Job Number: R0232788 Information Systems Security EngineerThe Opportunity:Are you looking for an opportunity to combine your technical skills with big picture thinking to make an impact in defending our country's infrastructure You understand your customer's environment and how to develop the right systems for their mission. Your ability to translate real-world needs into technical specifications makes you an integral part of delivering a customer-focused engineering solution. As a leader in systems engineering, we're looking for you to solve complex challenges and shape cybersecurity best practices by leading risk management tasks. Your customer will trust you to not only design and develop these systems, but also evolve them with advanced technology solutions. Share your expertise through leadership and mentoring, while broadening your skillset into areas like defensive cybersecurity. Grow your skills by merging knowledge of offensive cybersecurity to create a solid understanding of building better system defensives. Join our team and create the future of innovation for positioning our customer's posture in cyber intelligence. Join us. The world can't wait. You Have: 3+ years of experience leading and implementing the Assessment and Authorization (A&A) process under Risk Management Framework (RMF) for new and existing information systems 3+ years of experience reviewing assessment reports and assisting projects in identifying security risks, including technical and non-technical, and developing effective mitigation strategies, including Plan of Action and Milestones 3+ years of experience with security architecture evaluations, guidance development, and troubleshooting 3+ years of experience working with cloud providers, including Amazon Web Services (AWS) Experience with cybersecurity tools, including Fortify Static Code Analyzer, STIGs, SCAP, ACAS, Xacta, eMASS, CSAM, Vulnerability Remediation Asset Manager (VRAM), Elasticsearch, Kibana, Logstash, or Host-Based Security System Experience in assisting with developing and executing Security Test Procedures (STPs), System Security Plans (SSPs), RMF accreditation artifacts, and system-level policies and procedures Knowledge of RMF, NIST SP 800-53 Security and Privacy Controls, DoD cybersecurity policies, FISMA, and FEDRAMP TS/SCI clearance Bachelor's degree DoD 8570 IAT Level II Certification such as CompTIA Security+ Certification Nice If You Have: Experience identifying information protection needs for an IS and network environment Experience conducting penetration testing Experience working with Containers or Virtual Machines Experience with Agile methodologies Ability to manage security applications within cloud environments such as AWS, Azure, or Google Cloud Ability to develop scripts, including Python or similar languages, to test systems or automate security processes Bachelor's degree in CS or Cybersecurity AWS or Cloud Provider Certification DoD 8570 IAT or IAM Level III Certification such as CISSP Certification Clearance:Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. CompensationAt Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that
