Everyone knows security needs to be “baked in” to a system architecture, but you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your Cyber skills to design and build secure systems for the US government? We’re looking for an engineer who can help create solutions for that will stand up to even the most advanced Cyber threats.
As an identity governance administration (IGA) engineer you will apply Cybersecurity experience in identity and access management (IAM) to analyze, design, and support a continuous monitoring solution to verify and validate appropriate user privileges, assigned credentials, trustworthiness, appropriate user security behavior training, and appropriately granted resource access rights to users. You’ll engage multiple stakeholders and leverage related security products or technologies to recommend solution architectures and designs needed to monitor and report on IAM related data across multiple government agencies. You’ll integrate disparate IAM data from multiple sources into a singular database for correlation and presentation. You’ll maintain responsibility for articulating and authoring multiple findings, recommendations, and other artifacts, including interfacing with key stakeholders to implement tailored IAM solutions. You will work with architects, SMEs, and other engineers, and provide work leadership to junior employees, as needed.
Empower change with us.
Nice If You Have:
- 3+ years of experience with IT, including supporting access management solutions, such as connector and systems integrations, entitlement management, user credential management, or user security behavior monitoring
- 3+ years of experience with supporting IAM, security operations and threat response, or security architecture
- 3+ years of experience with requirement, design, implementation, integration, testing, or change management
- Experience with Commercial, Off-the-Shelf (COTS) IAM tools, including SailPoint or Saviynt
- Knowledge of Active Directory or Lightweight Directory Access Protocol (LDAP) management, configuration or design, Public Key Infrastructure (PKI) X509, Special Security Office (SSO) across multiple domains, 2FA via personal identity verification (PIV) or Common Access Cards (CAC), and scripting and coding
- Ability to obtain a security clearance
- BS or BA degree
- Experience with CyberArk, CA Privileged Access Manager (PAM), Broadcom Layer 7, Centrify, or BeyondTrust
- Experience with supporting IAM in a Cloud environment, including Azure or Amazon Web Services (AWS)
- Experience with Structured Query Language (SQL) database administration or management
- Experience with security information and event management (SIEM) tools, Splunk or the Elasticsearch, Logstash, and Kiban (ELK) stack preferred
- Experience with authoring Cybersecurity guidance, including policies, strategies, and whitepapers
- Experience with implementing PKI and PIV standards
- Experience with HSPD-12, FIPS 201-2, FICAM, OMB 11-11, FedRAMP, PCI, FISMA, or NIST 800-53, 800-63, 800-79-2, or 800-157 policies and standards a plus
- MS degree in IT, Information Systems, or CS
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.
Build Your Career:
Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen Cyber. When you join Booz Allen, we’ll help you develop the career you want.
Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.
Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
Cyber University — CyberU has more than 5000 instructor-led and self-paced Cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.
Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in Cybersecurity—fully funded without a tuition cap.
Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.
We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.