Back to all jobs

Information System Security Officer (ISSO)

Booz Allen

Jul 21

Information System Security Officer (ISSO)

The Challenge:

Warnings about cyber threats are everywhere and the constantly evolving nature of these threats can make understanding them seem overwhelming to the Booz Allen firm. In all of this “cyber noise”, how can these organizations understand their risks and how to mitigate them? The answer is you – build your knowledge as an information security risk specialist who knows how to break down complex threats into manageable plans of action.

As an information security risk specialist on our team, you’ll work with the Enterprise Technology Services & Solutions team to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You’ll get technical, environmental, and personnel details from on-site team members to assess the entire threat landscape. Then, you’ll help your team guide the firm’s corporate infrastructures through a plan of action with presentations, whitepapers, and milestones. You’ll work on translating security concepts for the firm so they can make the best decisions to secure the firm’s corporate infrastructures and applications. This is your opportunity to take an active role in information security while growing your skills in cloud technology, cybersecurity and risk management, AI and ML, data science and management, and virtualization. Join us as we protect America's warfighting systems! This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Empower change with us.

You Have:

  • 1+ years of experience with auditing moderately complex information system applications to ensure appropriate security controls are in place
  • 1+ years of experience with conducting CIS Benchmarks or STIG compliance and enterprise level vulnerability scans
  • 1+ years performing Information System Security Officer duties and responsibilities
  • Experience using automated configuration tools including SCC that utilize Security Content Automation Protocols (SCAP) and CIS Controls Self-Assessment Tool (CSAT) Pro
  • Experience implementing and supporting NIST Risk Management Framework (RMF) and Cybersecurity Maturity Model Certification (CMMC) security control sets
  • Experience using tools such as ACAS, Nessus Security Center, Enterprise Mission Assurance and Support Services (eMASS) and RSA Archer
  • Ability to obtain a security clearance
  • HS Diploma or GED


Nice If You Have:

  • Experience as an ISSE or ISSM
  • Experience with Cloud Security
  • Bachelor's Degree


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.


The proposed salary range for this position in Colorado is $61,400 to $102,300. Final salary will be determined based on various factors.

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

  • Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

  • Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

  • Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

  • Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

  • Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.