onsite

Senior Information Security Risk Specialist - Booz Allen Hamilton

Software Engineer

Senior security professional leading risk assessments, threat modeling, and mitigation planning for federal agencies, leveraging NIST, ISO 27001, and cloud security expertise to translate complex cyber threats into actionable strategies.

About the role

Key Responsibilities

Conduct comprehensive risk assessments and threat analyses for government programs, mapping findings to NIST and ISO 27001 controls.
Develop and maintain security architecture documentation, ensuring alignment with cloud platforms such as AWS and Azure.
Lead vulnerability management efforts, including scanning, remediation tracking, and reporting to senior stakeholders.
Translate technical risk findings into clear, actionable mitigation plans and brief executive leadership.
Collaborate with cross‑functional teams to integrate security controls into acquisition and development lifecycles.

Requirements

Minimum 7 years of experience in information security risk management, preferably in a federal or defense environment.
Deep knowledge of NIST Cybersecurity Framework, RMF, and ISO 27001 standards.
Hands‑on experience with cloud security architectures (AWS, Azure) and related compliance frameworks.
Proven ability to perform vulnerability assessments, manage remediation, and produce risk‑based reports.
Active Secret or higher security clearance.

Skills

software developmentsystem designproblem solving

CompanyBooz Allen Hamilton

DepartmentEngineering

LocationScott Air Force Base, United States

Experience5+ years

Tenurefull-time

LevelSenior

Posted June 26, 2026