Build Your Career in Cybersecurity -
YOUR WAY

The Opportunity:

Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to the DoD. In all of this “cyber noise”, how can these organizations understand their risks and how to mitigate them? The answer is you. We need your knowledge as an information security risk specialist to help break down complex threats into manageable plans of action.

​

As an information security risk specialist on our team, you’ll work with the Army to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You’ll get technical, environmental, and personnel details from engineers to assess the entire threat landscape. Then, you’ll help your team guide your client through a plan of action with presentations, whitepapers, and milestones.

​

You’ll work on translating security concepts for your client so they can make the best decisions to secure their mission-critical systems. This is your opportunity to take an active role in information security.

​

Work with us as we protect our military’s communications systems.

​

Join us. The world can’t wait.

​

Company Overview

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

​

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $60,400.00 to $137,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

• Help the Army discover their cyber risks, understand applicable policies, and develop a mitigation plan.
• Gather technical, environmental, and personnel details from engineers to assess the entire threat landscape.
• Guide clients through a plan of action with presentations, whitepapers, and milestones.
• Translate security concepts for clients to make informed decisions to secure mission-critical systems.

You Have:

• Experience with EMass
• Knowledge of the DoD RMF process
• Knowledge of SECM and MECM
• Secret clearance
• HS diploma or GED and 4+ years of experience with Army policies, including continuous monitoring and information systems security policies, standards, and procedures, or Bachelor’s degree and 2+ years of experience with Army policies, including continuous monitoring and information systems security policies, standards, and procedures
• Security+ Certification

​

Nice If You Have:

• Experience supporting Army Commands in the implementation or assessment of cybersecurity controls
• Experience with values and principles of Agile methodologies
• Knowledge of DevSecOps and Continuous Integration or Continuous Delivery (CI/CD) systems and methodologies
• Knowledge of IA or INFOSEC concepts and requirements
• Possession of excellent verbal and written communication skills

Clearance

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

​

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

​

Work Model

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

​

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Job Description:

​

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

​

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

​

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

​

Position Summary:

​

Identity and Access management (IAM) operations team is accountable for the successful delivery of all operational services globally for the IAM applications and infrastructure of the bank. This team supports a wide range of IAM production applications related to Single Sign On, Consolidate Directory Services Network (CDSN)/LDAP, Federated Identity (aka SAML), PKI infrastructure and tools, Extended Authentication Services, Strong Authentication, and Splunk. This includes problem engagement during triage, service restoral, identification of root cause, and facilitation and co-ordination of identification of root cause and permanent fix resolution – in accordance with agreed upon practices.

​

The Ideal candidate will have over 8 years of current working experience in Ping Identity products such as Ping Federate, Ping Access and Ping Directory. They should have extensive knowledge and hands on experience in MFA technologies. Must have working hands-on knowledge of Access management and entitlement technologies. Must have expert level of Linux experience and must be well versed in Splunk queries.

NA

Required Qualifications:

• 8+ years of current production support experience on Ping Access, Ping Federate, Ping Directory, MFA technologies, Hyper, PKI, Splunk & Linux
• Excellent knowledge of Identity, Authentication and Access Management (IAM) domain
• Must have senior level production support experience and troubleshooting skills in IAM technologies
• Must have expert level of Linux experience and must be well versed in Splunk queries
• Well versed with ITIL framework
• Excellent Communication Skills
• Must be able to work in a team environment
• Must be available for on-call coverage and willing to work off hours when production issues arise
• Demonstrate a strong work ethic and takes pride in accomplishment

​

Desired Skills:

• Exhibits strong drive for results and success
• Persists in the face of significant difficulties, does not give up easily
• CISSP OR equivalent Information Security domain certificate will be value add

Skills:

• Result Orientation
• Solution Design
• Technical Strategy Development
• Access and Identity Management
• Cyber Security
• Information Systems Management
• Risk Management
• Solution Delivery Process
• Collaboration
• Critical Thinking
• Test Engineering

​

Shift:

1st shift (United States of America)

​

Hours Per Week:

40

Summary

​

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

​

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

​

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

​

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

​

Position Summary

​

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank’s Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects and responds to cybersecurity incidents. Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access to the resources across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements.

• This role is primarily responsible for ensuring that relevant Privileged Access Management and Active Directory Security Controls are adequately enforced across platforms and assets to comply with IAM Standards.
• The key focus is on identifying and addressing security gaps, improving governance, and mitigating risk related to privileged accounts within Active Directory environments.
• Partner with PAM Governance leads to ensure that Privileged Access Management and Active Directory Security Controls are appropriately measured, reported, and governed.
• Collaborate closely with Active Directory and other cross-functional teams to enforce security best practices, addressing vulnerabilities, misconfigurations, and ensuring privileged assets are protected.
• Identify proactively Active Directory weaknesses with risk measures and take preventative actions.
• Report on both existing and emerging risks related to Active Directory and Privileged Access Management and provide transparent and data-driven insights.
• Support the resolution of assessment issues related to Active Directory and Privileged Access Assets security, ensuring controls are sustainable and compliant with regulatory requirements.
• Apply industry best practices in Active Directory and PAM security and propose improvements based on analysis and observed gaps.

Required Qualifications:

• 7 years relevant hands-on experience Active Directory and Privileged Access Management security.
• Expert level knowledge with managing privileged access in large and complex hybrid environments.
• In Depth knowledge of authentication services, LDAP, Kerberos, OAuth, SAML.
• Expert level knowledge of authentication platforms and hands on experience with Active Directory Assets, Functions, ACL, DACL, SACL and ACEs.
• Deep knowledge and understanding of Cloud security best practices, securing cloud environments like AWS, Microsoft Entra ID, managing IAM policies and ensuring compliance with cloud security frameworks and standards.
• Experience in cybersecurity attack techniques and vectors, such as privilege escalation, pass-the-ticket/hash attacks, lateral movement techniques within Active Directory environments.
• In Depth knowledge of preventative and detective controls, tools, and strategies to safeguard privileged accounts.
• Deep security knowledge which covers core technology infrastructure (network, storage, servers, databases, etc.) identity management and application security practice.
• Good knowledge and understanding of PAM-specific laws, rules, and regulations within the financial services sector.
• Proficient in Microsoft Office suite of products with ability to quickly analyze and synthesize large volumes of data.
• Familiarity with security standards such as NIST, ISO/EC, FFIEC.
• Working level experience with bank financial practices and policies and ability to adapt to fast changing environment.

​

Desired Qualifications:

• Serve as the Subject Matter Experts in advising BAC business and technology counterparts on effective ways to achieve or exceed compliance with applicable Policy, Standards, Procedures and Guides.
• Proficient in articulating facts and data-driven plans and to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to PAM standards.
• Strong attention to detail and advanced analytical skills.
• Excellent communication and presentation skills. Able to effectively prioritize multiple tasks.
• Proven track record in delivering outcomes that result in sustainable risk reductions in PAM.
• Ability to work independently on initiatives with little oversight. Motivated and willing to learn.
• Confident and effective in delivering messages across a wide spectrum of individuals with varying degrees of technical and business understanding.

• This job will be open and accepting applications for a minimum of seven days from the date it was posted.
• Shift: 1st shift (United States of America)
• Hours Per Week: 40
• Pay and benefits information
• Pay range: $76,500.00 - $136,400.00 annualized salary, offers to be determined based on experience, education and skill set.
• Discretionary incentive eligible
• This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.
• This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.