Booz Allen Hamilton Cybersecurity Policy and Compliance Senior Manager in McLean, Virginia

Cybersecurity Policy and Compliance Senior ManagerinMcLean, VAatBooz Allen Hamilton Inc.

Date Posted:7/13/2018

ApplyApplyNot ready to Apply?

×Join Our Talent Network

Join us. The world can’t wait.

The Booz Allen Talent Network is your opportunity hub—a chance to learn about what we do, how we do it, and how you can help.

Tell us what interests you. We’ll send you:

  • Job alerts that match your passions

  • Details about relevant upcoming events

  • Information about our work in the news

  • And more

Empower change with us. Start by joining the Network.

Privacy Policy

Cookie Policy

Terms and Conditions

  • {{ err }}

Thanks for joining our Talent Network, {{vm.userName}}

This service is currently unavailable. Please try again at a later time.

*Required

By joining our Talent Network you have not officially applied to a position.

By joining our Talent Network you have not officially applied to a position.

Thanks for joining our Talent Network, {{ vm.userName }}

By joining our Talent Network you have not officially applied to a position. To apply for this position, please click the continue button.

Continue

Redirect in {{vm.counter}}

Share With:

Job Snapshot

  • Employee Type:

Full-Time

  • Location:

McLean, VA

  • Job Type:

Management

  • Experience:

Not Specified

  • Date Posted:

7/13/2018

Job DescriptionJob Number: R0032075

Cybersecurity Policy and Compliance Senior Manager

Key Role:

Serve as a leader within the corporate information services division, establish credibility, and maintain excellent working relationships with groups involved with security and compliance matters, including information security, legal, business development, internal audit, risk, physical security, market facing delivery teams, networking, and systems. Build and influence security compliance as a core competency throughout the organization, including internal, partners, and vendors. Drive continual process improvement and innovation with key stakeholders in the security assessment process, control documentation, and enabling business teams to succeed. Communicate with key stakeholders to track progress and performance, monitor process effectiveness, and regularly connect and present to executive leadership teams. Deliver recommendations and risk interpretations in a clear, concise and audience appropriate manner. Develop and deliver risk investigations and assessment processes and drive policy definition, updates, and policy violation measures.

Basic Qualifications:

-10+ years of experience with information security, compliance, audit, risk management, or consulting

-10+ years of experience with supporting complex business risk, trade-offs, and offering expert advise

-Experience with defining certification roadmaps based on requirements, compliance documentation, and ensuring that committed assessments are delivered on schedule, and in performing and participating in technical assessments in direct support of a major compliance effort

-Experience with developing, reviewing, and assessing Information Assurance and other related IT and data policies for large, and international enterprises

-Knowledge of relevant security compliance standards, including NIST 800-53, ISO 27001, PCI DSS, SOX, and SOC standards

-Knowledge of modern computing platforms, including IaaS, SaaS, and PaaS Cloud computing services, including software development life cycles and modern Agile delivery methodologies

-BA or BS degree

-DoD 8410 or 8570 IAM Level III Certification

Additional Qualifications:

-Experience in working directly with auditors

-Experience with generating automated metrics to measure IT process effectiveness and consistency

-Experience with performing technical assessments and audits of network, operating systems, and application security

-Experience with working successfully in a very fast-paced, results-oriented environment

-Experience with delivering IT process improvement projects within large organizations

-Experience with monitoring and automating security controls

-Experience with IT program or project management, IT auditing, and control framework development and implementation

-Knowledge of the design and effectiveness of IT controls

-Ability to lead and drive positive change in an organization

-Possession of excellent team leadership and interpersonal skills

-Possession of excellent oral and written communication skills

-BA or BS degree in CS, Information Systems Management, or Mathematics

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.