Enterprise Security Architect

Enterprise Security Architect

Key Role:

Lead the planning and tracking of Governance, Risk, and Compliance (GRC) work efforts and deliverables, ensuring alignment with department objectives and regulatory timelines. Establish a centralized source for work efforts for prioritization and workforce planning. Organize and facilitate recurring team meetings, ensuring accountability, ownership, and progress tracking across initiatives. Develop and manage dashboards and reporting frameworks to track Service levels such as SLAs and SLRs, key performance indicators (KPIs), compliance posture, and risk metrics. Partner with workstream leads to ensure accurate, automated reporting to senior leadership and audit stakeholders on a regular schedule. Collaborate with workstream leads to translate high-level goals into detailed annual plans and actionable quarterly objectives with clear owners, milestones, and action items, ensuring effective implementation. Identify gaps and inefficiencies in current GRC operations. Work with workstream leads to design and implement improvements to workflows, tools, and processes. Define, communicate, and implement security architecture to support mission-critical operations and security assessments to maintain our client's ATO and security requirements. Work with the clients' GRC team and our internal product teams to ensure standards are met with information assurance and security requirements. Ensure up-to-date documentation to support audit readiness and organizational transparency. Due to the nature of work performed within this facility, U.S. citizenship is required.

Basic Qualifications:

• 4+ years of experience with IT, information security, or cybersecurity, including GRC, compliance, risk management, or business operations

• 3+ years of experience with performing system or risk assessments or accreditations in accordance with FISMA, NIST 800-53, or the Risk Management Framework (RMF)

• 2+ years of experience in vulnerability management and reporting using Splunk and AWS Security Hub

• 2+ years of experience in a leadership or project management role, including leading cross-functional projects and managing operational metrics within regulated environments

• Experience analyzing impacts of new Common Vulnerabilities and Exposures (CVEs) and Known Exploited Vulnerabilities (KEVs) against a platform and providing justifications for risk ratings

• Experience conducting threat, compliance, vulnerability, and risk assessments of cloud-based networks and network and system analysis, reporting their results, and recommending measures to reduce risk to the platform or application tenants

• Experience with Splunk and AWS native tools, including AWS Inspector, and Security Hub, including security controls and services

• Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

• Bachelor’s degree

• CISSP, CISA, or CISM Certification

Additional Qualifications:

• Experience supporting internal and external security assessments and audits

• Experience with scripting and automation

• Experience with project management and reporting tools, such as Jira, Confluence, and SharePoint

• Knowledge of approaches to securing and hardening high assurance boundary systems

• Knowledge of zero trust architectures

• Ability to thrive in a fast-paced environment and drive alignment across stakeholder groups

• Possession of excellent interpersonal skills to collaborate with other engineering teams

• AWS Cloud Practitioner, AWS Solutions Architect, or AWS Security Certification

Vetting:

Applicants selected will be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $86,800.00 to $198,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.