Senior Cybersecurity Engineer

Title:

About KBR:

At KBR We do things that matter.

We deliver science technology and engineering solutions to governments and companies around the world. KBR employs approximately 38000 people worldwide with customers in more than 80 countries and operations in over 29 countries.

KBR is proud to work with its customers across the globe to provide technology value-added services and long-term operations and maintenance services to ensure consistent delivery with predictable results. At KBR We Deliver.

KBR in Australia

With over 65 years working on some of Australias largest and most complex projects KBR has unmatched experience supporting the nations critical infrastructure energy transition and national security priorities. KBR has around 2000 employees throughout Australia who are focused on delivering innovative technology and engineering solutions for a safer more secure and sustainable future.

Belong Connect and Grow at KBR

At KBR we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to and ongoing journey toward being a People First company. That commitment is central to our team of teams philosophy and fosters an environment where everyone can Belong Connect and Grow. We Deliver Together.

The Opportunity:

KBR is seeking an experienced and motivated Senior Cybersecurity Engineer to support current and upcoming Defence programs across the capability lifecycle.

This is a critical leadership role in the delivery of secure resilient and integrated Defence systems. As a Senior Cybersecurity Engineer you will be responsible for ensuring that cybersecurity principles controls and architectures are effectively embedded across engineering logistics and project environments to maintain information assurance and compliance.

You will provide strategic oversight and hands-on technical leadership across system security design risk management and accreditation activitiesensuring that Defence systems and data are protected in accordance with the Australian Government Information Security Manual (ISM) DISP cyber requirements and relevant international standards.

Operating as a subject-matter expert you will anticipate emerging threats identify program and customer cybersecurity risks and lead the continuous improvement of security engineering frameworks processes and toolsets. You will also mentor and guide engineering and project teams to ensure cybersecurity best practices are integrated across the organisation.

This position is ideal for an experienced professional who thrives at the intersection of secure systems engineering risk management and Defence compliancecontributing directly to KBRs mission to deliver trusted cyber-resilient solutions that enhance Australias Defence capability.

Responsibilities

The key responsibilities of the role will include but are not limited to:

• Designing testing and developing new systems applications and solutions for enterprise-wide cyber systems and networks

• Handling a wide range of security issues including firewalls electronic data traffic and network access

• Performing analyses at all levels of total system product including concept design fabrication test installation operation maintenance and disposal

• Using encryption technology penetration and vulnerability analysis of various security technologies and conducting information technology security research

• Ensuring system security needs are established and maintained for one or more of the following:

  • operations development

  • security requirements definition

  • security risk assessment

  • systems analysis

  • systems design

  • security test and evaluation

  • certification and accreditation

  • systems hardening

  • vulnerability testing and scanning

  • incident response

  • disaster recovery

  • business continuity planning

• Providing analytical support for security policy development and analysis

• Integrating new architecture features into existing infrastructures

• Designing cyber security architectural artifacts

• Providing architectural analysis of cyber security features and relating existing system to future needs and trends

• Embedding advanced forensic tools and techniques for attack reconstruction

• Providing engineering recommendations and resolving integration and testing issues

• Solving complex problems including taking a new perspective to identify and recommend solutions/best practices

• May be required to advise multi-disciplinary teams or run projects

Qualifications Skills and Experience

Essential

• Tertiary qualification in Cybersecurity Computer Science Engineering Information Systems or a related technical discipline

• Minimum 710 years experience in cybersecurity engineering assurance or governance within the Defence sector or another highly regulated technical environment.

• Demonstrated knowledge and practical application of Defence and international cybersecurity standards and frameworks (e.g. PSPF DSPF ISM E8MM CSAA Framework Defence ICT/Cyber Procurement Supply Chain Risk Management Framework DCwS Framework SCCG).

• Proven experience leading or contributing to cybersecurity risk assessments security design reviews and system accreditation activities under Defence security frameworks.

• Strong understanding of secure system architectures information assurance principles and cyber risk management across the system lifecycle.

• Proficiency with cybersecurity management and monitoring tools such as SIEM vulnerability management platforms endpoint protection and secure configuration baselines.

• Demonstrated ability to develop implement and maintain Cybersecurity Management Plans (CSMPs) Risk Management Frameworks (RMFs) and security documentation (e.g. ISSMP CCR SRMP SSecP SSOPs) for Defence programs.

• Strong analytical organisational and communication skills with the ability to collaborate effectively across engineering program management and customer security teams.

• Australian Citizenship required to obtain and maintain a security clearance.

• Current NV1 Security Clearance (or eligibility to obtain and maintain).

Desirable

• Experience in Defence acquisition and sustainment programs across the capability lifecycle with emphasis on cyber and information assurance requirements

• Knowledge of the Australian Government Information Security Manual (ISM) DISP cyber security controls and international standards such as ISO/IEC 27001 and NIST SP 800-171

• Experience leading or mentoring cybersecurity professionals engineers or small teams in secure system design implementation and assessment

• Familiarity with digital engineering environments secure system architectures and integration of cybersecurity with model-based systems engineering (MBSE) frameworks

• Experience in assessing implementing and continuously improving cybersecurity controls monitoring systems and risk management processes within Defence or critical infrastructure systems

• Exposure to contract accreditation and compliance management including reporting to Commonwealth Prime or international Defence clients on cybersecurity assurance and risk posture.

Benefits of KBR

• A workplace culture certified as a Great Place To Work (Aus India UK & US)

• Flexible working conditions

• Competitive salary (including annual reviews)

• Paid Parental leave

• Paid Reservist leave

• Income protection

• Corporate rewards

• Salary packaging/Novated leasing

• Discounted employee stock purchase plans

• Flu shots skin checks and private health insurance discounts

• Career development: Online learning mentorship and career pathways

If youre ready to shape tomorrow lets get started. Apply Now!

KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land sea community and culture. We pay our respects to Elders past and present.

As a Major Service Provider of the Australian Defence Force an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.

#LI-JAW1