Information Systems Security Officer, Mid in Arlington, VA at Booz Allen Hamilton Inc.

Date Posted: 3/22/2018

Job Snapshot

Job Description

Job Number: R0019920

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Information Systems Security Officer, Mid

Key Role:
Work as an Information Systems Security Officer (ISSO) to support DoD clients. Coordinate closely with the ISSM to monitor systems and environments of operation. Work with system owners to maintain Risk Management Framework (RMF) artifacts, including managing the system change management process and assessing the security impact of proposed changes. Coordinate with system owners to ensure compliance with DoD RMF security control guidelines.

Basic Qualifications:
-3 years of experience with providing security guidance and IS validation using National Institute of Standards and Technology (NIST) RMF, DoD, and local security policies
-Experience with providing configuration management (CM) for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO)
-Experience with reviewing system security audit logs and leveraging network scanning software to perform vulnerability or risk assessment analysis for the RME, including maintaining vulnerability scanning tool compliance, such as HBSS or ACAS and patch management (IAVM) to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, managing system changes, and assessing the security impact of those changes
-Experience in interfacing with information assurance managers, including preparing and reviewing documentation, such as Systems Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and Plan of Actions and Milestones (POA&Ms)
-Ability to manage Cybersecurity activities that must be performed by system owners, including annual refresher CS training or awareness briefings or requires a personal interface, including incident response or data transfers
-Ability to support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoD RMF
-Top Secret clearance
-BA or BS degree
-DoD Manual 8570, 01-M for IAM II, CISM, CISSP or Associate, or GSLC Certification

Additional Qualifications:
-Experience with using the NIST Security Content Automation Protocol (SCAP) tool or DoD STIG Viewer application
-Experience with the Enterprise Mission Assurance Security Solution (eMASS)
-BA or BS degree in Information Systems, IT Information Security, or related field
-Microsoft or Cisco Certifications

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

#LI-AH1, AFH16, AFH26, CB15, CJ1, DH1, GD15, MPPC, TMJ16

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.