Cyber Risk Technology Architect, Lead

Key Role:
Support clients in helping them design business-focused Cyber risk programs and identify mission-critical risks, design frameworks, and improve the effectiveness and efficiency of Cyber risk management. Support client delivery and execution with a growing team of Cybersecurity and Cyber risk professionals across multiple verticals. Develop Cyber risk management capabilities and technology solutions to address root cause issues that most concern clients across aerospace, defense, energy, financial services, health, pharmaceuticals and other industries. Apply Booz Allen’s Cyber risk capabilities and technology solutions to address the client’s strategic, operational, regulatory compliance, and financial risk management requirements and build long-term strategies to ensure mission critical assets are secure. Design, develop, and implement Cyber risk, Integrated Risk Management (IRM), and GRC technology solutions that help identify, assess, respond, monitor and report risks to senior client personnel. This position requires the ability to travel up to 50% of the time.

Basic Qualifications:

  • Experience with the assessment, design, and implementation of Cyber risk, GRC, or IT risk management systems
  • Experience with Cybersecurity or IT risk and control assessments to evaluate and analyze threat, vulnerability, impact, risk and security issues to business
  • Experience with the design and development of technical requirements that drive the development of Cyber risk, GRC, or IT risk management programs
  • Experience with framing subsequent proof-of-concept (POC) and implementation activities
  • Experience with developing, enhancing reference architectures, and operation models for new or existing architectures or services
  • Experience with architecture service requests for efforts that include research, architecture, use case modelling, and architecture assessments and reviews
  • Experience with leading and facilitating architecture presentations to project teams, working groups, design authorities, and leadership
  • Experience with leading and facilitating architecture presentations to project teams, working groups, design authorities, and leadership
  • Ability to travel up to 50% of the time
  • HS diploma or GED

Additional Qualifications:

  • Experience with implementation of Cybersecurity tools, including BitSight, Kenna, and Security Scorecard
  • Experience with performing Cyber risk assessments in critical risk areas
  • Experience with translating technology risks and issues into business risks and describing them both verbally and in writing
  • Experience with developing proposal approaches and requirements for the implementation of custom IRM and GRC implementations
  • Experience with Cyber threat modeling techniques and associated frameworks, including creating data flow diagrams, attack trees, threat profiles, attack vectors, MITRE ATT&CK or Cyber Kill Chain
  • Knowledge of an information security or IT discipline, including a consulting role with a leading management consultancy organization or as a similar client-serving professional
  • CISSP, CISM, CISA, CIPT, CIPM, or CRISC Certification

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.