Security Controls Assessor

Employer
Booz Allen Hamilton Inc.
Location
Washington, DC
Posted
Sep 15, 2017
Closes
Sep 18, 2017
Function
IT, Security Engineer
Industry
Security
Hours
Full Time
Job Number: R0012067Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.Security Controls AssessorKey Role:Serve as a technical security tester working in a dynamic client environment. Conduct compliance and vulnerability assessments on a broad range of systems, including mainframe, UNIX, Windows, networking, databases, virtual environments, applications, and Web servers. Use both manual and automated methodologies to identify, assess, and report security risks. Prioritize findings based on risk and document detailed corrective and remediation plans or actions. Communicate threat, vulnerabilities, and risk information to stakeholders in executive management positions in a clear manner and recommend solutions for client technical and security challenges. Provide client outreach and education on Cybersecurity requirements through oral and written communication formats. Operate in a fast-paced environment, using leadership expertise and providing thoughtful ideas of process improvements and enhancements. Basic Qualifications:-5+ years of experience with IT audits, including conducting technical security compliance tests and vulnerability assessments-Experience with conducting vulnerability assessments and compliance scanning-Knowledge of Cybersecurity threats and techniques used by adversaries to compromise systems-Knowledge of NIST SP 800 series and testing NIST SP 800-53 security controls-Ability to present IT security risk effectively to executive management, both business and technical-Ability to lead teams-Ability to be detail-oriented and organized and plan and prioritize multiple tasks-Ability to work independently and as part of a multi-disciplined and dynamic team-Ability to obtain a security clearance-BA or BS degree Additional Qualifications:-Security+, CISA, CEH, or CISSP Certification Clearance:Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure. We are proud of our diverse environment, EOE, M/F/Disability/Vet.