Information Systems Security Officer

Key Role:

Support Army efforts, leveraging experience in information security and cybersecurity guided by the NIST Risk Management Framework (RMF) during the Assessment and Authorization process. Provide guidance in the modification and review of existing ATO documentation, and proactively provide insight into the documentation packets for ATO. Communicate risks with the internal team and client and integrate information assurance solutions within architecture, system, or system components. Participate in information systems (IS) risk assessments, continuous monitoring, and design of security mitigation or remediation solutions for identified risks. Ensure the architecture and design of Army IS, is functional and secure and use expertise and judgment to plan and accomplish security-related goals. Support system or network designs that encompass multiple data centers or networks, including those with differing data protection and classification requirements. Report to the internal Team Lead and Security Controls Assessor (SCA) for IA issues and concerns with separate reporting to senior management for network operational requirements, as necessary.

Basic Qualifications:

• 5+ years of experience with NIST RMF policies, including continuous monitoring and information system security policies, standards, and procedures

• 3+ years of experience with supporting system ATO processes and creating artifacts, control implementation details, and POAMs

• Experience with National Institute of Standards and Technology (NIST) security controls, the Governance, Risk Management, and Compliance (GRC) security documentation tool, Risk Management Framework (RMF), and security compliance processes

• Knowledge of the DoD RMF process

• Knowledge of DoD A&A processes and standards

• Secret clearance

• HS diploma or GED

• Security+ Certification

• Certified Information Security Manager (CISM), Certified Information System Security Professional (CISSP) or Associate, or Governance, Risk, and Compliance Certification (CGRC)

Additional Qualifications:

• Experience with Enterprise Mission Assurance Support Service (eMASS), Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), Ports, Protocols, and Services Matrix, Vulnerability Remediation Asset Manager (VRAM), and Host-Based Security System

• Experience with using Microsoft Office products, including Word, Excel, PowerPoint, and Visio

• Experience with managing the authorization status of DoD RMF from step 1 through step 6

• Ability to interface with senior leadership

• Ability to prioritize and react to changing requirements with a sense of urgency to meet deliverables on time

• Ability to manage and prioritize work independently

• Ability to juggle multiple tasks, tight deadlines, and changing priorities

• Possession of excellent verbal and written communication skills

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.