Information Systems Security Engineer, Senior

The Opportunity:

You’ll support our DoD clients in the analysis of user's requirements, concept of operations documents, and high-level system security architectures to validate and test system requirements. You’ll guide users in formulating requirements, advise alternative approaches, conduct feasibility studies, and provide technical leadership for the integration of requirements, design, and technology. Incorporate new plans, designs, and systems into ongoing operations, develop technical documentation, and develop system architecture and system design documentation. You’ll guide system security development and implementation planning through the assessment or preparation of system security engineering management plans and system security integration and test plans. You’ll interact with the government regarding systems security engineering technical considerations and for associated problems, issues, or conflicts. Maintain responsibility for the technical integrity of work performed and deliverables associated with the systems engineering area of responsibility, and communicate with other program personnel, government overseers, and senior executives.

You’ll work with system owners to create and maintain Assessment and Authorization (A&A) documentation, including the system security plan, privacy plan, security control assessment, privacy control assessment, and any plans of action and milestones to support Authorization to Operate (ATO) decisions. You’ll capture and refine information security requirements for new systems or for enhanced functionality on existing systems and ensure that the requirements are effectively integrated into information systems throughout the System Development Life Cycle (SDLC). Implement information security standards and procedures, and provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Your technical expertise will be vital as you help customers overcome their most difficult challenges by integrating secure practices like endpoint-based detection, identity and access management, and advanced analytics. You’ll be able to broaden your skillset into areas like automation and orchestration of security events and zero trust methodologies, all while building peace of mind in critical infrastructure.

Empower change with us.

You Have:  

• 5+ years of experience supporting the planning and test analysis of the DoD Certification and Accreditation (C&A) process, including government C&A processes
• Experience managing and ensuring the technical integrity of the security system baseline over time, and continually updating it as various changes are imposed on the system during the lifecycle from development through deployment and operations and maintenance
• Experience providing input to A&A process activities and documentation, including Configuration Management Plan, Contingency Plan, Account Management Procedures, System Concept of Operations, and Security Questionnaire
• Experience with NIST 800-37, NIST 800-53, or Intelligence Community Directive 503 requirements
• Knowledge of Risk Management Framework (RMF)
• Knowledge of NESSUS and IAVA Compliance
• Ability to create, update, and maintain technical documentation and diagrams
• TS/SCI clearance with a polygraph
• Bachelor’s degree in Computer Engineering, CS, EE, Information Systems, or Mathematics and 14+ years of experience in information security, or 18+ years of experience in information security in lieu of a degree
• DoD 8570 IAT Level I Certification or higher, including A+ CE, Security+ CE, CCNA-Security, CISSP, Network+ CE, or SSCP Certification

Nice If You Have:   

• Experience with STE and STN requirements and remediation methodologies
• Experience with Windows, Unix, and Linux operating systems, including CentOS, Fedora, RedHat, and Window Server 2012 or newer
• Experience reviewing, identifying, tracking, and reporting team's auditing, vulnerabilities, and privileged accesses
• Experience with telecommunications equipment
• Knowledge of DoD Architecture Frameworks, and systems and network security, auditing, and user authentication
• Knowledge of SNMP, NETSEER, UAM, SEAR, Centrify, CASPORT, IAVA’s, CYBORGBUNNY, and STE/STN requirements and remediation methodologies
• Ability to work in an ambiguous, fast-paced, highly collaborative, and team-oriented environment, and balance long- and short-term tasks
• Ability to exhibit flexibility, initiative, and innovation
• Possession of excellent organizational skills
• Possession of excellent verbal and written communication skills

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Create Your Career:

Grow With Us

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.

A Place Where You Belong

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time.

Support Your Well-Being

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.

Your Candidate Journey

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $73,100.00 to $166,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.