Information System Security Officer, Lead

Information System Security Officer, Lead

The Opportunity:

Are you looking for an opportunity to share your experience in information security and cybersecurity guided by the NIST Risk Management Framework (RMF) to safeguard applications from security threats? As an Information System Security Officer, you will review and analyze technical documentation to ensure compliance with security standards and regulations. We need your experience to guide projects and programs through a successful Authority to Operate (ATO) assessment and authorization of system process.

On our team, you will participate in information systems (IS) risk assessments, continuous monitoring, and design of security mitigation or remediation solutions for identified risks. You'll use your curiosity for technology and risk trends to ensure the various application's architecture and design are functional and secure while using your expertise and judgment to plan and accomplish security goals. Using your knowledge and experience in RMF, you'll communicate risks with the internal team and client and integrate information assurance solutions within architecture, system, or system components.

In this role, you'll closely impact the intelligence community by ensuring systems are free of any security threats and vulnerabilities. While ensuring all systems are RMF compliant with reporting requirements of the DoD, you will help us recommend the best RMF solutions to attain ATO status.

Work with us as we secure and protect our client's system against any cyber threats.

What You'll Work On:

• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management.

• Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.

• Perform risk and vulnerability assessments in systems and applications, leveraging experience in the NIST RMF Assessment and Authorization (A&A) process to receive ATOs for each system or application.

Join us. The world can't wait.

You Have:

• 8+ years of experience supporting system ATO processes and creating artifacts, control implementation details, and POAMs

• Experience providing IA and RMF services, including System Security Plans (SSP), risk assessment, audit policy, and Concept of Operations (CONOPS) and Contingency Operations (COOP) documentation updates

• Experience updating secure content and threat management (SCTM), and software test plans (STP) to support project test assessments

• Knowledge of DoD RMF processes and requirements, and A&A processes and standards

• Ability to provide ISSO status updates during Scrum, Project Standup, and Technical Evaluation Management (TEM) sessions

• Ability to review development operations security (DevOpsSec) requirements for all projects assigned or status

• TS/SCI clearance with a polygraph

• Bachelor's degree

• Certified Information Systems Security Professional (CISSP) or CompTIA Security+ Certification

Nice If You Have:

• Experience with review, update, and submit requests for all assigned projects in the Xacta Database

• Knowledge of DoD or IC Enterprise Audit Program guidelines

• Knowledge of the scan requests submission process

• Ability to effectively prioritize and execute tasks under pressure

• Possession of excellent verbal and written communication skills, including communicating with customers, teams, and leadership

• Possession of excellent listening, interpersonal, and customer service skills

• Possession of excellent creative problem-solving skills

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $96,600.00 to $220,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen's total compensation package for employees. This posting will close within 90 days from the Posting Date.

Work Model

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.

• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.