Booz Allen

CybersecurityandRMFEngineer,Mid

$69–69k Arlington, Virginia, United States FULL TIME Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Mid candidates.

The Brief

“Cybersecurity and RMF Engineer, Mid at Booz Allen. Skills: Cybersecurity, RMF, NIST 800-53, Zero Trust. Assess vulnerabilities. Recommend security solution”

What You'll Achieve.

Protect our nation’s human capital systems; Make the best solutions for our customers; Secure and protect the Air Force

Industry & Context.

Problems you'll solve

Troubleshoot and analyze complex challenges; Identify advanced threats

Eligibility Requirements

Secret clearance, Identity verification process, On camera during interviews and assessments, Work in person at Booz Allen or customer facility

What They're Looking For.

Must Have

8+ years of experience with RMF, 8+ years of experience with NIST 800-53, 8+ years of experience with Zero Trust, 8+ years of experience with STIGs, 8+ years of experience with vulnerability management, 8+ years of experience with ATO packages, 8+ years of experience with POA&Ms, 8+ years of experience with continuous monitoring, 8+ years of experience with secure cloud, 5+ years of experience as an Information Systems Security Officer (ISSO), 5+ years of experience as an Information Systems Security Engineer (ISSE), 5+ years of experience as an Information Systems Security Manager (ISSM), 2+ years of experience setting-up DevSecOps pipeline security tools, 2+ years of experience working with DevSecOps pipeline security tools, 2+ years of experience with DevSecOps scanning, 2+ years of experience with DevSecOps reporting, 2+ years of experience supporting DevOps teams, 2+ years of experience helping configure DevOps teams, Experience in cybersecurity engineering, Experience in RMF alignment, Experience supporting secure architecture, Experience with controls implementation, Experience with scanning, Experience with evidence generation, Experience with POA&M tracking, Experience with continuous monitoring in IL5-ready environments, Ability to work with development teams, Secret clearance, HS diploma or GED

Nice to Have

Experience developing SSP, Experience developing ATO packages, Experience with systems deployed in Microsoft Azure, Experience with systems deployed in AWS, Experience with systems deployed in DoD cloud environment, Bachelor's degree, Amazon Web Service (AWS) Certification, Microsoft Azure Certification, Google Cloud Service Provider Certification, DoD 8570 IAM II or higher Certification, SecurityX Certification, CISM Certification, CISSP Certification, DoD Directive 8570.01-M for IASAE Level III Certification, CISSP-ISSAP Certification, CISSP-ISSEP Certification, CCSP Certification

What You'll Do.

Assess vulnerabilities

Recommend security solution

Recommend security strategy

Oversee development of security solutions

Oversee implementation of security solutions

Protect military systems

Troubleshoot complex challenges

Analyze complex challenges

Manage research of technology trends

Manage research of market trends

Develop security solutions

Assess security threats

Implement infrastructure controls

Secure human capital systems

Manage infrastructure controls

Manage cybersecurity controls

Manage enhanced detection capabilities

Manage vulnerability capabilities

Manage improved event correlation

Lead risk assessments

Lead vulnerability assessments

Identify advanced threats

How You'll Work.

Team & Collaboration

Develop relationships with other teams; Communicate security complexities to senior management; Work with development teams; Collaborate with colleagues

Communication Scope

Communicating complexities of security; Communicating with wide variety of audiences; Communicating with senior management

Process & Methodology

Manage research, Manage infrastructure, Manage cybersecurity controls, Lead assessments

Full Job Description

Cybersecurity and RMF Engineer, Mid **The Opportunity:** Are you looking for an opportunity to share your experience in cybersecurity and systems engineering that will support the U.S. Air Force? As a systems security and network security engineer, you can identify the tools needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to oversee the development and implementation of security solutions that will protect our military. On our team, you’ll supervise a team as they troubleshoot and analyze complex challenges for customers using your knowledge of network and security devices, applications, and identifying tools. You’ll manage the research of technology and market trends to further develop security solutions. Using your expertise in low-code/no-code systems and security protocols, you’ll assess security threats and implement infrastructure controls. In this role, you’ll directly impact Air Force human capital management by helping to secure our nation’s human capital systems. With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers. Work with us as we secure and protect the Air Force for the better. **What You’ll Work On:** * Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management. * Manage infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises. * Lead risk and vulnerability assessments in network, system, and application areas. * Leverage big data analytics and traditional security event types to identify advanced threats. Join us. The world can’t wait. **You Have:** * 8+ years of experience with RMF, NIST 800-53, Zero Trust, STIGs, vulnerability management, ATO packages, POA&Ms, co

Free ATS check

Applying for this Cybersecurity and RMF Engineer, Mid role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 58 detected · ranked by frequency

Microsoft Azure ×7

RMF ×6

NIST 800-53 ×6

Zero Trust ×6

STIGs ×4

Vulnerability management ×4

ATO packages ×4

POA&Ms ×4

Continuous monitoring ×4

Secure cloud ×4

DevSecOps pipeline security tools ×4

AWS ×4

DoD cloud environment ×4

Cybersecurity ×3

Scanning ×3

Reporting ×3

DevOps ×3

Cybersecurity engineering ×3

RMF alignment ×3

Secure architecture ×3

Controls implementation ×3

Evidence generation ×3

POA&M tracking ×3

IL5-ready environments ×3

Amazon Web Service (AWS) ×3

Google Cloud Service Provider ×3

DoD 8570 IAM II ×3

SecurityX ×3

CISM ×3

CISSP ×3

DoD Directive 8570.01-M ×3

IASAE Level III ×3

Role Details

Seniority mid

Experience 2–5 yrs

Level Mid

Work Mode Remote

Type FULL TIME

Education HS diploma or GED

Salary Band 50k-75k

AI-Extracted Insights

Domain Areas

u-s-air-forcehuman-capital-managementil5-ready-environments

Certifications

Amazon Web Service (AWS) CertificationMicrosoft Azure CertificationGoogle Cloud Service Provider CertificationDoD 8570 IAM II or higher CertificationSecurityX CertificationCISM Certification

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Booz Allen?

Real rants from real employees. Read before you apply.

Read Company Rants →