Information Assurance Security Engineer, Senior

Key Role: Lead a team of security engineers providing support to adequate security controls to protect sensitive information from unauthorized access, disclosure, modification, or destruction. Assist in the identification and classification of technical security requirements and specifications, the gauging of enterprise and system security designs and related architectures, and consideration and examination of suitable commercial off-the-shelf solutions for specified technical engagements. Evaluate and review network, data, application, and systems security, including configuration management, identification, authentication, and authorization methodologies, network, application, process, and infrastructure asset inventory and mapping, system management and patching, infrastructure discovery, and related protection practices. Conduct risk-based design reviews and analyses throughout the enterprise life-cycle beginning at the requirements. Perform identification of technological and functional risks through interrogation of the system functionality, system exposure, and data sensitivity to determine required security controls. Develop security policy and guidance specific to enterprise systems in support of federal mandates, agency missions, and business processes and procedures. Provide security stage on through system deployment and provide engineering expertise to assist in the development and delivery of security documentation packages for systems consistent with federal requirements, including the NIST SP-800 series.



Basic Qualifications:

-7+ years of experience with security engineering

-Experience with multiple functional areas and technologies in the security field, including security engineering, information assurance methodologies, security management practices, and security architecture models

-Ability to lead a security engineering team

-Knowledge of minimum IT security management, operational, and technical controls

-Knowledge of various OMB, FISMA, NIST, and FIPS Guidance

-BA or BS degree

 

Additional Qualifications:

-BA or BS degree in CS, Engineering, Information Systems, Computer Security, or a related field

-Certifications in CISSP, GIAC, MCSE, CCNA, CCNP, CCSE, or equivalent
-Knowledge of technologies, including secure software development, network and Internet security, access control systems and methodologies, applications and systems development, business continuity planning, and cryptography

-Knowledge of conducting security risk assessments or risk-based reviews

-Knowledge of UNIX, RACF, Wireless, IPv6, Windows Security, and Software Development Life Cycle

-Possession of excellent analytical, researching, editing, and organizational skills

 

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

 

Integrating the full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems, working by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.

 

We are proud of our diverse environment, EOE, M/F/D/V.

 

To apply, go to: