Home > Northern Virginia jobs > Northern Virginia trades & labor jobs

Posted: Thursday, February 1, 2018 9:26 PM

Cybersecurity EngineerinHerndon, VAatBooz Allen Hamilton
Date Posted:1/23/2018
ApplyApplyNot ready to Apply?
Join Our Talent Network
Why Join Our Talent Network?
Joining our Talent Network is a great way to discover what we do and what differentiates us. Whether you choose to apply or just leave your information, we look forward to staying connected with you.
+ Receive job alerts with career opportunities that match your interests
+ Receive communications on our work and upcoming events
+ Share career opportunities with your network
Join our Talent Network today!
Privacy Policy
Terms and Conditions
+ {{ err }}
Thanks for joining our Talent Network, {{vm.userName}}
This service is currently unavailable. Please try again at a later time.
By joining our Talent Network you have not officially applied to a position.
By joining our Talent Network you have not officially applied to a position.
Thanks for joining our Talent Network, {{ vm.userName }}
By joining our Talent Network you have not officially applied to a position. To apply for this position, please click the continue button.
Redirect in {{vm.counter}}
Share With:
Job Snapshot
+ Employee Type:
+ Location:
Herndon, VA
+ Job Type:
+ Experience:
Not Specified
+ Date Posted:
Job DescriptionJob Number: R0012635
Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Cybersecurity Engineer
Key Role:
Serve as a Cybersecurity architect and engineer, working in a collaborative project team of application developers, architects, and business analysts to advise the team and integrate security into all phases of the system development life cycle to produce secure and compliant code and systems. Design security architecture and controls using a threat-based approach and develop application security requirements. Support security testing in development cycles, including execution or support for secure source code analysis, vulnerability assessments, penetration tests, and compliance reviews to identify security vulnerabilities and advise on appropriate countermeasures to remediate security risk and defects.
Basic Qualifications:
-Experience with applying security architecture and engineering principles to applications and platforms for secure architecture, design, development, and testing of IT software development projects
-Experience with application threat modeling, security risk assessments, and attack surface analysis
-Knowledge of application security vulnerabilities and countermeasures, including OWASP Top 10 Web application security vulnerabilities
-Knowledge of secure coding principles
-Ability to develop technical security requirements, security user stories and use or abuse cases that maps to the NIST SP 800-53 controls or agency security policies
-Ability to analyze the development of security test plans for testing security requirements
-Ability to run or interpret results from automated static and dynamic code analysis vulnerability assessment tools and techniques, including AppScan Source, AppScan Web, or Fortify and assist developers with formulating mitigation strategies
-Ability to obtain a security clearance
-BA or BS degree
-CISSP or equivalent certification
Additional Qualifications:
-Experience with supporting Agile or DevOps software development projects
-Experience with maintaining security compliance artifacts, including system security plans and POA&Ms in accordance with NIST SP 800-37
-Ability to work collaboratively and communicate as a liaison with IT project managers, development teams, and business stakeholders on security issues and risk
-Possession of excellent oral and written communication skills, including advising stakeholders at management and technical levels of security threats, vulnerabilities, and risks
-BA or BS degree in IT, CS, or Systems Engineering preferred
-Public Trust clearance
-SABSA Chartered Architect Foundation Level (SCF) Certification
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.
Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.
We are proud of our diverse environment, EOE, M/F/Disability/Vet.
Associated topics: attack, identity, information assurance, information security, information technology security, phish, security analyst, security engineer, threat, vulnerability


• Location: Northern Virginia

• Post ID: 45262432 nova is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2018