SIGN IN
Information Systems Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Booz Allen Hamilton · 9 hours ago

Information Systems Security Engineer

positionFort Belvoir, VA
timeFull-time
remoteOnsite
senioritySenior Level
money$78K/yr - $176K/yr
date7+ years exp
Booz Allen Hamilton is a company that supports the Army Intelligence community through engineering solutions. The Information Systems Security Engineer will configure security tools, manage vulnerabilities, and ensure compliance with security policies while interfacing with stakeholders as needed.
ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Configure and maintain Nessus Scanners and Tenable Security Center (SC) resources. Manage scan zones to ensure comprehensive coverage across varied network enclaves
Utilize Axonius to aggregate data from Active Directory, Cisco ISE, and ACAS to identify unmanaged assets or shadow IT missing from standard scanning cycles
Develop and distribute tailored vulnerability reports and dashboards for ISSOs, focusing on Cyber Tasking Orders (CTOs), Critical and High vulnerabilities, and STIG non-compliance trends
Audit Cisco ISE policies to enforce 802.1X authentication, ensuring only authorized devices access the production environment
Optimize Elasticsearch and ingest pipelines to parse logs from network devices, Cisco ISE, and Active Directory for real-time security alerting and historical trend analysis
Conduct weekly audits of Active Directory logs to identify anomalous account behavior, privilege escalation attempts, or unauthorized changes to Group Policy Objects (GPOs)
Perform manual and automated STIG checks on network infrastructure, using tool-based evidence such as ACAS or ISE to support Risk Management Framework (RMF) authorization packages
Author technical justifications and remediation plans for vulnerabilities that cannot be immediately mitigated due to operational constraints
Author and maintain localized "How-To" documentation for tool-specific workflows, such as "Auditing a Cisco Router" or "Configuring a credentialed scan in ACAS."
Audit firewall rules and ACLs for ACAS scanning traffic and ISE RADIUS/TACACS traffic across internal enclaves
Present critical or high priority threats and vulnerabilities on the network to stakeholders for awareness, action, and remediation
Analyze digital evidence and investigate computer security incidents to derive useful information in support of system or network vulnerability mitigation
Assess the effectiveness of cybersecurity measures utilized by system(s)
Assess threats to and vulnerabilities of computer system(s) to develop a security risk profile by leveraging existing tools and dashboards
Manage and design the network scanning process end-to-end
Assist ISSOs in developing vulnerability management processes for applicable systems, coordinate input from ISSOs and ISSMS into scanning processes, and recommend best practices to ISSOS, ISSMS, and PM based on scanning findings
Build out applicable network architecture leveraging existing and approved tools
Participate and offer input for policies, standards, procedures, and risk management
Identify, assess, and recommend cybersecurity or cybersecurity‐enabled products for use within a system
Recommend security measures that provide confidentiality, integrity, availability, authentication, and nonrepudiation
Perform security reviews and identify security gaps
Participate in client deliverables as requested by the ISSM or PM

Qualification

Information AssuranceACASCisco ISENessus ScannersTenable Security CenterActive DirectoryElasticsearchSTIG ChecksProactive Solution EngineeringNetwork Accreditation ProcessesTACACS+CTOsCASP+Security X Certification

Required

7+ years of experience in information assurance (IA)
Experience with ACAS, CISCO ISE, and Cisco Networking
Experience with Nessus Scanners and Tenable Security Center resources
Experience performing proactive solution engineering with flexibility for changing requirements
Knowledge of how to perform a STIG check on a network
Knowledge of Network Accreditation Processes
Active TS/SCI clearance; willingness to take a polygraph exam
HS diploma or GED
IAT Level III Certification

Preferred

Experience with Axonius
Experience with TACACS+
Experience with Active Directory
Experience with Elasticsearch
Knowledge of CTOs
CASP+ or Security X Certification

Benefits

Health
Life
Disability
Financial
Retirement benefits
Paid leave
Professional development
Tuition assistance
Work-life programs
Dependent care

Company

Booz Allen Hamilton

twittertwittertwitter
Glassdoor4.2
company-logo
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering.
dateFounded in 1914
location
Mclean, Virginia, USA
people-size10001+ employees
web-link
http://www.boozallen.com

Funding

Current Stage
Public Company
Total Funding
$3.03B
2025-03-11Post Ipo Debt· $650M
2023-08-01Post Ipo Debt· $650M
2020-08-13Post Ipo Debt· $700M

Leadership Team

leader-logo
Kristine Anderson
Chief Operating Officer
linkedin
A
Ammad Jilani
Chief Solutions Architect
linkedin

Recent News

PR Newswire
Defense Capital Shift: The $29B Autonomous Shield Market
2026-02-05
Washington Technology
Pentagon chooses 7 for military data collection, analysis contract
2026-02-04
PR Newswire
Halcyon Launches Ransomware Incident Response Partner Program
2026-02-03
Company data provided by crunchbase