When our country’s cybersecurity is on the line, simply reacting is not enough – we need a plan. And when that plan needs to protect our nation's critical infrastructure, we need strategic policy and assessment development. That’s why we need you, a GRC specialist with the expertise required to analyze the policies that determine our cyber resilience.
As a cybersecurity GRC strategist on our team, you’ll lead the assessment of civil clients’ current cyber policies, the coverage of those policies, and areas of risks. You’ll evaluate how policies stack up to regulations, best practices, and industry standards. As you guide your client through understanding acceptable risk and availability, you’ll advance the development of a strategic cyber roadmap. You’ll work in a consultative role to ensure the client operates securely as they navigate an evolving IT environment. Join us as we protect our nation's critical infrastructure through strategic cyber policy development. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.
Empower change with us.
-5+ years of experience with guiding a team through phase-based maturity model assessment
-3+ years of experience with Governance, Risk, and Compliance (GRC)
-Experience with architecting, designing, or implementing Cybersecurity systems, solutions, or tools
-Knowledge of NIST SP 800-37 Rev. 2, NIST SP 800-53/A, NIST SP 800-18, NIST SP 800-60, NIST SP 800-137, NIST SP 800-39, NIST SP 800-30, FIPS 140-2, FIPS 199, and CNSSI 1253
-Ability to collaborate with project and proposal teams to incorporate Cybersecurity solutions and develop high-quality implementation plans and roadmaps
-Ability to work with senior leaders and executives to foster positive client relationships
-Ability to obtain a security clearance
Nice If You Have:
-Experience with risk scoring programs for manual and automated assessments
-Knowledge of FedRAMP criteria and the ATO process
-Ability to review, update, or develop a systems security plan
-Ability to author other technical documentation and whitepapers and blogs on leading Cybersecurity topics and concepts
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.
The proposed salary range for this position in Colorado is 130,000 to 140,000. Final salary will be determined based on various factors.
At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.
Build Your Career:
Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.
Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.
Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.
Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.
Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.
We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.