Booz Allen Hamilton
Information System Security Officer
Booz Allen Hamilton, Reston, Virginia, United States, 22090
Overview
Your growth matters to us - explore our career development opportunities. Be Empowered to Succeed
Connect with others in our people-first culture and enhance our collective ingenuity. Support Your Wellbeing
Learn how we’ll support you as you pursue a balanced, fulfilling life. Your Candidate Journey
Discover what to expect during your journey as a candidate with us. Position
We’re looking for an Information System Security Officer (ISSO) who can create solutions for the Government that will withstand advanced cyber threats. As an ISSO at Booz Allen, you’ll detect, evaluate, and document the security configuration of development and operational tools and security impacts, and make improvement recommendations. You’ll coordinate work with in-house teams, subcontractors, and vendors to identify the right mix of tools and techniques to translate your customers’ IT needs and future goals into a plan that enables secure and effective solutions. You’ll investigate new techniques, move beyond legacy models, and align with industry direction. You’ll lead the team through a critical approach to network design, providing alternatives and customizing solutions to balance security and mission needs. As an ISSO on our team, you’ll advise the client, leading the discovery of cyber risks, understanding applicable policies, and developing a mitigation plan. You’ll oversee the analysis of technical, environmental, and personnel details from technical subject matter experts and engineers as your team reviews the threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. Your client will rely on you to translate security concepts so they can make the best decisions to secure their mission-critical systems. This is an opportunity to take a leadership role in information security while sharing your skills in cloud technologies with both clients and your team. Be part of our team as we protect our nation’s critical information systems. Join us. The world can’t wait. You Have
5+ years of experience as an ISSO or Information System Security Analyst (ISSA)
Experience conducting tools assessments and configuration analysis against best practices, vendor specifications, and government security guidelines and requirements
Experience with the implementation, oversight, and maintenance of the security configuration, practices, and procedures for systems
Experience with implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, and DoD Information Levels, including applying them to the design and implementation of information technology solutions to achieve an authorization to operate (ATO)
Experience with eMASS or XACTA IA Manager
Ability to perform risk analysis
Active TS/SCI clearance; willingness to take a polygraph exam
Education or experience combinations enabling IT project support (HS diploma + 12+ years, Associate + 10+ years, Bachelor + 8+ years, or Master + 6+ years)
DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification
Ability to obtain DoD 8570.01-M CSSP Infrastructure Support Certification prior to start date (including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND)
Nice If You Have
Experience with DoD security technical implementation guides (STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tool
Experience assessing configuration changes, such as new COTS tools or web application upgrades, to system security boundary
Experience drafting tool implementation CONOPS and reviewing tool capabilities, topologies, CONOPS, and vulnerability scans to assess risk
Experience with cyber-related tools, such as Ansible, Terraform, Splunk, or STIG Viewer
Knowledge of cloud-native security tools, including HBSS
Knowledge of Zero Trust principles and concepts
Ability to plan and conduct security authorization reviews and assurance case development for the initial installation of systems and networks
Ability to work within a collaborative team and a fast-paced, dynamic environment
Excellent written, organizational, presentation, and verbal communication skills
AWS, Azure, or GCP Certification
Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. Compensation
At Booz Allen, we celebrate your contributions, provide opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals who do not meet the threshold are only eligible for select offerings, not including health benefits. We invite you to learn more about our total benefits on the Careers site. Salary is determined by location, education, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD). The posting will close within 90 days from the Posting Date. Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Work Model
Our people-first culture prioritizes flexibility and collaboration, whether in person or remote. If listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility. If listed as onsite, you’ll work with colleagues and clients in person, as needed for the role. Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to disability, veteran status, or any other status protected by applicable federal, state, local, or international law. Booz Allen is an advanced technology company delivering outcomes with speed for America’s critical defense, civil, and national security priorities. We build technology solutions using AI, cyber, and other cutting-edge technologies to advance and protect the nation and its citizens. By focusing on outcomes, we enable our people, clients, and their missions to succeed—empowering people to change the world. Additional Information
If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please contact the Booz Allen Help Desk by calling 1-877-927-8278 or sending an email to helpdesk@bah.com. This option is reserved for individuals requesting a reasonable accommodation and is not intended for other inquiries.
#J-18808-Ljbffr
Your growth matters to us - explore our career development opportunities. Be Empowered to Succeed
Connect with others in our people-first culture and enhance our collective ingenuity. Support Your Wellbeing
Learn how we’ll support you as you pursue a balanced, fulfilling life. Your Candidate Journey
Discover what to expect during your journey as a candidate with us. Position
We’re looking for an Information System Security Officer (ISSO) who can create solutions for the Government that will withstand advanced cyber threats. As an ISSO at Booz Allen, you’ll detect, evaluate, and document the security configuration of development and operational tools and security impacts, and make improvement recommendations. You’ll coordinate work with in-house teams, subcontractors, and vendors to identify the right mix of tools and techniques to translate your customers’ IT needs and future goals into a plan that enables secure and effective solutions. You’ll investigate new techniques, move beyond legacy models, and align with industry direction. You’ll lead the team through a critical approach to network design, providing alternatives and customizing solutions to balance security and mission needs. As an ISSO on our team, you’ll advise the client, leading the discovery of cyber risks, understanding applicable policies, and developing a mitigation plan. You’ll oversee the analysis of technical, environmental, and personnel details from technical subject matter experts and engineers as your team reviews the threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. Your client will rely on you to translate security concepts so they can make the best decisions to secure their mission-critical systems. This is an opportunity to take a leadership role in information security while sharing your skills in cloud technologies with both clients and your team. Be part of our team as we protect our nation’s critical information systems. Join us. The world can’t wait. You Have
5+ years of experience as an ISSO or Information System Security Analyst (ISSA)
Experience conducting tools assessments and configuration analysis against best practices, vendor specifications, and government security guidelines and requirements
Experience with the implementation, oversight, and maintenance of the security configuration, practices, and procedures for systems
Experience with implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, and DoD Information Levels, including applying them to the design and implementation of information technology solutions to achieve an authorization to operate (ATO)
Experience with eMASS or XACTA IA Manager
Ability to perform risk analysis
Active TS/SCI clearance; willingness to take a polygraph exam
Education or experience combinations enabling IT project support (HS diploma + 12+ years, Associate + 10+ years, Bachelor + 8+ years, or Master + 6+ years)
DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification
Ability to obtain DoD 8570.01-M CSSP Infrastructure Support Certification prior to start date (including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND)
Nice If You Have
Experience with DoD security technical implementation guides (STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tool
Experience assessing configuration changes, such as new COTS tools or web application upgrades, to system security boundary
Experience drafting tool implementation CONOPS and reviewing tool capabilities, topologies, CONOPS, and vulnerability scans to assess risk
Experience with cyber-related tools, such as Ansible, Terraform, Splunk, or STIG Viewer
Knowledge of cloud-native security tools, including HBSS
Knowledge of Zero Trust principles and concepts
Ability to plan and conduct security authorization reviews and assurance case development for the initial installation of systems and networks
Ability to work within a collaborative team and a fast-paced, dynamic environment
Excellent written, organizational, presentation, and verbal communication skills
AWS, Azure, or GCP Certification
Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. Compensation
At Booz Allen, we celebrate your contributions, provide opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals who do not meet the threshold are only eligible for select offerings, not including health benefits. We invite you to learn more about our total benefits on the Careers site. Salary is determined by location, education, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD). The posting will close within 90 days from the Posting Date. Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Work Model
Our people-first culture prioritizes flexibility and collaboration, whether in person or remote. If listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility. If listed as onsite, you’ll work with colleagues and clients in person, as needed for the role. Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to disability, veteran status, or any other status protected by applicable federal, state, local, or international law. Booz Allen is an advanced technology company delivering outcomes with speed for America’s critical defense, civil, and national security priorities. We build technology solutions using AI, cyber, and other cutting-edge technologies to advance and protect the nation and its citizens. By focusing on outcomes, we enable our people, clients, and their missions to succeed—empowering people to change the world. Additional Information
If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please contact the Booz Allen Help Desk by calling 1-877-927-8278 or sending an email to helpdesk@bah.com. This option is reserved for individuals requesting a reasonable accommodation and is not intended for other inquiries.
#J-18808-Ljbffr