Information Security Engineer in Suffolk, VA at Booz Allen Hamilton

Date Posted: 2/2/2018

Job Snapshot

Job Description

Job Number: R0013873

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Information Security Engineer

Key Role:

Function as a Security Control Assessor (SCA) representative as part of a team responsible for assessing and ensuring NIST 800–53 management, operation, technical, and privacy security control implementation compliance for large, complex DoD information systems. Provide support for executing full Assessment and Authorization (A&A) life cycle and risk management functions, measuring risk, examining system documentation, interviewing appropriate system and site personnel, testing system technical security configuration settings, reviewing scan results, and developing findings reports. Demonstrate subject matter expertise in NIST 800–53 security guidance and security control assessment (SCA) processes using the NIST Risk Management Framework (RMF).


Basic Qualifications:

-3+ years of experience with planning and executing comprehensive Cybersecurity test events, including identifying applicable security controls, analyzing assessment procedures, and identification and using required tools, including Assured Compliance Assessment Solution (ACAS), or Security Content Automation Protocol (SCAP)

-2+ years of experience with providing security guidance and IS validation using National Institute of Standards and Technology (NIST), RMF, DoD, and local security policies

-Experience with providing configuration management (CM) for information system security software, hardware, and firmware and coordinating changes and modifications as an ISSO, ISSM, or Security Control Assessor (SCA)

-Experience in interfacing with information assurance managers, including preparing and reviewing documentation, such as Systems Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and Plan of Actions and Milestones (POA&Ms)

-Knowledge of NIST 800-53, NIST 800–37, FIPS 199, NIST 800–34 Contingency Planning, POA&M management, and DoD continuous monitoring

-Top Secret clearance

-Industry Certification aligned to DoD Manual 8570, 01-M for IAT II


Additional Qualifications:

-Experience with DoD Cybersecurity policies, directives, and DoD STIGs

-Experience with leveraging ACAS, CMRS, and eMASS tools

-Experience with assessing organizational risks and recommending mitigation strategies

-BA or BS degree

-Industry Certification aligned to DoD Manual 8570, 01-M for IAM III, including Certified Authorization Professional (CAP) preferred

-Security+ CE Certification preferred


Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.