Back to all jobs

Baseline Security Engineer, Lead

Booz Allen

May 09

Baseline Security Engineer, Lead

Key Role:

Develop and implement security solutions in alignment with security strategy. Maintain an awareness of market and technology trends to bring best of breed solutions to the client. Apply leading-edge principles, theories, and concepts and contribute to the development of new principles and concepts. Work on unusually complex problems and provide highly innovative solutions. Operate with substantial latitude for unreviewed action or decision and mentor or supervise employees in both firm and technical competencies. Work closely with government stakeholders in understanding the vision and direction of the information technology program and decompose this architecture and associated use cases into discrete components that can be addressed from a cybersecurity engineering standpoint. Understand proposed and in-place architectures at a level that enables the identification and understanding of possible security risks and propose solutions for risk mitigation.

Basic Qualifications:

-Experience in working with the NIST 800 Special Publication series guidance for risk management and security control implementation, including 800-30,800-37, 800-53, 800-60, 800-63, 800-115, or 800-137

-Experience with reviewing, developing, or customizing general security configuration baselines

-Knowledge of the National Vulnerability Database (NVD) and Common Vulnerability Enumeration (CVE)

-Ability to translate the low-level security baseline requirements into high-level FISMA and NIST requirements and client-specific security

-Ability to obtain a security clearance

-Bachelor's degree

Additional Qualifications:

-Experience with one or more of the following technologies: Networking, including CISCO, Juniper, or Palo Alto, operating systems, including Windows Server, Redhat, or Linux, cloud services, including AWS, Azure, Salesforce, Okta, O365, or ServiceNow, or Mobile Technologies, including iOS or Xen Mobile

-Experience with designing, building, and implementing automation tools, including Ansible, Chef, or Puppet

-Experience with Infrastructure as Code tools, including Cloud Formations or Terraform

-Experience with container platforms, including OpenShift

-Experience with chaos engineering and blue or green deployments

-Experience with Serverless, including Lambda, API Gateway, Step Functions, and SAM

-Experience with application performance analysis and monitoring, including ELK

-Experience with an Agile release methodology

-AWS Certified Solutions Architect or Developer Certification

-CCNA, MSCE, RHCSA, EBSA or ECSS Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, DH1, ID15-C