Cybersecurity and Network Protection Engineer

The Opportunity:

Join us as we seek a skilled professional to leverage their expertise in cybersecurity compliance, vulnerability management, and risk-based decision-making to support vital national security missions. As a Cybersecurity and Network Protection Engineer, you will have the chance to identify the necessary tools, technologies, and security controls required to assess vulnerabilities and propose optimal solutions and security strategies. Your leadership will be crucial in developing and implementing security solutions that strengthen our security posture and ensure mission-critical operations across Department of Defense and Intelligence Community environments.

In this position, you will tackle complex challenges using your in-depth knowledge of vulnerability management, risk management framework (RMF) processes, and security control implementation. Your passion for technology and awareness of market trends will aid in researching and crafting security solutions. You will utilize your skills in tools such as ACAS, Nessus, and Splunk to evaluate security threats and apply necessary infrastructure controls.

Success in this role requires strong attention to detail, the ability to prioritize effectively, and a proactive problem-solving approach. You will manage various initiatives, maintain visibility into ongoing activities, and contribute to steady progress across security projects.

This role will have a direct impact on crucial national security environments, promoting system authorization, reducing cybersecurity risks, and ensuring compliance with Department of Defense security standards. Join our team for a dynamic environment that fosters mentorship, hands-on problem-solving, and continuous learning to craft the best solutions for our clients.

What You'll Work On:

• Establish swift and effective relationships with other teams while communicating intricate security concepts to a broad audience, including senior management.
• Implement cyber and infrastructure security controls to enhance detection capabilities and improve event correlation in expansive enterprises.
• Conduct risk and vulnerability assessments across network, system, and application areas, utilizing both big data analytics and traditional security event types to pinpoint advanced threats or signs of compromise.

Join us. The world can't wait.

You Have:

• 3+ years of experience in supporting cybersecurity for IT systems, specifically in vulnerability management or RMF activities.
• Experience in developing or assisting with RMF artifacts and Authorization to Operate (ATO) packages.
• Familiarity with vulnerability scanning tools like ACAS and Nessus, along with remediation tracking and Plan of Actions and Milestones (POA&M) management.
• Strong understanding of the RMF lifecycle, NIST SP 800-53 security controls, and Security Technical Implementation Guide (STIG) application.
• Ability to manage assigned systems or program areas independently.
• Effective communication skills to convey technical findings in written formats, including control narratives and risk justifications.
• Capability to collaborate directly with engineering teams and navigate technical discussions.
• Meets DoD 8140 Cyber Workforce requirements for assigned roles.
• TS/SCI clearance is required.
• Bachelor's degree in a STEM field with 3+ years of experience in cybersecurity or engineering, or 5+ years of relevant experience in place of a degree.

Nice If You Have:

• Experience supporting an ATO or reauthorization throughout its entire lifecycle.
• Experience presenting to leadership regarding risk posture, vulnerabilities, or compliance status.
• Ability to build Splunk dashboards or produce security-relevant reporting metrics.
• Background in Agile or sprint-based working environments.
• Experience coordinating remediation initiatives across various stakeholders.
• Expertise in developing or maintaining governance documentation, such as System Security Plans (SSP), Information Security Program Plans (ISPP), and policy updates.
• Knowledge of Information System Security Officer (ISSO) or Information System Security Manager (ISSM) support.
• Experience in classified environments.
• Ability to enhance clarity in documentation or compliance workflows.
• Cybersecurity certifications such as CISSP or CASP+ are a plus.

Clearance:

Applicants selected will undergo a security investigation and must meet eligibility requirements to access classified information; a TS/SCI clearance is necessary.

Compensation:

At Booz Allen, we appreciate your contributions, offer opportunities and choices to support your overall well-being. Our benefits include health, life, disability, financial, and retirement packages, along with paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges exceptional performance and demonstration of our core values. Employees working at at least 20 hours a week on a regular basis qualify for participation in Booz Allen's benefit programs.

The projected salary range for this role is between $99,000.00 and $225,000.00 (annualized USD). This estimate reflects the typical salary range for this position, which is just one component of Booz Allen's comprehensive compensation package. This posting will close within 90 days from the posting date.

Identity Statement:

As part of the hiring process, you will be required to complete an identity verification process utilizing advanced biometrics and artificial intelligence to ensure authenticity and prevent identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture for identity verification purposes.

Candidate AI Usage Policy:

AI tools are integral to our daily operations at Booz Allen, and we prioritize their responsible and ethical use. To ensure a fair candidate experience, the use of AI or other tools to assist with responses during interviews is prohibited unless prior explicit permission is granted.

Work Model:

Our people-first culture values collaboration, whether in-person or virtual. To foster engagement and effective communication, employees working remotely are generally expected to keep their cameras on during meetings.

• Remote: If the position is listed as remote, there may still be instances where you will be required to work at a Booz Allen or client facility.
• Hybrid: If this position is hybrid, you’ll frequently work from a Booz Allen facility, aligned with leadership expectations and the role's needs. Visits to client facilities may also be necessary.
• Onsite: If this position is onsite, your work will primarily take place at a Booz Allen office or client facility, providing direct collaboration with colleagues and clients as required.

Commitment to Non-Discrimination:

All qualified candidates will be considered for employment without regard to disability, status as a protected veteran, or any other protected status under applicable federal, state, local, or international law.