CybersecurityJobs.io
← Back to all jobs

Job Description

In Booz Allen Hamilton's Extended Enterprise Environment, this executive-level Enterprise Cybersecurity GRC role guides the design and assessment of compliance architecture, actively engineering controls under GRC leadership and reporting up to the CISO. The position is located onsite in McLean, VA with a annual salary range of USD 99,000 to 225,000.

Responsibilities

  • Lead the design and assessment of compliance architecture within the Extended Enterprise Environment
  • Audit security controls and ensure regulatory alignment
  • Proactively engineer and implement compliance measures
  • Report progress and findings through GRC leadership to the CISO
  • Review technical and environmental details to assess risk and alignment
  • Apply a hands-on approach to achieve security compliance and regulatory requirements
  • Collaborate with cross-functional Booz Allen teams and client stakeholders

Requirements

  • 10+ years of experience in cybersecurity or GRC
  • Experience in roles such as Security Control Assessor, Validator, ISSO, ISSE, or ISSM
  • Experience with security control alignment and assessments against CMMC, NIST SP 800-53, NIST SP 800-171 rev. 2 and rev. 3, RMF, FIPS 199, FIPS 200 and related SPs, and FedRAMP
  • Ability to translate CMMC Level 3, NIST SP 800-171, and NIST SP 800-172 into actionable engineering directives; lead validation of evidence for Level 2 and Level 3 assessments; analyze environment records; identify compliance gaps; drive remediation
  • Experience managing the full risk lifecycle from identification to remediation and closure using qualitative and quantitative methods
  • Experience performing continuous monitoring and assessment of cybersecurity controls, evidence, and scans to confirm effectiveness and ongoing compliance
  • Experience partnering with IT, operations, and delivery teams to provide guidance and advance GRC initiatives
  • Experience leveraging GRC automation platforms such as eMASS, ServiceNow, RSA Archer, CSAM, or Telos Xacta
  • Ability to develop, maintain, and communicate metrics on compliance and vulnerability management
  • HS diploma or GED

Technologies

  • eMASS
  • ServiceNow
  • RSA Archer
  • CSAM
  • Telos Xacta

Benefits

  • Health benefits
  • Life benefits
  • Disability benefits
  • Financial benefits
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care

Work Model

  • Remote: If this position is listed as remote, there may still be occasions when in-person work at a Booz Allen or customer facility is required.
  • Hybrid: If listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility.
  • Onsite: Work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role.

Similar Jobs

Get Job Alerts

New jobs delivered to your inbox.