Apply on Employer Site

Booz Allen Hamilton · 12 hours ago

Information System Security Manager

San Antonio, TX

Full-time

Hybrid

Senior Level

$99K/yr - $225K/yr

7+ years exp

Booz Allen Hamilton is a leading consulting firm, and they are seeking an Information System Security Manager. This role involves managing security-related programs, assessing potential threats, and developing solutions to complex security challenges while supervising first-level supervisors and managers.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Manages the day-to-day operations and effectiveness of security-related programs and initiatives

Assesses the costs associated with potential threats and solutions required to eliminate or minimize threats

Applies advanced theories, principles, and concepts

Contributes to the development of new principles and concepts

Leads the development of solutions to highly complex problems

Generally, works with wide latitude for unreviewed action or decision

Holds responsibility for the supervision and development of first-level Supervisors and Managers

Qualification

Risk management methodologiesCybersecurity leadershipSecurity controls implementationATO authorization packagesCompliance analysisAudit log reviewsDoD 8570 CertificationCyber-related toolsOrganizational skillsCommunication skills

Required

7+ years of experience implementing risk management methodologies contained in best practice documentation, such as NIST SP 800-30, SP 800-53, SP 800-128, SP 800-160, SP 800-171, or CIS benchmarks, in support of system security configurations, practices, and oversight

3+ years of experience providing cybersecurity leadership in an ISSM capacity and interfacing with internal and external SMEs, such as PMs, Cyber Assessors, and AOs

Experience with control implementations associated with RMF, FedRAMP, ICD 503, and DoD Information Levels, including applying them to the design and implementation of IT solutions to achieve system authorizations

Experience implementing and maintaining security controls within AWS cloud, containerized, CI/CD pipeline, and agile development environments

Experience developing and reviewing ATO authorization packages in Xacta or eMASS

Experience in analyzing compliance and vulnerability scan results and implementing appropriate mitigations

Experience performing audit log reviews to detect anomalous behavior in information systems and networks, and overseeing continuous monitoring activities

Active TS/SCI clearance; willingness to take a polygraph exam

HS diploma or GED

DoD 8570 IAT III or IAM III level Certification, such as CISSP Certification

Preferred

Experience with DoD security technical implementation guides (STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tools

Experience with cyber-related tools, such as Ansible, Terraform, Splunk, or STIG Viewer

Ability to work through challenging security requirements to maintain compliance

Possession of excellent organizational and presentation skills

Possession of excellent verbal and written communication skills