Provide auditing and compliance duties including Audit Readiness Support to the client. Continually analyze the client's overall enterprise audit readiness process design and provide recommendations on how effectiveness could be improved to mitigate conditions that could impair future audit preparedness. Perform other audit readiness activities including reviewing and evaluating OIG findings and providing recommendations for improvements before submission. Contribute to OIG and Agency level presentations; participate in audit finding debriefs to represent OIT interests; and develop responses for notices of findings and recommendations (NFR) and audit reports on behalf of OIT and Agency. Perform remediation activities for high priority findings. Establish and deliver workshop sessions to educate impacted stakeholders on the contents of their audit readiness packages. This position is located in Washington, DC.
Empower change with us.
8+ years of experience with FISMA, OMB Circulars, and executing NIST risk and security control guidelines and special publications or documents
Knowledge of cyber threat capabilities and technical capabilities to defend networks and systems
Knowledge and strong understanding of network operating systems, SLAs, and service expertise
Ability to work effectively as a member of a team and be comfortable informing or briefing senior officials when appropriate
Ability to obtain a security clearance
Nice If You Have:
5+ years of experience in a lead role working on IT audits and assessments
Knowledge of networking fundamentals, enterprise risk management, and NIST Risk Management Framework (RMF)
Possession of excellent oral and written communication skills to analyze cybersecurity vulnerability details and escalate appropriately
Possession of excellent initiative and critical thinking skills
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.
Build Your Career:
Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.
Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.
Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.
Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.
Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.
We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.#LI-AH1, DH1