Vulnerability Automation Engineer in Baltimore, MD at Booz Allen Hamilton Inc.

Date Posted: 4/9/2018

Job Snapshot

Job Description

Job Number: R0020615

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.

Vulnerability Automation Engineer

Key Role:

Monitor, analyze, and detect Cyber events and incidents within information systems and networks. Consult on integrated, dynamic Cyber defense and leverage Cybersecurity solutions to administer Cybersecurity operational services, including intrusion detection and prevention, situational awareness of network intrusions, security events and data spillage, and incident response actions. Participate in testing, deploying, and administering the infrastructure hardware and software which are required to effectively manage the organization’s Cybersecurity operational services.

Basic Qualifications:

-Experience with system and application security threats and vulnerabilities, including buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code

-Experience with vulnerability assessment or penetration testing

-Experience with vulnerability management systems, including Nessus, Retina, Qualys, or Tripwire and anti-malware systems, such as Symantec, McAfee, Sophos, Cisco AMP, Carbon Black, or Cylance

-Experience with conducting security assessments using an industry framework, including NIST 800-53/82, DOE C2M2, and ISO 27000 series

-Knowledge of network security architecture concepts, including topology, protocols, components, and principles, such as application of defense-in-depth

-Knowledge of IA principles and organizational requirements relevant to confidentiality, integrity, availability, authentication, and non-repudiation

-Knowledge of common attack vectors, defense-in-depth techniques, and current threats and trends in information security

-Public Trust clearance

-BA or BS degree and 2+ years of experience with security threats

Additional Qualifications:

-Experience with SQL Server and Oracle database security hardening, including Mainframe DB2 a plus

-Experience with network device security hardening, including Cisco routers, switches, firewalls, Palo Alto, Citrix NetScaler, and Juniper SA

-CompTIA Security+ CE (Sec+ CE), Certified Information Security Manager (CISM) Certification, Certified Information Systems Security Professional (CISSP), or SANS GIAC Security Essentials (GSEC)


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Public Trust clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.