Information Systems Security Officer

The Opportunity:

Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to Department of Defense(DoD)agencies andrelatedcomponents. In all of this "cyber noise," how can these organizations understand their risks and how to mitigate them? The answer is an Information Systems Security Officer(ISSO)like you who will break down complex threats into manageable plans of action.

As an ISSO on our team, you will use your experience to work with government stakeholders to identify cyber risks, understandapplicablepolicies, and develop a mitigation plan. You'll work closely with the Information System Security Manager to monitor the information systems and their environment, including developing and updating the authorization documentation and implement configuration management across authorization boundaries.

You will work with your client to conduct risk assessments, considering data confidentiality, integrity, and availability. You will be involved in organized Incident Response actions such asguiding and reporting back to key stakeholders. You will support the team in meeting authorization timelines and coordinating communications with external entities in support of that objective.

Join us. The world can't wait.

You Have:

• 2+ years of experience implementing risk management methodologies contained in best practice documentation such as NIST SP 800-30, SP 800-53, SP 800-128, SP 800-160, SP 800-171, or CIS benchmarks, in support of system security configurations, practices, and oversight
• Experience as a System Administrator, Network Administrator, or ISSO
• Experience with control implementations associated with RMF, FedRAMP, ICD 503, and DoD information levels, including applying them to the design and implementation of IT solutions to achieve system authorizations
• Experience developing and reviewing ATO authorization packages in Xacta or eMASS
• Experience analyzing compliance and vulnerability scan results, and implementing appropriate mitigations
• Experience with DoD security technical implementation guides(STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tools
• Experience performing audit log reviews to detect anomalous behavior in information systems and networks, and overseeing continuous monitoring activities
• Active TS/SCI clearance; willingness to take a polygraph exam
• Bachelor's degree in a Cybersecurity field and 2+ years of experience providing cybersecurity leadership in an ISSO capacity, interfacing with internal and external SMEs such as PMs, Cyber Assessors, and AOs, or 5+ years of experience providing cybersecurity leadership in an ISSO capacity, interfacing with internal and external SMEs such as PMs, Cyber Assessors, and AOs, in lieu of a degree
• DoD Directive 8140 Qual Matrix for Information Assurance Technician Level II or Information Assurance Manager II Certification

Nice If You Have:

• Ability to work through challenging security requirements to maintain compliance
• Possession of excellent written, presentation, and verbal communication skills
• Possession of excellent organizational skills
• TS/SCI clearance with a polygraph
• Bachelor's degree in IT, Cybersecurity, Data Science, Information Systems, or CS
• CGRC, CCNA-Security, CASP+, CISSP, or Security+ Certification
• AWS Solutions Architect or Certified Security - Specialty Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information;TS/SCI clearance is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.