Information Security Engineer, Senior

Full Time
McLean, VA
Industry: Management Consulting
Areas of Interest: Information Assurance (IA) Compliance, Threat Analysis, Vulnerability Assessment and Management
report a problem



Conduct SDLC gate or peer reviews or quality assurance activities. Identify product quality improvement opportunities and customize quality assurance programs for projects based on environmental factors. Implement best security practices into a DoD development and sustainment environment. Administer C&A activities for development, test, and production systems to maintain compliance with DoD 8500 series publication and FISMA. Perform artifact development, vulnerability assessments and remediation, IA control review, POA&M development and tracking, and Linux system administration. Coordinate with the government specified C&A team to track, remediate security defects, including IAVM, STIGs, and OPORDs, and report compliance status into eMASS. Support the preparation of the necessary documentation to describe the protection and sustainment of the information assurance requirements.

Basic Qualifications:

  • 5 years of experience with information assurance and security practices, including IT audit, FISMA, and other IT security-related compliance processes
  • 1+ years of experience with Risk Management Framework (RMF)
  • 1 year of experience with Linux system administration
  • Experience with certification and accreditation support using DIACAP
  • Experience with conducting vulnerability assessments and compliance and remediating vulnerabilities
  • Experience with DoD IA policies, including DoD 8500 series and DoD STIGs
  • Active Secret clearance
  • BA or BS degree
  • Information Assurance Certification in accordance with DODI 8570.1 IAM III, including CISSP, CISM, and GSLC

Additional Qualifications:

  • Experience with working in an environment with Linux and Open Source technology
  • Experience with eMASS and VMS
  • Knowledge of security and information assurance technologies and best practices
  • Knowledge of current security issues and trends, including virtualization, application security, Web services, prevention, detection, and monitoring
  • Ability to brief technical and non-technical audiences on security threats, vulnerabilities, and risks
  • Possession of excellent oral and written communication skills


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.


Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.


We are proud of our diverse environment, EOE, M/F/Disability/Vet.



Share this job:

Booz Allen Hamilton

Your Essential Partner
Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Visit Booz Allen Hamilton's Social Media pages:
Company Industry: Management Consulting
Company Type: Public Company
Company Size: 10,001+