Benefits and culture
Booz Allen Hamilton operates with a people‑first mindset, prioritizing collaboration across teams in person or virtually. The role offers a robust benefits package that includes health, life and disability coverage, financial and retirement benefits, paid leave, and strong professional development opportunities such as tuition assistance and work‑life programs. Additional support includes dependent care and an awards program recognizing performance. This onsite position is based in McLean, Virginia, with the flexibility aligned to business needs.
Responsibilities
- Design, implement, and lead an enterprise‑wide governance framework that enables transformational change and end‑to‑end automation of cross‑functional GRC workflows.
- Apply deep cybersecurity risk management, operational governance, and business process transformation expertise to manage the lifecycle for new environments, systems, and services from intake and build through test, authorization, and sustainment.
- Establish gated governance processes, implement risk‑based decision frameworks, and align all review and approval activities with the organization's threat model and enterprise risk taxonomy.
- Serve as a strategic advisor to business, IT, security, and executive stakeholders to balance engineering velocity with robust security, compliance, and operational resilience.
- Due to facility security requirements, U.S. citizenship is required.
Requirements
- Education: HS diploma or GED.
- 8+ years of experience in cybersecurity, risk management, or business process transformation roles, including driving large‑scale process redesign and workflow automation.
- Experience establishing and managing Enterprise Architecture governance frameworks and Agile or Scrum governance models to keep fast‑paced engineering sprints aligned with corporate compliance standards.
- Experience applying BPM principles and Lean Six Sigma methodologies to map, simplify, and automate manual GRC processes, reducing cost, cycle times, and cognitive load for engineering teams.
- Experience leading structured Organizational Change Management strategies to guide multi‑disciplinary stakeholders through GRC modernization journeys, fostering a shift from output‑based to outcome‑based engineering discipline.
- Experience launching and leading pilot programs, measuring operational performance against defined metrics, and iterating workflow solutions prior to full‑scale enterprise launch.
- Experience performing deep quantitative analysis on delivery performance data, including efficiency, speed, reliability, and cost.
- Experience identifying root causes of operational friction, improving SLAs or SLOs, and transforming raw data into polished executive visual reports.
- Experience designing, defining, and standardizing core KPIs and operational metrics to track the health and velocity of authorized environments.
Technologies
Compensation
Projected annual compensation ranges from USD 112,800 to 257,000. This estimate reflects typical pay for this role and is one component of Booz Allen's total compensation package. This posting closes within 90 days of the posting date.
Location
McLean, VA onsite
Identity verification
As part of the hiring process, Booz Allen conducts identity verification using advanced biometrics and artificial intelligence to confirm authenticity and protect against identity fraud. You will be on camera during interviews and assessments, and Booz Allen may capture your image to verify identity and prevent fraud.
Candidate AI usage policy
AI is part of Booz Allen's daily work, and the company supports responsible use of AI tools. The use of AI or other tools to assist with interview responses is not allowed unless explicit permission is granted.
Work model
Our people‑first culture values collaboration both in person and virtually. For virtual interactions, cameras are generally encouraged during meetings. This role is listed as onsite in McLean, VA, with potential engagement at Booz Allen or customer facilities as required by the project.
Non‑discrimination commitment
All qualified applicants will receive consideration for employment without regard to disability, protected veteran status, or any other status protected by applicable law.
Nice to have
- 10+ years of experience in people management, coaching, and talent development for cross‑functional teams in change‑intensive environments.
- Experience with Cyber Risk Management frameworks, common enterprise threat scenarios, and control alignment to regulations such as NIST SP 800‑53, NIST SP 800‑171, CMMC Level 2, FedRAMP, or SOC 2 Type II.
- Experience with modern GRC platforms and automation tools, including ServiceNow and RSA Archer or comparable enterprise workflow engines.
- Ability to translate complex technical, operational, and architectural risks into pragmatic solutions for senior leadership.
- Certifications such as Lean Six Sigma Green or Black Belt, Certified Scrum Master (CSM), PMP, CISSP, or Certified in Governance, Risk and Compliance (CGRC).
