Apply on Employer Site

Booz Allen Hamilton · 10 hours ago

Aviation Cyber Security Policy Lead

Washington, DC

Full-time

Hybrid

Senior Level

$87K/yr - $198K/yr

7+ years exp

Booz Allen Hamilton is seeking an Aviation Cyber Security Policy Lead to enhance the country's cyber resilience in aviation safety systems. The role involves overseeing a team that assesses current FAA cyber policies, evaluates risks, and develops strategic cyber roadmaps to ensure secure operations in an evolving IT environment.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity

Growth Opportunities

No H1B

U.S. Citizen Only

Responsibilities

Oversee staff working on the assessment of the FAA’s current cyber policies, the coverage of those policies, and areas of risk

Evaluate how policies stack up to regulations, best practices, and industry standards

Guide your client through understanding acceptable risk and availability

Lead the team in the development of a strategic cyber roadmap

Work with the client to ensure they operate securely as they navigate an evolving IT environment

Qualification

DatabricksCybersecurity policy analysisInformation assuranceCISSPCompTIA Security+DevSecOpsCybersecurity Supply Chain Risk ManagementSecurity architecturesSoftware Development Lifecycle

Required

7+ years of experience with Databricks

7+ years of experience with monitoring Government policy and cybersecurity standards, including analyzing, reviewing, and implementing cybersecurity policies and procedures

Experience advising on best practices for information and systems security, working with system owners and business managers to evaluate cyber risks for IT systems, and educating federal clients on the impact of existing and emerging systems and information security frameworks, legislation, and trends

Experience applying computer science technologies to the design, development, evaluation, and integration of computer systems and networks to maintain system security and provide information assurance

Experience developing, managing, and maintaining plans and SOPs

Knowledge of security architectures, electronic data traffic, network access, encryption technology, penetration and vulnerability analysis of security technologies, information technology security research, and Software Development Lifecycle (SDLC)

Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

Bachelor's degree

CISSP or CompTIA Security+ Certification

Preferred

Experience with DevSecOps

Knowledge of Cybersecurity Supply Chain Risk Management (C-SCRM)

Ability to support system-specific enterprise security solutions in development lifecycle activities, including requirements definition, implementation planning, integration, and functional testing activities

Bachelor's degree in Information Assurance, Information Management, Information Technology, or Computer Science