Back to all jobs

IAM Security Governance SME, Mid

Booz Allen

Dec 31

IAM Security Governance SME, Mid

Key Role: 

Provide guidance on implementing IAM related controls and enforcing IAM policy. Support an identity proofing application to achieve Identity Assurance Level 2 (IAL-2) certification. Provide technical assistance and expertise in developing and deploying security components protecting against inside and external threats for our client. Support daily operations to help grow and mature current cyber security environment. 

Basic Qualifications:

  • 5+ years of experience with security assessment, audit readiness, and security engineering
  • Experience with managing and track security project tasks, including security controls development and implementation, security testing and remediation, compliance tracking, and documentation for in-house assets
  • Experience working with technical POCs to ensure system documentation reflects current system security configurations, including hardware and software components, data flow, interconnections, and ports, protocols, and services
  • Experience with preparing for and performing an IT assessment, ideally in accordance with the NIST 800-53
  • Experience with developing and updating procedural documents in accordance with organization policy and NIST standards
  • Ability to provide client support during the external cyber assessment and help track and remediate findings and deficiencies
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
  • Bachelor's Degree

Additional Qualifications:

  • Experience with IT operations, network monitoring tools, and system administration
  • Experience with Zero Trust Framework, including NIST SP 800-207, ICAM Framework, such as CISA and GSA, NIST 800-53 rev4 and NIST 800-63A rev3 and changes made in rev5)
  • Experience with documenting residual risks and provide the cybersecurity risk analysis and mitigation determination results
  • Ability to provide overall security governance on identity and access management across an enterprise 
  • Ability to lead the preparation, system categorization, control selection, and control implementation for an Identity proofing application, ensuring it follows industry standards, addressing NIST 800-53 moderate controls to obtain IAL-2 certification and for the Certification and Accreditation (C&A) process to obtain and retain Authority to Operate (ATO)
  • Ability to work with the technical POCs to develop procedural documents and security diagrams in accordance with industry standards such as Zero Trust Framework and NIST 800-53 
  • Ability to communicate IT, networking, and security concepts to personnel at all levels of experience and responsibility
  • Ability to work both independently and as a member of a team and to write comprehensive reports and senior level documentation
  • Ability to work quickly, efficiently and accurately in a dynamic and fluid environment
  • Possession of excellent oral and written communication skills across all levels
  • Possession of excellent multi-tasking, organizational skills, including critical thinking

Clearance:

Applicants selected may be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, DH1