CACI is seeking a ISSO for a recently awarded 5 year program that delivers a wide set of capabilities across the enterprise to include data management, data delivery, high ingest rate cloud architectures, and analytic platforms.

What You’ll Get to Do:
Perform or review technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
• Provide security planning, assessment, risk analysis, and risk management
• Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures


You’ll Bring These Qualifications:
• Fourteen (14) years experience as an ISSE on programs and contracts of similar scope, type, and complexity is required
• Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required. Four (4) years of ISSE experience may be substituted for a bachelor’s degree.
• DoD 8570.01-M compliance with IASAE Level 2 is required
• CISSP Certification is required. 
• Active TS/SCI security clearance with current polygraph is required



What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here

The proposed salary range for this position is:

ACI is seeking a Cyber Security Engineer to join our team in Aberdeen Proving Ground, MD  The ideal candidate will be responsible for ensuring IT system compliance with all applicable laws, DoD policies, and standards.  Perform system scans, analyze results, and write necessary reports and plans. Provide Network Environment (NE) and Computing Environment (CE) support, including implementing all applicable IA vulnerability alerts (IAVA), IA vulnerability bulletins (IAVB), and technical advisories (TA). Develop and implement Standard Operating Procedures (SOPs), System Security Plans (SSP), Plans of Actions and Milestones (POA&Ms), and other related documents to satisfy Assessment and Authorization (A&A) requirements per NIST 800-53, FISMA, Risk Management Framework (RMF) and other government guidelines, as required to achieve and maintain an ATO (Authority to Operate).

What You’ll Get to Do:

• Implement and apply technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.

• Maintain computer systems, networks, and other related device, including implementing all applicable IA vulnerability alerts (IAVA), IA vulnerability bulletins (IAVB), and technical advisories (TA).

• Investigate IT-related security incidents to determine the extent of compromise to national security information and automated information systems. May provide intrusion support to high technology investigations in the form of network assessments.

• Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding and network and device security and encryption. Performs duties in support of in-house and external customers.

• Configures and validates secure systems, and tests security products/systems to detect computer and information security weaknesses.

• Generates security architecture documentation.

• Provides critical written and verbal analyses of previously generated security architecture documentation and vulnerability and risk assessments.

• Develop and implement documentation to satisfy NIST 800-53, FISMA, and Risk Management Framework (RMF) requirements. Designs and implements Plans of Action and Milestones (POAM) to remediate findings from vulnerability and risk assessments. Provides information assurance for digital information, ensuring its confidentiality, integrity, and availability. Responsibilities include monitoring and testing of IT systems for vulnerabilities and indications of compromise, incident response and remediation, and compliance with applicable government and other external standards.

You’ll Bring These Qualifications:

• An active DoD TS/SCI Clearance.

• Be able to obtain a Poly.

• Must have at least 5 years of interpreting and implementing DoD directives, instructions, and policies that provide direction and guidance and applying them to CE and NE.

• Knowledge of the Assessment & Authorization (A&A), and NIST RMF processes.

• Experience installing, maintaining, administering, and troubleshooting computer systems and networks.

• Experience with network security architecture to include, but not limited to firewalls, intrusion detection/prevention systems (IDS/IPS), content filtering devices, encryption devices, and DoD Public Key Infrastructure (PKI).

• Qualified at the IAT Level II for the DoD Information Assurance Workforce, must possess one of the following certifications:  CCNA-Security, GICSP, GSEC, Security+, or SSCP.

These Qualifications Would be Nice to Have:

• An active DoD TS/SCI with Poly Clearance.

• Familiar with scanning tools (e.g. NESSUS, ACAS, etc.). Familiar with Distributed Common Ground System (DCGS).

• Technical Writing experience (creating/updating IA policy & procedure documentation).

• Excellent written and verbal communication skills with strong presentation abilities.

• Must be able to work well on independent engagements as well as within a team setting; Strong client presence and interaction abilities.

• Excellent understanding of common computing platforms, including Windows Server, RedHat Linux Server, and vendor-specific appliance support.

• Some understanding of military hierarchy.

What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
 

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here

The proposed salary range for this position is:

It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.

SUMMARY

The Senior IT Consultant / Cloud Security Assessor - Cloud Security Monitoring will conduct security validations and assessments, in support of the FedRAMP and DoD Provisional Authorization (PA) processes and Cloud Services documentation packages. This position provides advanced technical expertise to senior management, department heads and/or staff. The Senior IT Consultant recommends specific solutions based on specialized capabilities to perform and integrate highly complex services in several operational, functional, or organizational areas. This position is located in Fort Meade, MD.

Candidates must be certified in one of the areas as directed by DoD 8570- CISM, CISSP, GSLC, CCISO;

Additionally possess a DOD Top Secret or Secret Clearance.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Essential duties and responsibilities include the following. Other duties may be assigned.

Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge/quality of work, supporting financial goals of the company, initiative/motivation, cooperation/relationships, problem analysis/discretion, accomplishing goals through organization, positive oral/written communication skills, leadership abilities, commitment to Affirmative Action, reliability/dependability, flexibility and ownership/accountability of actions taken.

Conduct Cloud Security Assessments to include:  validated cybersecurity controls, certifier's recommendation, and certifier’s statement of residual risk, certification assessment briefing slides, and a provisional authorization. If the validation is leading to a Joint Authorization Board (JAB) Provisional Authorization (PA), a one-page executive summary shall also be prepared.  Utilizing established process, procedures, templates, and forms:

Attend technical kick-off meetings and review preliminary analysis to understand and document a CSP’s readiness posture.  

Review and comment on CSO’s SSP, SAP, SAR, and POA&M.

Review, understand, and document the operational impact that the security authorization, change, and/or vulnerabilities poses to the CSP.  

Review, evaluate, and provide analysis in order to develop the Cloud Security Assessment Package in accordance with (IAW) the established guidelines.

Create a certification recommendation memorandum that detail the CSO’s compliance with required DoD Cybersecurity controls, technical compliance, and include any residual risk. 

Cloud Continuous Monitoring:  Perform DoD and FedRAMP Cloud Authorization on-going support to include continuous monitoring,  annual reviews and significant change requests of Cloud Service Providers through reviews, recommendations, written reports, and briefings. This task involves a review and analysis of the following:  Deviation Requests (validations or justifications for a finding to be carried), Monthly One Pagers (description of the Cyber status of a CSO for that month), Annual Assessments (AA), (one-third of the assessment of the total CSO’ baseline conducted each year), Playbooks (Weekly report on the ConMon status process of a particular set of CSO’s), Significant Change Requests (SCR’s) adding new requirements/capabilities to a CSO’s offering, reviewing of  the scan data, POA&Ms, and other changes to evaluate a CSP’s ongoing risk posture change.  Create monthly one pagers and playbooks. 

Ensure the DoD and FedRAMP’s monitoring programs provide oversight of CSP, ensuring a risk-based approach and provides data for the AO to understand risk position of cloud service provider environment.

Provide ongoing assurances (assessments and validations) that security controls are in place that adhere to DoD and FedRAMP requirements, to ensure compliance to maintain validation.

Ensure system risk safeguards and controls are in place to operate effectively, utilizing a proactive system and risk-based approach in monitoring.

Provide a more continuous view of cloud service provider applications and devices, to promote improved decision making based on assessed risks, while maintaining requirement of authorized risk levels.

Accomplish through the CSP an architectural reviews a risk-based situational awareness approach for network visibility to reduce timely mitigation steps.

Ensure the FedRAMP/DoD CSP provides timely incident reporting and escalation, major system changes approval affecting the authorization boundary.

Integrate security and risk management processes that identify actionable items, based on potential risks.

Validate and ensure CSP performs vulnerability scans of required security controls established by/for DoD and FedRAMP.

Recommend and monitor POA&M and monthly submission and review of vulnerability scans, playbooks, change request, deviation reports, and monthly one-pagers established for FedRAMP and DoD.

Conduct annual assessments for FedRAMP/DoD. 

Support continuous monitoring and annual reviews of Cloud Services through reviews, recommendations, written reports, and briefings.  

 Document continuous monitoring standards and frameworks.

Responsible for aiding in own self-development by being available and receptive to all training made available by the company.

Plans daily activities within the guidelines of company policy, job description and supervisor’s instruction in such a way as to maximize personal output.

Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and co-workers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions as the best of own ability.

Promotes and encourages a culture of compliance with all applicable rules (federal, state, local, Federal Acquisition Regulations, Code of Federal Regulations, Prime Contract requirements, etc.) for themselves and the company as a whole. Fosters an environment in which they will report any violations or reasonably suspected violation of CNI policy, FAR, and/or CFR and are comfortable discussing the myriad compliance, conflict, FAR, CFR, etc. issues that arise during the performance of a government contract.

EDUCATION / EXPERIENCE

Bachelor of Science (B.S.) or above, or equivalent combination of IT technical or cybersecurity Associates Degree and seven (7) years’ experience. Experience with a Program in a Federal organization. A demonstrated proficiency in Microsoft Windows/Office and Microsoft Project.

CERTIFICATES, LICENSES, REGISTRATION

Must possess a 8570 DOD IAM-III level certification which requires one of the following certifications: CISM, CISSP, GSLC, CCISO.
Must posses a Secret or Top Secret Clearance.
May be subject to a background investigation and must be able to meet the requirements to hold a government security clearance.

JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIES

Expert knowledge of proven business and operations practices and strategies

Proficient understanding of Restful APIs, JSON

Proven ability to facilitate progressive organizational change / development within a growing organization

Excellent organization and time management skills with ability to handle multiple priorities

Exceptional analytical and problem-solving skills with ability to assess business requirements

Exceptional leadership skills with ability to motivate, influence and lead others

High level of proficiency in briefing managers and communicating recommendations regarding status of project operations

Excellent verbal and written communications skills

Superior customer service and relationship management skills

Ability to effectively interact with management and staff at all levels within a multi-level organization

Ability to proactively identify problems and effectively respond

Ability to use discretion concerning highly sensitive and confidential data and information

Proficient understanding of cross-browser compatibility issues and ways to work around them

Experience with configuration management, version control, software packaging and deployment

Ability to perform system analysis, design and development

Ability to work well in a team as well as independently

Excellent oral and written communications skills

LANGUAGE SKILLS

Ability to read, analyze and interpret common scientific and technical journals, financial reports, and legal documents.  Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to write speeches and articles for publication that conform to prescribed style and format. Ability to effectively present information to top management, public groups, and/or boards of directors.

MATHEMATICAL SKILLS

Ability to work with mathematical concepts such as probability and statistical inference, and fundamentals of plane and solid geometry and trigonometry.  Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations.

REASONING ABILITY

Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.

PHYSICAL DEMANDS:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.

The pay range for this role is $160K to $170K per annum, with the final offer amount dependent on location, skillset, and experience.

CNI offers a comprehensive benefits package that includes:

Medical

Dental

Vision

401(k)

STD/LTD/AD&D

Employee Assistance Program (EAP)

Paid Time Off (PTO)

Training and Development Opportunities

Equal Employment Opportunity Statement

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.

#INDCNI

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

The Opportunity:

A well-designed secure network is critical to move data and enable the Department of Defense (DoD) to achieve their mission, but how can an organization make sure their network will fit their evolving needs? Crafting the right network, with the right equipment and software, requires a combination of technical skill and careful planning. That’s why we need you, a Boundary Security Engineer, who knows how to utilize your craft to facilitate the needs of the DoD. As a Security Engineer on our team, you’ll work with the DoD to develop a reliable, secure network to support critical missions.

You’ll collaborate with SMEs, customers, vendors, and users to learn the strategic goals and operational needs that shape the network requirements. You’ll then share your expertise during the planning of acquisition, installation, configuration, and maintenance of the network components. From resolving interoperability issues across platforms, to supporting the acquisition of hardware, you’ll put your hardware and software talents to good use. This is your chance to share your experience with backbone networks, cloud technologies, and core networking, while broadening your security and network engineering work. You’ll dive into challenging hands-on problem-solving, and encounter opportunities to learn new tools and skills. We focus on growing as a team to make the best solutions for our customers.  

As a Boundary Security Architect at Booz Allen, you’ll design and test new boundary security capabilities in a lab environment and implement newly tested boundary security capabilities into production environments. You will need to support implementation teams with remote network firewall and security appliance support. You will also need to be able to identify and support security requirements for switched and routed networks and implement network security best practice configuration and associated hardware and software. Discover and assess complex client enterprise network deployments, apply leading-edge security principles, theories, and concepts, and contribute to the development of new principles and concepts. You’ll work on unusually complex problems, provide highly innovative solutions, operate with substantial latitude for unreviewed action or decision, and mentor or supervise employees in both firm and technical competencies.

Work with us as we secure and protect DoD enterprise networks for the better. 

What You’ll Work On: 

• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management. 

• Implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.  

• Perform risk and vulnerability assessments in network, system, and application areas; leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise. 

Join us. The world can’t wait. 

You Have:   

• 4+ years of experience with network security and the design of IT systems or networks for large commercial enterprises or government agencies

• 4+ years of experience with firewall and enterprise security design, including device hardening, intrusion detection systems and intrusion prevention systems, SIEM, firewalls, internet protocol security, vulnerability assessment, and intrusion detection

• Experience with Palo Alto firewalls, and Cisco or Juniper firewalls

• Secret clearance

• HS diploma or GED

• Ability to obtain a DoD 8570 IAT Level II Certification within 3 months of hire

Nice If You Have:   

• Experience designing and implementing Cloud-native and over the top networking in AWS, Azure, or GCP

• Knowledge of DoD IT and Cloud security policies, including STIGs and DoD Cloud SRG, and how to apply them to the design and implementation of Cloud solutions

• Possession of excellent verbal and written communication skills, including public speaking, prior publications, and speaking engagements in industry or vendor forums

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Create Your Career: 

Grow With Us 

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.  

A Place Where You Belong 

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time. 

Support Your Well-Being 

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.  

Your Candidate Journey 

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.  

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

The Opportunity: 

Create Your Career: 

Grow With Us 

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.  

A Place Where You Belong 

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time. 

Support Your Well-Being 

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.  

Your Candidate Journey 

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.  

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

The Opportunity: 

Are you looking for an opportunity to share your experience in securing information systems to support national objectives? As a systems security & network security engineer, you can identify the tools needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to lead the development and implementation of security solutions.

On our team, you’ll troubleshoot and analyze complex challenges for customers using your knowledge and experience. You’ll use your curiosity for technology and market trends to further research and develop security solutions. Using your knowledge and experience with the Risk Management Framework and security controls, you’ll assess security threats and implement infrastructure controls.  

In this role you'll develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management. You will implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.  As well as perform risk and vulnerability assessments in network, system, and application areas and leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise. 

Join us. The world can’t wait. 

You Have:   

• 8+ years of experience with systems security engineering on programs that encompass systems security architecture and transition into operations

• 4+ years of experience working with the Risk Management Framework (RMF) process for systems, including verifying security controls and translating security policies and security controls into system architecture components

• 4+ years of experience with assessing security vulnerabilities in software and systems and recommending appropriate mitigations

• 2+ years of experience with completing engineering deliverables and estimating time and resources for systems engineering tasks

• TS/SCI clearance with a polygraph

• Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or Information Systems and 8+ years of experience with systems engineering or cybersecurity or 12+ years of experience with systems engineering or cybersecurity in lieu of a degree

Nice If You Have:   

• 2+ years of experience working with Amazon Web Services (AWS) cloud technology

• 1+ years of experience working with Atlassian Suite, including Jira, Confluence, or Gliffy

• Experience with containerization technologies, including Docker or Kubernetes

• Experience with malware analysis mission and malware analysis tools

• DoD 8570 Compliance - IAT Level II Certification

• AWS Associate level or higher Certification

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Create Your Career: 

Grow With Us 

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.  

A Place Where You Belong 

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time. 

Support Your Well-Being 

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.  

Your Candidate Journey 

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.  

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Key Role:

Work alongside supervisors and managers as well as alongside technical personnel such as Network Engineers and System Administrators. Participate in the development or modification of computer environment security program plans and requirements. Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered. Ensure that cybersecurity requirements are integrated into the Continuity of Operations Plan (COOP) for that system or DoD Component. Ensure that cybersecurity requirements are appropriately identified in computer environment operation procedures. Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network systems operations. Develop security requirements specific to an IT acquisition for inclusion in procurement documents. Develop security requirements for hardware, software, and services acquisitions specific to cybersecurity programs. Ensure that IA and IA-enabled software, hardware, and firmware comply with appropriate security configuration guidelines, policies, and procedures. Review cybersecurity plans and identify alternative functional cybersecurity strategies to address organizational security concerns. Ensure that cybersecurity inspections, tests, and reviews are coordinated. Evaluate the presence and adequacy of security measures proposed or provided in response to requirements contained in acquisition documents. Advise the Authorizing Official of any changes affecting any systems’ security posture.

Basic Qualifications:

• 6+ years of experience working in cybersecurity
• 2+ years of experience using Enterprise Mission Assurance Support Service (eMASS)
• Experience with authorization actions concerning software development and testing, and the interpretation of patterns of non-compliance to determine their impact on levels of risk or overall effectiveness of the enclave’s cybersecurity program
• Experience evaluating risk analysis in the decision-making process, and evaluating proposals to determine if proposed security solutions effectively address enclave requirements, as detailed in solicitation documents
• Experience reviewing cybersecurity policies
• Knowledge of the configuration management (CM) of DoD software, including source code, documentation, and fieldable products, and DoD security and program protection and declassification operations
• Knowledge of DoD 8500, AR 25-2, AR 70-1, and DA PAM 70-3 Army Acquisition Implementation
• Secret clearance
• Bachelor’s degree
• DoD 8570 or 8140, and CompTIA Security+ Certification

Additional Qualifications:

• TS/SCI clearance
• ISC2 Certified Information Systems Security Professional (CISSP) Certification
• Microsoft IT Professional (MCITP), Microsoft Certified Systems Engineer (MCSE), Microsoft Certified Professional (MCP) on Windows 2016 or 2019 Server, Windows 10 MCSE, or equivalent Operating Systems Certifications
• Linux Certifications
• Cisco Networking Certifications

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Create Your Career:

Grow With Us

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.

A Place Where You Belong

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time.

Support Your Well-Being

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.

Your Candidate Journey

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

The Opportunity:

Everyone knows security needs to be “baked in” to system architecture, but you know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your cyber engineering skills to design and build secure systems for the DoD? We’re looking for an engineer who can create solutions for the DoD that will stand up to even the most advanced cyber threats.

As a solutions architect on our project, you’ll collaborate with operational teams to address emerging requirements, review metrics to assess policy effectiveness, resolve complex customer service tickets, and test and integrate new email security components. You’ll coordinate work with our established team, vendors, and client stakeholders to identify the right mix of tools and techniques to translate your customer’s IT needs and future goals into a plan that will enable secure and effective solutions. We need to come up with the best solution, so you’ll investigate new techniques, break free from the legacy model, and go where the industry is going. You’ll lead the team through a critical approach to network design, providing alternatives and customizing solutions to maintain a balance of security and mission needs. This is a chance to make a difference in the security of warfighter communications. Your technical expertise will be vital as you help customers overcome their most difficult challenges by integrating secure practices like zero-day threat detection, anti-spoofing, and anti-manipulation email security protocols. You’ll be able to broaden your skillset into areas like cross-domain reporting, encrypted email inspection, and cloud service provider integration while building a piece of mind in critical infrastructure. Join our team as we improve warfighter communication through cybersecurity.

Join us. The world can't wait.

You Have:

• Experience with Email Security Engineering
• Knowledge of network protocols supporting email, including SMTP or DNS
• Knowledge of protocols supporting secure email, including TLS, SPF, DKIM, or DMARC
• Ability to read and understand email headers to diagnose email-related issues
• Ability to obtain a security clearance
• HS diploma or GED
• Ability to obtain a DoD 8570 IAT Level II Certification within 3 months of start date

Nice If You Have:

• Knowledge of solutions providing secure PKI certificate storage and usage
• Ability to develop and troubleshoot Perl-formatted scripts
• Ability to develop and troubleshoot regex signature
• Secret clearance
• Bachelor's degree
• CISSP Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Create Your Career:

Grow With Us

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.

A Place Where You Belong

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll develop your community in no time.

Support Your Well-Being

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.

Your Candidate Journey

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Job Description Summary

Job Description

We are the makers of possible!  

BD is one of the largest global medical technology companies in the world. Advancing the world of health™ is our Purpose, and it’s no small feat. It takes the imagination and passion of all of us—from design and engineering to the manufacturing and marketing of our billions of MedTech products per year—to look at the impossible and find transformative solutions that turn dreams into possibilities. 

We believe that the human element, across our global teams, is what allows us to continually evolve. Join us and discover an environment in which you’ll be supported to learn, grow and become your best self. Become a maker of possible with us. 

The Director, Product Security – Life Sciences serves as the leader responsible for BD’s product security posture within the Life Sciences Business Units – Integrated Diagnostic Solutions & BD Biosciences. Reporting to the VP, R&D, Product Security, this individual will help the PSO provide guidance to successfully deliver best-in-class secure products, consistent with global regulatory requirements over the lifecycle.

Responsibilities:

Collaborate with all levels and geographies within BD Life Sciences organization, including senior executives, to advance the product security strategy and objectives within the portfolio.

• Ensure adoption of product security framework activities, consistent with applicable global regulations and laws
• Champion strategic initiatives such as leveraging innovative product security processes & technologies or end of support for legacy platforms - in partnership with other cross functional teams
• Engaging BD leadership, customers, federal and international agencies when issues occur as well as speaking in public forums
• Serve as internal security consultant to the organization. Articulate high-level risks and mitigation plans to Senior Management
• Contribute to the strategy and provide guidance on product security matters including architectures, threat models, risk assessments, integration, disaster recovery and maturity assessment
• Oversee delivery of all required product security quality and regulatory documentation associated with product launches in Life Sciences.
• Provide leadership and guidance to BU Product Security Officers in the Life Sciences Segment on critical Product Security issues, tactical alignment, and strategic initiatives
• Provide expertise and management of BU implementation and remediation programs, new product development security solutions, process development, and capability maturity
• Responsible for aligning the Life Sciences Segment around common benchmarks and goals for BD’s enterprise - wide Product Security posture, assessing progress towards these goals while driving improvement
• Accountable for developing BU Product Security Officers leadership skills and influencing BU cross- functional leadership teams to communicate and prepare their organizations for changes in worldwide regulations and standards for Product Security in Medical Devices
• Leadership and development of BU Product Security Officer’s skills in program management, cross functional collaboration, technical and business acumen with their BU leadership teams

Qualifications:

• Minimum of ten (10) years professional business experience, three (3) years leading teams and people, and three (3) years in a Product Security and/or Application Development Security function in a regulated environment
• Experience with connected products, software development lifecycle, security automation, risk mitigation strategies, incident response, and supply chain security are preferred
• Strong understanding of a wide variety of cybersecurity attacks, threats, threat analysis, ethical hacking and system auditing coupled with experience with incident management
• Experience navigating and executing product cybersecurity requirements with 510(k) and PMA- regulated products
• Able to align and connect business strategies with technology solutions that will mitigate risk. Excellent presentation and communication skills including engaging with and presenting to senior leadership team. Strong collaboration skills to include conflict resolution
• Ability to communicate complex technical challenges in a non-technical and simplified manner to business audience

Education:

• Undergraduate degree in cybersecurity, computer science, software engineering or/and technical engineering or scientific field is required, advanced business or technical degree preferred
• Certifications such as CCNA, CCIE, CISSP, CISM, GIAC, MCSE, CCSP or equivalent, CEH are preferred

For certain roles at BD, employment is contingent upon the Company’s receipt of sufficient proof that you are fully vaccinated against COVID-19. In some locations, testing for COVID-19 may be available and/or required. Consistent with BD’s Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law.   

Why Join Us? 

A career at BD means being part of a team that values your opinions and contributions and that encourages you to bring your authentic self to work. It’s also a place where we help each other be great, we do what’s right, we hold each other accountable, and learn and improve every day.  

To find purpose in the possibilities, we need people who can see the bigger picture, who understand the human story that underpins everything we do. We welcome people with the imagination and drive to help us reinvent the future of health. At BD, you’ll discover a culture in which you can learn, grow, and thrive. And find satisfaction in doing your part to make the world a better place.   

To learn more about BD visit https://bd.com/careers 

Becton, Dickinson and Company is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status. 

Primary Work Location

Additional Locations

Work Shift

At BD, we are strongly committed to investing in our associates—their well-being and development, and in providing rewards and recognition opportunities that promote a performance-based culture.  We demonstrate this commitment by offering a valuable, competitive package of compensation and benefits programs which you can learn more about on our Careers Site under Our Commitment to You.

Salary ranges have been implemented to reward associates fairly and competitively, as well as to support recognition of associates’ progress, ranging from entry level to experts in their field, and talent mobility. There are many factors, such as location, that contribute to the range displayed. The salary offered to a successful candidate is based on experience, education, skills, and actual work location. Salary ranges may vary for Field-based and Remote roles.

Salary Range Information

Responsible for conducting and facilitating general and specific training. Duties may include delivering training based on customer requirements using a variety of techniques including face-to-face, online, synchronous, asynchronous, and self-paced instruction. May include employing blended learning techniques to include a combination of eLearning tools, lectures, classroom discussions, team exercises, readings, case studies, role plays and demonstrations of required skills through work-related tasks.

You'll provide training to the Intelligence Community (IC) workforce and maintain existing course content for currency and relevancy. You will employ both classroom instruction and alternative delivery methods for students located at Ft. Washington, MD and, possibly, temporarily at other CONUS/OCONUS locations as deem necessary to the mission.

More About the Role:

You will prepare and present classroom lectures and assist in TSEC curriculum modernization. Use blended learning technologies, deliver training on the knowledge and skills required for conducting compliant, effective, and efficient TS/TSCM training. Work with course developers to ensure the correct information and best teaching methodologies are used.

You’ll Bring These Qualifications:

• Active TS/SCI.  Eligible for Full Scope Poly
• Graduate of the Interagency Training Center (ITC) TSCM Fundamentals Course and/or Graduate of the ITC’s Basic Technical Operations Course (BTOC) or equivalent.
• A minimum of 6-years of applied practical experience in Federal Technical Surveillance Countermeasures (TSCM) or Technical Surveillance Activities (TSA) in the last 10-years
• Four years’ experience teaching/training adults in the last 10 years.
• Completion of an Undergrad or Graduate degree in Education and Training maybe considered in lieu of teaching experience. Undergrad or Graduate degree in Electrical Engineering, Mechanical Engineering, Computer Science, Physical Science, and Physics may be considered in lieu of TS or TSCM experience.

These Qualifications Would be Nice to Have:

• Level 3 Technician Certification 8570
• CompTIA Cyber Security Analyst (CYSA+)
• Penetration Testing certification or experience
• Cyber Threat Hunting certification or experience
• Cyber Incident Response certification or experience
• FLIR Thermographer Certification
• Non-Destructive Testing Certification

What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

 

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here

The proposed salary range for this position is:

The Opportunity:  

Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to government agencies. In all of this “cyber noise,” how can these organizations understand their risks and how to mitigate them? The answer is you—a Network Security Risk Specialist who will break down complex threats into manageable plans of action.  

As a Network Security Risk Specialist on our team, you’ll use your experience to work with DOD clients to discover their cyber risks, understand policies, and develop a mitigation plan. You’ll review technical, environmental, and personnel details from Subject Matter Experts and Engineers to assess the entire threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. 

You’ll work with your client to translate security concepts, so they can make the best decisions to secure their mission-critical systems. This is your opportunity to act as an information security subject matter expert while broadening your skills in cyber defense and information assurance.

Work with us as we protect our military’s communications systems. 

Join us. The world can’t wait. 

You Have: 

• 8+ years of experience with DoD network engineering and management

• 4+ years of experience in Cybersecurity

• Experience with eMASS, ACAS Security Center, and Nessus Scanner

• Experience with Risk Management Framework (RMF) requirements and NIST framework

• Knowledge of varied Firewall, IDS, and IPS technologies, Endpoint Security products, Security Incident and Event Management, and PKI

• Ability to produce documentation, briefing materials, and network diagrams in PowerPoint, Word, Excel, and Visio

• Ability to travel up to 50% of the time

• Secret clearance 

• Bachelor's degree in Computer Science, Information Systems, Engineering, Cybersecurity, or IT

• IAT Level III or IAM Level II DoD 8570 Certification

Nice If You Have: 

• Experience with Ansible, Elastic (ELK) stack, Cisco ASA, Palo Alto Firewall, IPS, Panorama, Kafka, virtual machines, and containers

• Ability to complete incident handling processes and analyze data from scans

• Top Secret clearance 

• Master's degree in Computer Science, Information Systems, Engineering, Cybersecurity, or IT

• CISSP Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Create Your Career: 

Grow With Us 

Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms.  

A Place Where You Belong 

Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time. 

Support Your Well-Being 

Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home.  

Your Candidate Journey 

At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.   

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

The Opportunity:  

Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to government agencies. In all of this “cyber noise,” how can these organizations understand their risks and how to mitigate them? The answer is you—an information security risk specialist who will break down complex threats into manageable plans of action.  

As an information security risk specialist on our team, you’ll use your experience to work with the DoD and Navy to discover their cyber risks, understand policies, and develop a mitigation plan. You’ll review technical, environmental, and personnel details from SMEs, Engineers, and Program Managers to assess the entire threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. You’ll work with your client to translate security concepts, so they can make the best decisions to secure their mission-critical systems and critical infrastructure. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity and the Risk Management Framework.   

Work with us as we protect our nation's cyber infrastructure.  

Join us. The world can’t wait. 

You Have:  

• 5+ years of experience in cybersecurity

• 3+ years of experience with Risk Management Framework supporting the Navy

• Experience as an Information Systems Security Officer

• Experience with developing supporting artifacts for Navy authorization packages, including Categorization Forms, HW/SW Lists, Authorization Boundary Diagrams, and Security Control policy documentation

• Experience with Navy Risk Management Framework and analyzing policies, procedures, and standard operating procedures 

• Experience with Enterprise Mission Assurance Support Service (eMASS)

• Experience in creating and managing POA&Ms

• TS/SCI clearance

• Bachelor’s degree

• DoD 8570 IAT or IAM Level II Certification

Nice If You Have: 

• Experience as an Operating System Administrator, Systems Engineer, Requirements Analyst, Information Systems Security Manager, or Information Systems Security Engineer

• Experience with using Microsoft Office products, including Word, Excel, PowerPoint, and Visio

• Experience with Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), Ports, Protocols and Services Matrix, Vulnerability Remediation Asset Manager (VRAM), and Host Based Security System

• Experience with eMASSTer 

• Ability to identify security requirements for connected and non-connected systems and unclassified and classified systems 

• Ability to create tactics, techniques, procedures, white papers, standard operating procedures, workflows, system data flows, and architectural diagrams

• Master’s degree

• Navy Qualified Validator Level I, II, or III Certification

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Create Your Career: 

Grow With Us 
Your growth matters to us—that’s why we offer a variety of ways for you to develop your career. With professional and leadership development opportunities like upskilling programs, tuition reimbursement, mentoring, and firm-sponsored networking, you can chart a unique and fulfilling career path on your own terms. 

A Place Where You Belong 
Diverse perspectives cultivate collective ingenuity. Booz Allen’s culture of respect, equity, and opportunity means that, here, you are free to bring your whole self to work. With an array of business resource groups and other opportunities for connection, you’ll build your community in no time. 

Support Your Well-Being 
Our comprehensive benefits package includes wellness programs with HSA contributions, paid holidays, paid parental leave, a generous 401(k) match, and more. With these benefits, plus the option for flexible schedules and remote and hybrid locations, we’ll support you as you pursue a balanced, fulfilling life—at work and at home. 

Your Candidate Journey 
At Booz Allen, we know our people are what propel us forward, and we value relationships most of all. Here, we’ve compiled a list of resources so you’ll know what to expect as we forge a connection with you during your journey as a candidate with us.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

This position will support the DISA GSM-O II Task Number 07 (TN07) Joint Force Headquarters DODIN. GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the DoD and COCOMs. The selected candidate shall provide a stabilizing force to the high intensity, high tempo operations center. In depth technical knowledge, management, and analytic skills address senior command requirements, subordinate command information requirements, as well as supplements operations during a time of need.

Primary Responsibilities

• Provide holistic enterprise defensive strategies for enterprise cyber security capabilities implemented within the infrastructure of the DODIN to include but not limited to Cloud, network boundaries, cross domains, and varying endpoint technologies.

• Provide analysis of architectures, technologies, policies, information and analytic data used to determine prevention, detection, and mitigation of anomalous activity, vulnerabilities and inefficiencies.

• Prepare and perform briefings appropriate for senior leadership (i.e., general officer or flag officer)

• Perform cyber situational awareness activities and provide analysis and recommendations of situation awareness capabilities.

• Provide enterprise-wide cybersecurity, threat analysis, countermeasures and defensive strategies across a multi-tiered, porous domain inclusive of Cloud, federated regional gateways, cross domain peering points, internet access points, and endpoints.

• Development of operational supporting documents such as SOPs, TTPs and CONOPs.

Basic Qualifications

• Bachelor's degree in a relevant technical discipline and 8 - 12 years of prior relevant experience or master’s degree with 6 – 10 years of prior relevant experience. 

• Currently possess an active DoD TS/SCI clearance and eligible for C/I Polygraph.

• Currently possess DoD 8750 certification at IAT level II, Security +ce.

• Experience at Joint Command and/or Operations Center.

• In-depth understanding of military orders and the military decision-making process.

• Proficient in Windows Desktop 7/ 8/ 8.1/ 10 

• Knowledge of Windows server 2003/ 2008/ 2012 R2 

• Ability to work in a virtual environment such as Microsoft Teams 

• Knowledge of and a proficiency in using Computer and Microsoft Office applications (Word, Excel, Access, Outlook) 

• Knowledge of policy development and maintenance 

• Strong communication and interpersonal skills, with the ability to speak clearly and effectively with customers and technical personnel in high-stress situations 

• A solid understanding of IP addressing and subnetting 

• Understanding of key network monitoring protocols 

• Proficient in Microsoft Office 365 Suite • Knowledge of Microsoft server operating systems, VMWare and Cisco network devices

Preferred Qualifications 

• Senior leader engagements

• Experience with DISA and DoD Networks

• Experience with technical and/or military writing

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

This position will support the DISA GSM-O II Task Number 07 (TN07) Joint Force Headquarters DODIN.  GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the DoD and COCOMs.  The selected candidate shall support the detection, monitoring, correlation, remediation, and prevention of cyber threat activity targeting the DODIN. Understand the details of advanced persistent threats that impact the DODIN with an in-depth knowledge and ability to analyze, track, correlate, trend, and report on the TTPs utilized and countermeasures to secure, operate and defend.

Primary Responsibilities

• Supervise the analyzing of identified malicious network activity to determine weaknesses exploited, exploitation methods, effects on system and information.
• Assess network topology and device configurations identifying critical security concerns and providing security best practice recommendations.
• Review, correlate, and report on high priority endpoint threats and vulnerabilities to identify similar incidents/events, malicious tradecraft, TTPs of malicious activity, and indicators utilized to impact or target specific networks. 
• Supervise the creation of situational awareness products to provide DoD components with detailed information related to vulnerabilities and appropriate mitigation strategies. 
• Develop and Present cyber threat briefings, presentations to ensure situational awareness and current status are conveyed to senior leaders.
• Coordinate with AOs and participate in meetings to ensure accuracy of scoping, requirements documentation, gap identification, remediation, and compliance requirements.
• Develop formalized reporting regarding threat and vulnerability activity impacting mission success. (i.e., situational awareness reports/products; operational directives/orders and coordination messages; and quarterly threat analysis reports and metrics.).
• Develop, and maintain the content of a DoD indicator database to aid in the detection and mitigation of threat activity.
• Define, establish, and manage security risk metrics and track effectiveness.

Basic Qualifications

• BA degree and 12+ years of applicable experience or a MA degree in a related discipline with 15+ years of applicable combined education and experience. Additional related years of experience is accepted in lieu of a degree
• Active DoD TS/SCI clearance and eligible for C/I Polygraph
• Must hold an active DoD 8570 IAM Level I/II certification.
• Previous tools experience working with endpoint detection and response tools (ESS, Cisco AMP, Cortex XDR, Forti EDR, Sophos, Carbon Black EDR)
• Technical understanding in some of the following areas: network communication using TCP/IP protocols, basic system administration, basic understanding of malware (malware communication installation, or malware types).
• Expert knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch, or open-source information collection)
• Expert knowledge of threat and vulnerability analysis, routing protocols, routing, intrusion detection systems, intrusion protection systems, Domain Name Service, or network traffic analysis.
• Advanced communications and presentations skills (verbal and written) enabling precise conveyance of information across all CC/S/A/FA with command and proper enunciation of the English language

Preferred Qualifications

• Security+ CE; CAP, GSLC, CISSP
• ITIL v3 Foundation certified

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Leidos is currently seeking a Systems Engineer (SE) for the Advanced Analyst Augmentation Analytical Cloud Enablement System (4ACES). The SE will analyze 4ACES requirements and assist with design analysis. The SE will coordinate COTS upgrades, coordinate with COTS vendors, user Subject Matter Experts (SMEs), NGA Analytic Product Owners, and other segments when issues arise throughout sustainment. The Systems Engineer serves as the liaison with the PMO, customer user community, COTS vendor, other segment data providers, and will assist with integrations, migrations, Software Approval Process (SWAP), and accreditation activities. The SE will coordinate corrective maintenance management with the COTS vendor.

The SE’s primary responsibility will be to function as a Content Manager by managing data and data services published for the user community. As the Content Manager the SE will support the analysts with new data and Databricks requests as well as resolving any daily issues.

Position can also be performed in the following locations: 

• Alexandria, VA 
• St. Louis, MO 
• Tucson, AZ 

Clearance Level Required:

Top Secret/SCI with Polygraph

Primary Responsibilities:

• Interact with the customer Release Train Engineer, Product Owners, and stakeholders to analyze customer requirements and determine how to include requirements in the operational environment through COTS integration and new data sources being added to the Databricks cluster.
• Perform the design and requirements analysis of data visualizations and COTS appliances for capability enhancements.
• Coordinate with stakeholder and team to determine how to host new data capabilities within the operational environment and troubleshoot issues as the customer is integrating new data or creating new visualizations.
• Identify software and hardware dependencies and capacities.

Basic Qualifications:

• US citizenship is required per contract.
• Bachelor's degree and 4-8 years of prior relevant experience or Master’s with 2-6 years of prior relevant experience.

• Significant experience in Cloud Technologies (specifically AWS) and infrastructure-as-code concepts.
• Experience interacting with cross functional project teams including Software Development, Test, and Security.
• Substantial experience working in Agile, SAFe, and Scrum environments.
• Knowledge of Software Configuration Management life cycle deliverables.

Preferred Qualifications:

• Experience with Databricks deployment, configuration, and support.
• AWS certifications.
• Experience working with Machine Learning and knowledge of data science concepts.
• Experience working with DevOps CI/CD related technologies and deployment automation techniques (e.g., Ansible, Git, Jenkins, Docker, Confluence, and Junit).

This position has a target range for compensation of $108,000 - $120,000.  This is a firm fixed price contract and does not allow for negotiations outside of this target range.

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.