cybersecurity subject matter expert for Air Force clients in a fast-paced, demanding environment. Develop, review, and critique Assess and Authorize (A&A) documentation in compliance with DoD Cybersecurity policy and agency guidance, including DoD 8500 series, CNSS 1253, and NIST special publications. Assess program security compliance, support program briefs, and coordinate and compile program security documentation for various programs. Provide A&A and Cybersecurity support, including Risk Management Framework (RMF) for DoD IT and Platform IT (PIT), assess compliance with security technical implementation guides (STIGs), review automated scans, security test and evaluation (ST&E), vulnerability assessments, and computer security responses, and create and manage RMF packages using Enterprise Management Assurance Support Service (eMASS). Interact with clients to perform technical audits. Brief client leadership on technical vulnerabilities in support of the government client and prepare brief slides and summary of findings and analyses.

Basic Qualifications:

-3 years of experience with DIACAP or NIST Risk Management Framework (RMF) policies, including continuous monitoring, information system security policies, standards, and procedures

-3 years of experience with preparing DIACAP or RMF packages and supporting documentation, including DoD Authorization and Accreditation (A&A) process and standards

-1 year of experience with Risk Management Framework (RMF), including system package development and processing

-Experience with performing Cybersecurity activities supporting software and system requirements, design, development, testing, or sustainment

-Experience with supporting DoD programs

-Experience with implementing DoD Cybersecurity requirements and analyzing policies and procedures, including assessment and authorization activities

-Experience with conducting vulnerability and compliance assessments and risk mitigation

-Secret clearance

-AA or AS degree

-Security+ CE Certification

Additional Qualifications:

-Experience with secure configuration or hardening of DoD information systems

-Experience with Red Hat Enterprise Linux (RHEL) and Microsoft Windows Server or Workstation

-Experience with system and network vulnerability analysis, risk assessment and risk mitigation analysis, including security test and evaluation (ST&E), contingency planning, and firewall policy, ports, and protocols

-Experience with Retina, Nessus, SCAP Compliance Checker, STIGs, hardening systems, and applying IA controls

-Knowledge of Avionics systems, satellite ground systems, including satellite communications, and satellite operations

-Possession of excellent oral and written communication skills

-Top Secret clearance

-BA or BS degree or 5 years of experience with Cybersecurity

-CISM, CISSP, or CASP Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.