Cybersecurity Vulnerability Assessor

The Opportunity:

Cyber Threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to any organization. With a constantly changing threat and risk landscape, how can organizations understand their risks and how to mitigate them? As a cyber security vulnerability analyst, you’ll will be responsible for assessing and reporting on a wide range of information systems, including network infrastructure, operating systems, web servers, database servers, security compliance with federal regulations and recommend the best solution and security strategy. We need your experience and expertise to help identify critical cyber security weaknesses and probable mitigation solutions that protect critical infrastructure assets.

On our team, you’ll troubleshoot and analyze complex challenges for customers using your knowledge of various network and security devices and applications to assess system vulnerabilities, implement risk mitigation strategies, validate secure systems, and test security products and systems to detect security weakness. You’ll use your curiosity for technology and market trends to further research and develop security solutions. Using your knowledge and experience, you’ll assess security threats to implement infrastructure controls, map network and device baselines, and analyze relationships between missions, organizations, and the network assets.

This is the chance to use and advance your technical skills to make an impact on mission critical systems. When our country’s cybersecurity is on the line, simply reacting is not enough – WE NEED YOU – someone who understands the operational environment and who has the expertise required to ensure our systems and platforms perform flawlessly under all conditions. This position is a hybrid role with a combination of working at a Booz Allen office or client site and working remotely.  

Empower change with us.

Join us. The world can’t wait.

You Have:

  • Experience with conducting required reviews as appropriate within environment , including Technical Surveillance, Countermeasure Reviews [TSCM], and TEMPEST countermeasure reviews
  • Experience with performing technical and nontechnical evaluation of people, operations, and technology risk and vulnerability assessments of technology focus areas, including local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications
  • Ability to conduct technical reviews of continuous audit and vulnerable assessment data
  • Ability to collaborate with threat intelligence section to inform prioritized patch management based on risk and impact within the environment
  • Ability to ensure effective implementation of network security architectures, including firewalls, Demilitarized Zones (DMZ), router Access Control Lists (ACLS), and web content filters
  • Ability to partner with the network, desktop services, and application operations teams to effectively implement in-depth security defenses and risk based methods, ensuring security of the network and enterprise cloud applications
  • Ability to ensure the organization's data and infrastructure are protected by enabling the appropriate security controls
  • Ability to assess system vulnerabilities, implement risk mitigation strategies, validate secure systems, and test security products and systems to detect security weakness
  • Top Secret clearance
  • Bachelor's degree

Nice If You Have:

  • Experience with design and implementation of cyber security system architectures and tools to meet the needs of a SOC or Cyber Operations, including building out the Security Information and Event Management (SIEM)
  • Experience with Splunk infrastructure and effective implementation of Splunk ES
  • Experience with evaluating technologies and solutions to increase network security posture, increase network visibility, mitigate threat, and identify high risk behaviors
  • Experience with conducting analysis of log files, evidence, and other information to determine best methods for identifying the perpetrator of a network intrusion
  • Ability to assess system vulnerabilities, implement risk mitigation strategies, validate secure systems, and test security products and systems to detect security weakness
  • CISSP, Security+, Network+, CASP, GIAC, CCNA Certifications

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

Compensation:

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full time and part time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs, individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. 

Salary for this position is determined by various factors, including but not limited to, location, the candidate’s particular combination of knowledge, skills, competencies and experience, as well as contract specific affordability and organizational requirements. The proposed salary range for this position is outlined below.

Colorado: $90,800 - $184,800 (annualized USD)

New York (including New York City): $95,200 - $216,900 (annualized USD)

Create Your Career:

When you join Booz Allen, you’ll have the opportunity to connect with other professionals doing similar work across multiple markets. You’ll share best practices and work through challenges as you gain experience and mentoring to develop your career. In addition, you will have access to a wealth of training resources through our Engineering & Science University, an online learning portal where you can access more than 5000 tech courses, certifications, and books. Build your technical skills through hands-on training on the latest tools and tech from our in-house experts. Pursuing certifications that directly impact your role? You may be able to take advantage of our tuition assistance, on-site courses, vendor relationships, and a network of experts who can give you helpful tips. We’ll help you develop the career you want as you chart your own course for success.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Not ready to apply? Join our talent community and sign up for job alerts.