Information Systems Security Engineer

Title:

Belong. Connect. Grow. with KBR!

KBRs National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position your work will have a profound impact on the countrys most critical role protecting our national security.

Why Join Us

• Innovative Projects: KBRs work is at the forefront of engineering logistics operations science program management mission IT and cybersecurity solutions.

• Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation fostering a supportive and intellectually stimulating workplace.

• Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.

The Information Systems Security Engineer will directly support the Secretary of the Air Force (SAF) / Concept Development Management Office (CDM) / (CDMM) Mission Architecture Innovation Directorate. The Mission Architecture Innovation Directorate provides design configuration accreditation and implementation of mission and R&D information management systems and cloud-based solutions that support defense and intelligence priorities as well as internal business processes and mission functions network communications database management security accreditation and workflow management.

Key Responsibilities:

The Information Systems Security Engineer (ISSE) (SME) is responsible for designing implementing and maintaining security controls to protect the organizations information systems in accordance with Department of Defense (DoD) requirements.

This role involves collaborating with various stakeholders to ensure that security measures are effectively integrated into the system development lifecycle (SDLC) and that compliance with relevant regulations is achieved. This is a unique hands-on technical role in such that the ISSE is responsible for compliance-based cybersecurity engineering to include but not limited to cybersecurity engineering and generation of body of evidence requirements per DoD Risk Management Framework (RMF). Additionally the ISSE shall provide management and professional support assistance advice to support the efficient and effective management and operation of the organization activities or systems specifically related to cybersecurity in all phases of RMF.

This role will be the technical component supporting the ISSM.

Per section 1.3.10.10 of the PWS specific tasks and responsibilities include but are not limited to: Specific responsibilities include but are not limited to:

Provide SME expertise and recommendations in applying security requirements to complex combatant command projects identifying gaps and while integrating new technologies.

Develop strategies to address potential solutions to complex problems.

Develop and document requirements from project inception to conclusion.

Provide strategic advice technical guidance and expertise to program and project staff.

Apply security controls and all technical mechanisms required by DoD RMF/Joint Special Access Program Implementation Guide (JSIG)/and Intelligence Community (IC) Directives and building security assessment procedures and evidence for assessment by Authorizing Officials of body of evidence. Engineering administration and configuration of Nessus scans and policies Trellix/McAfee back end and policies Splunk and Elastic SIEM administration engineering and query languages (SPL SQL or ES/QL) for analysis.

Apply STIGs and various security mechanisms within Windows Linux and AWS cloud consoles.

Identify and analyze information system vulnerabilities and compliance issues. Administration of AWS cloud console and cyber-security mechanisms and STIG/SCAP compliance checker.

Execute incident response as necessary.

Provide detailed analysis evaluation and recommendations for improvements optimization and/or maintenance efforts for specified mission-critical challenges/issues as related to system vulnerabilities and remediation.

Coordinate cross-functional teams through meetings and progress measuring activities.

Participate in project performance review meetings and discussions.

Support a cross-functional teams with cyber-security support.

Qualifications:

Required:

A minimum of fifteen (15) years of related work experience in information security and of those years at least ten (10) years of experience supporting a component of the Department of Defense (DoD) or Intelligence Community (IC). A masters degree in computer science Information Technology Cyber-security or a related field (or a bachelors of science degree in related field with an additional 4 years of related work experience).

A DoD 8570.01-M IAT Level III technical certification (such as CISSP CASP or other level 3 technical certification) is required.

Cloud Service Provider Associate Certification (AWS Azure Oracle or Google). Excellent oral written and interpersonal communication skills.

Expertise in building bodies of evidence and assessment and authorization packages/activities within DoD and IC environments specifically Special Access Programs.

The ability to work under pressure and meet deadlines in a rapidly changing and demanding environment.

Strong attention to detail flexibility and the ability to context switch. Expert in multiple domains of Information Technology including cloud cybersecurity networking and others.

Expert in two or more of the following domains: vulnerability analysis and vulnerability management SIEM operations and defensive cyber operations system hardening and cyber tool engineering.

Cybersecurity engineering is related to the RMF lifecycle security control enforcement body of evidence creation and continuous monitoring assessment and authorization processes.

Operating in overlapping security control and overlay environments (CNSSI 1253 Executive Order 12333 Intelligence JSIG etc.).

Experience in overlapping domains at multiple classifications including vulnerability analysis SIEM operations cyber network defense cyber operations malware analysis information systems security management or engineering.

Proficiency with Xacta or eMASS. Experience with DoD Joint Special Access Program Implementation Guide (JSIG) AF Cyber policies NIST SP 800 Series and CNSSI 1253 security controls and overlays.

Experience operating in cloud cybersecurity and shared responsibility models networking and/or data experience is required.

TS/SCI Clearance is required.

Desired:

Experience with DEVSECOPS containerization and zero-trust architectures (preferred).

Splunk or Elastic Certifications (preferred).

Experience with Department of Defense (DoD) Special Access Program (SAP) administrative processes (preferred).

Work Environment:

• Location: On-site

• Travel Requirements: Minimal 0-20%

• Working Hours: Standard

Scheduled Weekly Hours:

40hrs

KBR Benefits

KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match medical dental vision life insurance AD&D flexible spending account disability paid time off or flexible work schedule. We support career advancement through professional training and development.

Belong Connect and Grow at KBR

At KBR we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to and ongoing journey toward being a People First company. That commitment is central to our team of teams philosophy and fosters an environment where everyone can Belong Connect and Grow. We Deliver Together.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion disability sex sexual orientation gender identity or expression age national origin veteran status genetic information union status and/or beliefs or any other characteristic protected by federal state or local law.