This site uses cookies. To find out more, see our Cookies Policy

Cloud Engineering and Platforms Information Systems Security Officer in Herndon, VA at Booz Allen Hamilton Inc.

Date Posted: 12/30/2018

Job Snapshot

  • Employee Type:
  • Location:
    Herndon, VA
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:

Job Description

Job Number: R0040814

Cloud Engineering and Platforms Information Systems Security Officer

Key Role:
Serve as the information systems security officer (ISSO) for a multitenant, Cloud-based platform. Analyze and review documentation, including systems security plans (SSPs), risk assessment reports, certification and accreditation (C&A) packages, and plans of actions and milestones (POA&Ms). Analyze the preparation of a system security plan (SSP) in accordance with the applicative governing directive for systems and ensure all networks are in maintained according to their respective SSPs. Review and validate security documentation to ensure necessary security controls are in place and operating as intended. Review and maintain vulnerability scanning tool compliance and reporting to ensure compliance with all applicable directives. Stay informed of any changes to security policies and landscape and ensure that any training or other activities are undertaken to maintain security posture and compliance. Update documentation and specifications of compliance requirements and control inheritance across system products and components.

Basic Qualifications:
-3+ years of experience as an ISSO, including authority to operate (ATO) FedRAMP package development
-Experience with Federal Information Security Management Act (FISMA) activities, including system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, POA&Ms, and training requirements
-Experience with providing operational security guidance and IS validation using the National Institute of Standards and Technology (NIST), risk management framework (RMF), and local security policies for application infrastructure
-Experience with Cloud-based infrastructure and DevSecOps principles and practices
-Ability to obtain a security clearance
-BA or BS degree

Additional Qualifications:
-Experience with ATO package development and control inheritance on FedRAMP-approved Cloud service providers, including AWS
-Experience with architecting or providing security guidance on Cloud-based multitenant platforms or PaaS/IaaS environments
-Experience with Cloud-based networking and infrastructure, including AWS
-Experience with Linux, including RHEL
-Knowledge of security controls and monitoring in container-based environments
-Ability to adapt and adjust risk assessments and prioritizations quickly according to changing technologies or requirements
-Active Public Trust clearance
-BA or BS degree in CS, Information Systems Management, Cybersecurity, or Information Assurance

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.