Enterprise Cybersecurity GRC Delivery Operations and Strategy Analyst

About The Position

Requirements

• 3+ years of experience in cybersecurity
• Experience fostering innovation to increase efficiency and mature or automate manual processes
• Experience with developing visualizations and reports to communicate key findings and recommendations to leadership and stakeholders
• Ability to transform raw data into visualized KPIs for tracking and dissemination
• Ability to support pilot programs, measuring their performance against defined success metrics and iterating on the solution prior to full-scale launch
• U.S. citizenship is required

Nice To Haves

• Experience in identifying problems, determining pragmatic solutions, identifying and obtaining needed resources, and executing with little supervision
• Knowledge of security controls and alignment to key regulations, such as National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, NIST SP 800-171, FedRAMP, Cybersecurity Maturity Model Certification (CMMC), or System and Organization Controls (SOC) 2
• Ability to move from raw data to defined metrics to concrete operational plans using tools and technologies, such as Databricks, Python, Structured Query Language (SQL), Tableau, or Power BI
• Ability to clearly articulate complex analysis to both technical and non-technical audiences
• Possession of excellent written and verbal communication skills

Responsibilities

• Define and support data and operational solutions for the Governance, Risk, and Compliance (GRC) team
• Ensure efficient delivery and operations for GRC, focusing on deep data analysis, defining and tracking key performance metrics (KPIs), and leading the operationalization of new and improved delivery processes
• Drive process redesigns across the organization and identify areas for improvement and automation
• Provide internal support to Booz Allen cybersecurity initiatives by conducting process redesigns and solutions to simplify and automate GRC-related goals, reducing cost as well as manual and cognitive load
• Guide GRC programs to focus on outcomes vs outputs in compliance deliverables through the lens of an engineering discipline
• Conduct in-depth quantitative analysis of delivery performance data, including efficiency, cost, speed, and reliability metrics
• Identify root causes of operational issues and uncover opportunities for improvement
• Identify and seek to improve operational Service Level Agreements (SLAs) while focusing on process redesign to improve speed both from the process and user perspectives
• Support your operational lead to design, define, and standardize the core KPIs and operational metrics used to measure the success of all delivery solutions
• Establish targets and benchmarks for operational metrics, ensuring alignment with overall business goals
• Lead and build trust with internal and external stakeholders through the journey of GRC modernization
• Foster strong working relationships with IT, operations, business areas, and other departments to drive a culture of security awareness and compliance

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program