Build Your Career in Cybersecurity -
YOUR WAY

NA

• Responsible for all activities involving quality assurance and compliance with applicable regulatory requirements; conducts audits and reviews/analyzes data and documentation.
• Perform cybersecurity engineering, information system or network self-assessments, and independent security control assessments IAW NIST SP 800-30, 800-37, 800-39, 800-53A, 800-137, Committee on National Security Systems Policy No. 22, CNSSI No. 1253 and 1254, DoDD 8000.01, DoDI 8500.01, DoD-I 8510.01, etc.
• Review system and network System Security Plans and Authority to Operate (ATO) packages within eMASS for completeness and accuracy leading to a favorable authorization decision.
• Prepare oral and written communication to develop and maintain the system security plan; prepare and present reports and recommendations; and prepare and update manuals, instructions, and operating procedures.
• Evaluate computer systems design, prototypes, and computer applications from an operational test and evaluation perspective for cybersecurity to perform tactical cyber security test and evaluation planning.
• Develop cybersecurity documentation such as SOPs/TTPs, system and network diagrams (boundary, data flow, network, etc), POA&Ms, Risk Assessment and Analysis Reports, etc.
• Apply and or assess applicable STIGs for assigned information systems and/or networks.

Required Qualifications

• 5 or more years’ experience in Cybersecurity or Information Assurance.
• DoD 8140 IASAE II certification (CASP or CISSP)
• Active DoD Secret Clearance
• Ability to travel approximately 25% based on mission requirements

​

Preferred Qualifications

NA

NA

Summary: The Business Information Security Officer (BISO) is responsible for partnering between the Omnicell Information Security Team and their line of business constituency helping the business understand and implement security policies and processes. The Sr. Manager is responsible for leading and managing resources within the security team. This role is responsible for building out the BISO team to serve as trusted advisors, skilled communicators, and security advocates, additionally the Sr. Manager will work hand in hand with business leaders building out a robust and resilient security posture.

​

Company Overview: NA

• Champion Security within the Business: Drive the adoption of cybersecurity controls across business units through clear communication, education, and stakeholder engagement. Advocate for and communicate the impact of security policies and changes to business leaders.
• Strategic Alignment: Align information security priorities and initiatives with the overall business strategy and roadmap.
• Security by Design: Partner closely with product and engineering teams to embed security principles into the design and development of new features and products.
• Risk Management & Compliance: Support the Information Technology Risk Program by collaborating with business units to document and address exceptions to security policies.
• Risk Assessment: Advise business unit management on information security risks and recommend appropriate mitigation strategies aligned with company policies and regulatory requirements.
• Vulnerability & Threat Management: Drive the remediation or mitigation of vulnerabilities, security audit findings, penetration test results, and other identified security risks.
• Performance & Reporting: Define, track, and report key performance indicators (KPIs) and metrics related to information security to both technical and non-technical audiences.
• Team Leadership & Development: Oversee the day-to-day management of a geographically dispersed team. Foster a high-performing team environment by providing guidance, mentorship, and career development opportunities.
• Security Awareness & Culture: Contribute to and lead company-wide security awareness initiatives and materials. Cultivate a strong security culture across the organization by fostering a "security advocate" mindset.
• Emerging Technology & Incident Response: Proactively communicate and plan for the adoption of emerging technologies within the context of information security. Participate in and support cybersecurity incident response activities as needed.

Required Qualifications:

• Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.
• Knowledge of security and control frameworks, such as NIST, ISO, HITRUST, and HIPAA Security with applicable knowledge of best practices.
• Understanding of Docker, Kubernetes, container security best practices.
• Expertise in Cloud Computing Security.
• Healthcare, Pharmacy or Medical Device Experience.
• Demonstrable experience with understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.
• Demonstrable experience with the ability to work effectively with diverse teams and varying personalities and adapt management style to effectively reach mutually beneficial outcomes.
• Strong Risk management and remediation skills.
• Demonstrated management of remote teams.
• Excellent communication skills and the ability to translate highly complex technical concepts and processes to the language of the business.

​

Basic Qualifications:

• Bachelor’s Degree plus 8 years’ Information Technology experience OR HS Diploma/GED plus 10 years information technology experience.
• 5 years management experience in IT related applications, processes, and procedures.
• Proven experience partnering with an engineering and product team to bring about a security-first mindset.

​

Preferred Qualifications:

• Security Certifications: CISSP, CISA, CRISC or CISM.
• Technical Certifications: AWS Security Specialist.

Work Conditions:

• Hybrid (Dallas or Austin) / Office Environment.
• Flexibility to be available occasionally outside of regular business hours/weekends.
• Occasional travel up to once per quarter.

The Opportunity:

​

Everyone is trying to “harness the cloud,” but not everyone knows how to secure it. As a cloud security architect, you know how to assess and implement requirements that ensure the safety of information systems and protect them against intentional or inadvertent access or destruction. What if you could use your advanced cloud security skills to improve mission critical applications for the Intelligence Community (IC)? We need you to guide the development of cloud-based security architectures for some of the IC's most critical systems.

​

As a Cloud Security Architect on our team, you’ll evaluate and support the documentation, validation, assessment, and accreditation processes necessary to ensure Information Technology (IT) systems meet the organization’s Information Assurance (IA) and security requirements. You'll assist in defining an organizations’ state and risk thresholds and analyze actual state information to assess compliance. You'll work with leaders to assist with codifying strategic objectives into doctrine, policies, and procedures that can help meet defined objectives. You'll assist with evaluation of computer applications, software, or specialized utility programs to determine if software assurance best practices are followed. You’ll recommend tools and capabilities based on your research of the current environment and knowledge of various on-premise, cloud-based, and hybrid resources to address the risk management framework (RMF). Your technical expertise will be vital as you work with IC clients to ensure standards are met with information assurance and security requirements.

​

This is an opportunity to use the latest cloud technologies as you look for ways to secure your customer’s environment while collaborating with tomorrow’s cloud security experts.

​

Help us transform and secure critical applications with cloud technology.

​

Join us. The world can’t wait.

NA

You Have:

• 5+ years of experience developing and evaluating security documentation, including system security plans, contingency plans, security procedures, and continuity of operations plans
• 5+ years of experience with cloud security architecture evaluations, guidance development, and troubleshooting
• 5+ years of experience with the Risk Management Framework (RMF)
• Experience working in an Agile development environment using the Jira tracking tool
• TS/SCI clearance with a polygraph
• HS diploma or GED and 9+ years of experience with Information Assurance and security requirements, or Bachelor’s degree and 5+ years of experience with Information Assurance and security requirements
• Security+ CE, SSCP, CCNA-Security, or GSEC Certification

​

Nice If You Have:

• Experience with the software development lifecycle (SDLC)
• Experience with cloud technologies
• Possession of excellent team leadership, development, and client relationship skills
• Possession of excellent interpersonal skills to successfully interact with clients, engineers, and managers
• Possession of excellent verbal and written communication skills
• Bachelor’s degree in Systems Engineering, Software Engineering, or Electrical Engineering

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

​

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

​

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $84,600.00 to $193,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

​

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

​

Work Model

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

​

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.