Job Number: R0139737

Information Security Risk Specialist, Mid
The Challenge:

Warnings about cyber threats are everywhere and the constantly evolving nature of these threats can make understanding them seem overwhelming to government agencies and military organizations. In all of this "cyber noise", how can these organizations understand their risks and how to mitigate them? The answer is you - an information security risk specialist who will break down complex threats into manageable plans of action.

As an information security risk specialist on our team, you'll use your experience to work with the DoD to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You'll review technical, environmental, and personnel details from subject matter experts, engineers, and program managers to assess the entire threat landscape. Then, you'll guide your client through a plan of action with presentations, white papers, and milestones. You'll work with your client to translate security concepts, so they can make the best decisions to secure their mission critical systems or critical infrastructure. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity and Risk Management Framework. This position is a hybrid role with a combination of working at a Booz Allen office or client site and working remotely.

Join us as we protect our military's communications and our nations cyber infrastructure.

Empower change with us.

You Have:

• Experience with Risk Management Framework and analyzing policies, procedures, and standard operating procedures
• Knowledge of Microsoft and Linux Operating Systems
• Ability to identify security requirements for connected, nonconnected, unclassified, and classified systems
• Secret clearance
• Bachelor's degree
• DoD 8570 IAT or IAM Level I Certification

Nice If You Have:

• Experience as an operating system administrator, systems engineer, requirements analyst, information systems security officer, information systems security manager, or information systems security engineer
• Experience with Microsoft Office products, including Word, Excel, Power Point, and Visio
• Experience with Enterprise Mission Assurance Support Service (eMASS), Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), Ports, Protocols and Services Matrix, Vulnerability Remediation Asset Manager (VRAM), and Host Based Security System
• Ability to analyze tactics, techniques, procedures, white papers, standard operating procedures, workflows, system data flows and architectural diagrams, and RMF policies
• Master's degree
• Navy Qualified Validator Level I, II, or III Certification
• DoD 8570 IAT or IAM Level II Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people-that's Booz Allen cyber. When you join Booz Allen, we'll help you develop the career you want.

• Competitions - From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we've got plenty of chances for you to show off your skills.
• Paid Research - Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
• Cyber University - CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere-including your phone-and certification exam prep guides that include practical assessments to prepare you for your exam.
• Academic Partnerships - In addition to our tuition reimbursement benefit, we've partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity-fully funded without a tuition cap.
• Maker/Hackerspaces - Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.