Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise. Cybersecurity Analyst
Serve as a part of an integrated team of engineers and Cybersecurity experts in the firm's expanding Industrial Control System (ICS) and Operational Technology (OT) Cybersecurity team. Maintain responsibility for ensuring the appropriate operational security posture is maintained for clients and their environments. Consult with clients on the secure design and operation of ICS environments, conduct Cybersecurity risk assessments, train operators and engineers, develop security documentation compliant with DoD and industry standards, and design and implement industrial Cybersecurity monitoring solutions. Travel onsite to various facilities to perform onsite assessment activities, including physical security walks, observations, technical configuration reviews, and personnel interviews. Work across several areas of industrial controls, including water and wastewater, heating oil and natural gas, energy, fire and security alarms, lighting, and heating ventilation and air conditioning (HVAC). This position will require the ability to travel based on client and project need.
-5+ years of experience in Cybersecurity technologies or disciplines
-Experience with Cybersecurity standards and industry best practices implementation
-Experience with evaluating Cybersecurity vulnerabilities and developing mitigation strategies
-BA or BS degree
-Information Assurance Management (IAM) Level II Certification
-3+ years of experience with industrial control system Cybersecurity, industrial control system design, and industrial networks
-Experience with various vendors and types of ICS equipment, including PLCs, VFDs, HMIs, and network protocols
-Experience with networking system administration or network monitoring
-Experience with IEC 62443, NIST SP 800-82, NERC-CIP, NEI 08-09, or other industrial control regulations
-Experience with analyzing security risk assessment tool results, including DoD SCAP or Nessus
-Experience with developing Cybersecurity policy and procedure documentation for system accreditations
-Knowledge of NIST and DoD Cybersecurity requirements
-Ability to analyze and suggest recommended improvements to industrial control system programs and systems to meet industry standards and best practices
-Possession of excellent research and analytical skills
-Possession of excellent oral and written communication skills
-Security+ Certification, GIAC Security Essentials Certification (GSEC), Cisco Certified Network Associate (CCNA), GIAC Global Industrial Cybersecurity Professional (GICSP), System Security Certified Professional (SSCP), Certified Authorization Professional (CAP), Certified Information Security Manager (CISM), or GIAC Security Leadership Certification (GSLC)
Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.
Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.
We are proud of our diverse environment, EOE, M/F/Disability/Vet.