Enterprise Security Architect
Company: Booz Allen Hamilton
Location: Arlington
Posted on: March 16, 2023
Job Description:
Job Number: R0166547
Enterprise Security Architect The Challenge: Everyone knows
security needs to be "baked in" to system architecture, but do you
know how to bake it in? You can identify and implement ways to
harden systems and reduce their attack surface. What if you could
use your cyber architecture skills to design and build secure
systems for one of the largest software factories in the DoD?We're
looking for an architect who can create solutions that will stand
up to even the most advanced cyber threats. As an enterprise
security architect on our project, you'll be responsible for
operating, securing, and monitoring the cloud infrastructure,
including system hardening, patching, and vulnerability management.
You'll coordinate work with other workstreams and our government
client to identify the right mix of tools and techniques to
translate the customer's IT needs and future goals into a plan that
will enable secure and effective solutions. We need to produce the
best solution, so you'll investigate new techniques, break free
from the legacy model, and go where the industry is going. As a
team, we'll take a critical approach to network design, providing
alternatives and customizing solutions, to maintain a balance of
security and mission needs. This is a chance to make a difference
in the security of software delivery to a State-of-the-Art
multirole warfighter. Your technical expertise will be vital as you
help customers overcome their most difficult challenges by
integrating secure practices like endpoint-based detection and
response (EDR), multi-factor authentication, and identity and
access management (IdAM). You'll be able to broaden your skillset
into areas like automation and orchestration of security events,
cloud-based security, application security, and zero-trust
architecture while building peace of mind in critical
infrastructure. Join our team, as we improve the mission through
cybersecurity. Empower change with us. You Have:
- 4+ years of experience with systems engineering of information
systems
- Experience deploying and managing HBSS and McAfee endpoint
products, including Endpoint Security (ENS), HIPS, or DLP
- Experience deploying and managing ACAS
- Experience with web servers such as Apache, NGINX, and IIS, and
automation, including Ansible
- Experience with NIST 800-53 and NIST 800-190
- Knowledge of centralized logging, boundary defense, web app
firewalls, system patching, RBAC, vulnerability Scanning, and
Recursive DNS Scanning
- Secret clearance
- HS diploma or GED
- DoD 8570 IAT Level II or Level III Certification
- DoD 8570 IAM Level II or Level III Certification Nice If You
Have:
- Experience with scripting languages, including PowerShell,
Bash, or Python
- Experience writing necessary documentation
- Experience with Docker and Kubernetes environments
- Knowledge of the Cybersecurity risk management process and
Cybersecurity tools used in DoD environments
- Knowledge of governance, risk, and compliance strategies and
tools
- Knowledge of Amazon Web Services (AWS), Ubuntu, RHEL, and
Windows Server
- Knowledge of Active Directory and GPO
- Knowledge of Zero trust architectures, including Beyond Corp
and SDP
- Knowledge of Istio
- Bachelor's degree in CS, Cybersecurity, Cloud, or IT Clearance:
Applicants selected will be subject to a security investigation and
may need to meet eligibility requirements for access to classified
information; Secret clearance is required. Build Your Career:
Rewarding work, fun challenges, and a ton of investment in our
people-that's Booz Allen cyber. When you join Booz Allen, we'll
help you develop the career you want.
- Competitions - From programming competitions at our PyNights
(Python competition and learning events) to competing in CTFs,
we've got plenty of chances for you to show off your skills.
- Paid Research - Have an innovative idea to explore or
hypothesis to test? You can participate in challenges via our
crowdsourcing platform, the Garage, and other programs to be
awarded dedicated time and/or funding to advance your skills.
- Cyber University - CyberU has more than 5000 instructor-led and
self-paced cyber courses, a free online library that you can access
from just about anywhere-including your phone-and certification
exam prep guides that include practical assessments to prepare you
for your exam.
- Academic Partnerships - In addition to our tuition
reimbursement benefit, we've partnered with University of Maryland
University College to offer two graduate certificate programs in
cybersecurity-fully funded without a tuition cap.
- Maker/Hackerspaces - Race drones, print 3D gadgets, drink
coffee from our Wi-Fi coffee maker, and get hands-on training on
tools and tech from in-house experts in our dedicated maker and
hackerspaces. Compensation At Booz Allen, we celebrate your
contributions, provide you with opportunities and choices, and
support your total well-being. Our offerings include health, life,
disability, financial, and retirement benefits, as well as paid
leave, professional development, tuition assistance, work-life
programs, and dependent care. Our recognition awards program
acknowledges employees for exceptional performance and superior
demonstration of our values. Full-time and part-time employees
working at least 20 hours a week on a regular basis are eligible to
participate in Booz Allen's benefit programs. Individuals that do
not meet the threshold are only eligible for select offerings, not
inclusive of health benefits. We encourage you to learn more about
our total benefits by visiting the Resource page on our Careers
site and reviewing Our Employee Benefits page. Salary at Booz Allen
is determined by various factors, including but not limited to
location, the individual's particular combination of education,
knowledge, skills, competencies, and experience, as well as
contract-specific affordability and organizational requirements.
The projected compensation range for this position is $65,300.00 to
$149,000.00 (annualized USD). The estimate displayed represents the
typical salary range for this position and is just one component of
Booz Allen's total compensation package for employees. Work
Model
Our people-first culture prioritizes the benefits of flexibility
and collaboration, whether that happens in person or remotely.
- If this position is listed as remote or hybrid, you'll
periodically work from a Booz Allen or client site facility.
- If this position is listed as onsite, you'll work with
colleagues and clients in person, as needed for the specific role.
EEO Commitment We're an equal employment opportunity/affirmative
action employer that empowers our people to fearlessly drive change
- no matter their race, color, ethnicity, religion, sex (including
pregnancy, childbirth, lactation, or related medical conditions),
national origin, ancestry, age, marital status, sexual orientation,
gender identity and expression, disability, veteran status,
military or uniformed service member status, genetic information,
or any other status protected by applicable federal, state, local,
or international law. ID15
Keywords: Booz Allen Hamilton, Arlington , Enterprise Security Architect, Other , Arlington, Virginia
Didn't find what you're looking for? Search again!
Loading more jobs...