CSSP Analyst, Mid

The Challenge:

Everyone knows security needs to be “baked in” to a system architecture, but you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your cyber engineering skills to design and build secure systems for a customer? We’re looking for an engineer who can help create solutions for a customer that will stand up to even the most advanced cyber threats.

As a CSSP Analyst on our project, you’ll assist with monitoring, analyzing, detecting, and responding to cyber events and incidents under supervision, including intrusion detection and prevention and situational awareness. You’ll work in a 24/7 security operations center (SOC) environment at an Indianapolis client facility, including maintaining direct contact with client management to provide analysis and trending of security log data from various security devices and translating the customer’s needs and future goals into a plan that will enable secure and effective solutions. We need to come up with the best solution, so you’ll investigate new techniques, break free from the legacy model, and go where the industry is going. As a team, we’ll take a critical approach to network design, providing alternatives and customizing solutions to maintain a balance of security and mission needs. This is a chance to learn from a team of experts as you make a difference in the security of supporting the warfighter. Your contributions will help customers overcome their most difficult challenges by integrating secure practices like supporting dynamic cyber defense and delivering operational effects, including intrusion detection and prevention and situational awareness. You’ll be able to gain experience in providing analysis and trends from security log data from various security devices while building peace of mind in a critical infrastructure. Join our team as we improve support to the warfighter through cybersecurity.

Empower change with us.

You Have:

  • 3+ years of experience with incident handling, forensics, sensor alert tracking, or cybersecurity case management
  • 1+ years of experience in a SOC
  • Experience with cybersecurity tools, including ArcSight, ACAS, or SIEM tools
  • Experience with cybersecurity forensics tools and methodologies
  • Ability to work a 12am-12pm or 12pm-12am shift, including some weekends
  • Ability to provide monitoring and risk analysis of zero-day vulnerabilities
  • Secret clearance
  • HS diploma or GED
  • DoD 8570 Baseline Certifications for IAT Level II
  • CSSP Analyst Certification

Nice If You Have:

  • Knowledge of industry, government, and DoD best practices, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors
  • Knowledge of DoD system solutions to mitigate risk in any activity that potentially impacts the security of existing IT and information management
  • Ability to correlate disparate datasets to identify abnormal behavior
  • Ability to triage SIEM events and determine escalation of indicators
  • Ability to apply NIST, federal, and DoD guidelines, policies, directives, and memos as they relate to cybersecurity
  • Ability to pay strict attention to detail
  • Possession of excellent analytical and collaboration skills


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.