Booz Allen Commercial delivers advanced cyber defenses to the Fortune 500 and Global 2000. We are technical practitioners and cyber-focused management consultants with unparalleled experience – we know how cyber-attacks happen and how to defend against them.
Our strategy and technology consultants have empowered our international clients with the knowledge and experience they need to build their own local resources and capabilities.
In facing challenges of modernization, our Middle East and North Africa clients have complex requirements that benefit from our proven experience in guiding major programs and projects for governments and private-sector organizations. The services we offer in UAE, Qatar, Egypt, Turkey, Kuwait, Morocco, Jordan, and other regional countries build on our consulting legacy.
Our clients call upon us to work on their hardest problems—delivering effective health care, protecting warfighters and their families, keeping our national infrastructure secure, bringing into focus the traditional boundaries between consumer products and manufacturing as those boundaries blur.
Booz Allen was founded on the notion that we could help companies succeed by bringing them expert, candid advice and an outside perspective on their business. The analysis and perspective generated by that talent can be found in the case studies and thought leadership produced by our people.
Learn more about Booz Allen's diverse culture and environment of inclusion that fosters respect and opportunity for all employees.
We've come a long way delivering innovative solutions. But our next chapter is still being written.
Our 22,600 engineers, scientists, software developers, technologists, and consultants live to solve problems that matter. We’re proud of the diversity throughout our organization, from our most junior ranks to our board of directors and leadership team.
Booz Allen takes pride in a culture that encourages and rewards the many dimensions of leadership—innovative thinking, active collaboration, and personal service. We’re particularly proud of the diversity of our Leadership Team and Board of Directors, among the most diverse in corporate America today.
Cyber criminals rarely work in isolation. Whether employed by nation states or organized crime, they act within a loosely confederated community—a vast underground affiliate network they can rely on to support their relentless attempts to exploit network weaknesses and turn them into profit, be it through ransomware, identity theft, or other means.
To stay toe-to-toe with these organized adversaries, cybersecurity professionals must operate within a community of their own, combining complimentary skills and services, and sharing knowledge and best practices.
One formal manifestation of this community is the Common Vulnerabilities and Exposures (CVE) list maintained by MITRE, a not-for-profit corporation dedicated to solving problems for a safer world. Booz Allen recently partnered with MITRE to become an official contributor to the list.
“The goal of MITRE’s CVE list is to build and maintain an authoritative catalog of all known software vulnerabilities.”
“It’s important to us to contribute however we can to the greater cyber community that we’re a part of,” says Jesse Glarrow, who leads a Booz Allen cyber team focused on attack surface reduction and vulnerability remediation. “We spend so much time engaged in things like security research, vulnerability assessment, penetration testing, and exploit development. Partnering with MITRE to add our discoveries to the CVE list is one more way we can share the fruits of that labor with the wider world.”
The goal of MITRE’s CVE list is to build and maintain an authoritative catalog of all known software vulnerabilities. To date, the list provides information on close to 100,000 vulnerabilities.
For an organization considering a software purchase, the list is a useful reference for comparing the potential risks of different products. For cybersecurity professionals, it’s an essential tool for tracking and mitigating the vulnerabilities present in the applications that run on the networks they protect. Software vendors can use the list as a crowdsourced means of discovering vulnerabilities in their own products.
Those vendors that, like Booz Allen, are authorized to contribute to the list, can use it to publicly disclose vulnerabilities in the very software that they create.
“By publicly posting a vulnerability you’ve uncovered in a piece of software that you yourself produced, you not only show that you’re aware of the issue,” says Jesse. “You also demonstrate your unflinching commitment to keeping your clients and customers safe.”
Contact us for more information on Booz Allen’s MITRE CNA program.