Information Assurance Engineer in Charleston, SC at Booz Allen Hamilton Inc.

Date Posted: 10/29/2018

Job Snapshot

Job Description

Job Number: R0040525

Information Assurance Engineer

Key Role:

Provide Cybersecurity and privacy analysis assistance throughout the security assessment and compliance life cycle processes. Monitor Cybersecurity and privacy policies, programs, compliance artifacts, and standards continuously to support government and industry security compliance, systems accreditation, and management. Support the administration of the documentation, validation, and accreditation processes necessary to ensure systems meet security and privacy requirements. Conduct an accurate evaluation of an environment’s security posture to obtain and maintain an authority to operate (ATO).

Basic Qualifications: 

-Experience with developing documentation to support accreditation efforts 

-Experience with implementing and maintain security controls across multiple environments

-Experience with the installation, configuration, testing, deployment, and operation and maintenance (O&M) of enterprise-wide network-based scanning tools, including Nessus to support compliance testing and continuous monitoring

-Knowledge of Windows servers, including Active Directory and GPO

-Knowledge of Linux servers and the hardening process

-Knowledge of information security, including systems and network security

-Ability to obtain a security clearance

-BA or BS degree 

Additional Qualifications: 

-1+ years of experience with RMF, DIACAP, STIGs, HBSS, and ACAS, including developing documentation

-Experience with implementing and executing security engineering practices in the system or software development life cycle (SDLC) process and designing, including developing and using host-based and network-based scanning tools

-Knowledge of NIST SP 800-53, FIPS 199, NIST 800-34, Risk Management Framework, FISMA, and configuration management

-Ability to work through challenging security requirements and maintain compliance

-Possession of excellent organizational and technical writing skills 

-Security+ Certification

-CISSP-Information System Security Engineering Professional and CISSP-ISSEP Certifications

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.