Cloud Security Lead

Key Role:

Perform security compliance activities (including security controls assessment, annual control assessment, and other risk-based security activities for FedRAMP and FISMA engagements) as part of a managed cloud services team in accordance with National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) Step 4. Work with an integrated team of federal and contractor security professionals to support an agency's internal IT security program (FISMA audit) assessments. Manage vulnerability remediation and security compliance of the platform.This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Basic Qualifications:

• 5+ years of experience working in a professional environment

• Experience with NIST 800-53 Security Controls

• Experience with FedRAMP/FISMA RMF

• Ability to provide solutions for a complex environment and assess and discover weaknesses within the organization's security posture

• Ability to provide technical recommendations for security solutions

• Ability to obtain a security clearance

• Bachelor's degree

• Certified Information System Security Professional or Associate (CISSP) or Cisco Certified Network Associate Security (CCNA Security), Cisco Certified Network Associate Cyber Security Operations (CCNA Cyber Ops), Cybersecurity Analyst (CySA+), GIAC Certified Incident Handler (GCIH), GIAC Systems and Network Auditor (GSNA), GIAC Certified Intrusion Analyst (GCIA), Certified Information Systems Auditor (CISA), Certified Secure Software Lifecycle Professional (CSSLP), Certified Information Systems Security Officer (CISSO), CyberSec First Responder (CFR), CompTIA Advanced Security Practitioner Continuing Education (CASP+ CE), CompTIA Cloud+ (Cloud+), Global Industrial Cyber Security Professional (GICSP) or Securing Cisco Networks with Threat Detection Analysis (SCYBER) Certification

Additional Qualifications:

• 3+ years of experience in working with cloud platforms, including AWS, Azure, or GCP

• Experience with using security tools, including Nessus, Splunk, TrendMicro, Tenable

• Experience with AWS native security services, include Security Hub, GuardDuty, AWS Inspector

• Knowledge of building data pipelines in AWS, Azure, or GCP

• Knowledge of operating in an Agile or Scrum environment

• Master's degree in Computer Science or Cybersecurity

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Compensation:

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

The salary for this position will be determined based on various factors. The proposed salary range for this position in Colorado is 145,000 to 160,000.

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.