Booz Allen

InformationSecurityRiskSpecialist

$62–62k Bethesda, Maryland, United States FULL TIME Remote Friendly

The Brief

“Information Security Risk Specialist at Booz Allen. Skills: Risk Management Framework, Assessment & Authorization, Security Compliance. Support Risk Management Framework activities. Drive Assessment & Authorization packages”

What You'll Achieve.

Systems remain secure; Systems remain compliant; Drive closure of POA&Ms

Industry & Context.

Problems you'll solve

Remediate gaps; Drive closure of POA&Ms

Eligibility Requirements

Public Trust, Government investigation, Eligibility requirements of the U. S. government, Public Trust determination, Identity verification process, Biometrics, Artificial intelligence, On camera during interviews, Take your picture to verify identity, Prevent fraud, Cameras on during meetings (virtual)

What They're Looking For.

Must Have

3+ years of experience within Information Security, Cyber Risk Management, Security Compliance Functions, NIST Risk Management Framework (RMF), Assessment & Authorization (A&A) efforts, Authority to Operate (ATO) decisions, security control assessments, Security Assessment Reports (SAR), Plans of Action & Milestones (POA&Ms), System Security Plans (SSP), NIST SP 800‑53 Rev. 5 control families, FISMA processes, Public Trust, Bachelor’s degree

Nice to Have

Experience communicating complex security concepts clearly to non‑technical stakeholders, senior leaders, concise A&A documentation, executive-ready summaries, structured writing, plain-language techniques, technical documentation, stakeholder analysis, change management, write crisply, edit meticulously, proofread, facilitate working sessions, build consensus, present recommendations confidently, Master's degree

What You'll Do.

Support Risk Management Framework activities

Drive Assessment & Authorization packages

Sustain continuous monitoring

Ensure systems remain secure

Ensure systems remain compliant

How You'll Work.

Team & Collaboration

Partner with engineering teams; Partner with mission teams; Communicate security concepts to non-technical stakeholders; Communicate security concepts to senior leaders; Facilitate working sessions; Build consensus; Present recommendations

Communication Scope

Translate technical findings into risk statements; Communicate complex security concepts; Write crisply; Edit meticulously; Proofread; Present recommendations confidently

Process & Methodology

Plans of Action & Milestones (POA&Ms)

Free ATS check

Applying for this Information Security Risk Specialist role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 18 detected

Core

Risk Management Framework ×6

Assessment & Authorization ×6

NIST SP 800‑53 Rev. 5 ×5

Authority to Operate ×4

Security Control Assessments ×4

Continuous Monitoring ×4

Required

Security Documentation ×3

FISMA Processes ×3

POA&Ms Tracking ×3

Security Compliance ×2

NIST Risk Management Framework ×2

FISMA ×2

Nice to have

Risk Statements

Remediation Recommendations

Mission Priorities

Business Priorities

Stakeholder Analysis

Change Management

Role Details

Seniority

mid

Work Mode

Remote

Type

FULL TIME

Experience

3–5 yrs

Education

Bachelor’s degree

Salary Band

50k-75k

AI-Extracted Insights

Domain Areas

information-security

cyber-risk-management

security-compliance

nist-risk-management-framework

assessment-authorization

authority-to-operate

fisma-processes

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Booz Allen?

Real rants from real employees. Read before you apply.

Read Company Rants →