The Challenge:

Everyone knows security needs to be "baked in" to a system architecture, but you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your cyber engineering skills to lead the design and building of secure systems for the Department of Defense? We're looking for an engineer who can create solutions that will stand up to even the most advanced cyber threats.

As a lead security engineer on our project, you'll design and support the implementation of new security tools and technologies. You'll coordinate work with the client to identify the right mix of tools and techniques to translate your customer's IT needs and future goals into a plan that will enable secure and effective solutions. You'll document all configuration changes as well as software and hardware versions using the appropriate office documentation processes. We need to come up with the best solution, so you'll advise on new techniques, break free from the legacy model, and go where the industry is going. You'll lead the team through a critical approach to network design, providing alternatives and customizing solutions to maintain a balance of security and mission needs.

Empower change with us.

You Have:

• 15+ years of experience with cybersecurity

• Experience in information or cybersecurity solution engineering with security tools and devices, including network firewalls, web proxy, intrusion prevention system, vulnerability scanner, penetration testing tools, and log review and analysis

• Experience with implementing enterprise endpoint detection and response security, including McAfee ePolicy Orchestrator, McAfee Endpoint Security (ENS), DoD Host Based Security System (HBSS), or DoD Endpoint Security Solutions (ESS)

• Experience with Nessus Vulnerability Scanner implementation, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and Firewalls, including Palo Alto NGFW

• Experience with SIEM technologies, including SolarWinds and Splunk, and SOAR and User Activity Management architecture

• Experience engineering and deploying cybersecurity tools in cloud environments

• Knowledge of Federal compliance standards, including NIST 800-53, FIPS, FedRAMP, Security Technical Implementation Guides and the latest information assurance vulnerability alerts (IAVAs), Common Vulnerabilities and Exposures (CVE), and implementing appropriate mitigations

• TS/SCI clearance

• HS diploma or GED

• Ability to obtain 8140/8570 IAT or IAM Level II Certification within 30 days of hire

Nice If You Have:

• Experience with building and administering Windows Server and Active Directory along with managing security operations, including identity and access control, secure configuration management, network security, enforcement policy scripting, workload security, data security, and logging

• Experience with network ports and protocols management

• Knowledge of web service technologies, application of encryption, and common authentication protocols

• Ability to perform as the primary liaison between the system security engineers and coordinate with the information system security manager and system owner

• 8140/8570 IAT or IAM Level III Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people-that's Booz Allen cyber. When you join Booz Allen, we'll help you develop the career you want.

• Competitions - From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we've got plenty of chances for you to show off your skills.

• Paid Research - Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

• Cyber University - CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere-including your phone-and certification exam prep guides that include practical assessments to prepare you for your exam.

• Academic Partnerships - In addition to our tuition reimbursement benefit, we've partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity-fully funded without a tuition cap.

• Maker/Hackerspaces - Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We're an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.