Information Systems Security Manager (ISSM)

Title:
Information Systems Security Manager (ISSM)

Belong. Connect. Grow. with KBR!

KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.

KBR is seeking an Information Systems Security Manager (ISSM) to join our team in El Segundo CA. This is an excellent opportunity to join a small, hand selected systems security engineering team defining the next generation of space communication systems supporting US Space Force and Space Systems Command (SSC), Spectrum Warfare Systems Delta (SZW). You will support Systems Engineering & Integration (SE&I) activities in a multidisciplinary and collaborative environment. You will work onsite, co-located and closely integrated with the Government Customer.

Why Join Us?

• Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
• Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
• Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.

Key Responsibilities:

• Maintain and enforce all cybersecurity policies, standards, and directives to ensure assessment and authorization of information systems processing classified information
• Participate in IT architecture design reviews to assess and ensure compliance with cybersecurity requirements
• Ensure cybersecurity principles are embedded in systems engineering efforts for ground and space systems in multiple classified computing domains
• Integrate the Risk Management Framework throughout the system acquisition lifecycle
• Create, review, and assess RMF related artifacts for acceptable implementation of cybersecurity principles
• Develop, coordinate, and implement cybersecurity strategies as a sub-component of the Program Protection Plan
• Evaluate and apply government cybersecurity (DoD, NIST, FIPS, and CNSS) policies and instructions as necessary
• Conduct program and technical risk assessments to determine necessary cybersecurity protection measures
• Monitor the evolving state of industry knowledge and application to information security best practices
• Interface with other government organizations during security evaluation of engineering design solutions
• Provide technical security evaluation support to the Security Control Assessor (SCA) during contractor assessment and authorization activities
• Evaluate the continued effectiveness of implemented protection measures within the authorization boundary
• Prepare, review, and present technical reports and briefings
• Provide mentoring and technical leadership to the cybersecurity program team

Work Environment:

• Location: On-site
• Travel Requirements: Minimal
• Working Hours: Standard

Required Skills and Experience:

• Bachelor's degree in Cybersecurity, Engineering, or a related scientific or technical discipline
• 3 years of work experience in Cybersecurity may be considered in lieu of Bachelor's degree
• 10+ years of work experience in Information Assurance/Cybersecurity
• Experience as an ISSO, ISSE, or ISSM for a complex system
• Certified Information Systems Security Professional (CISSP) Certification or equivalent
• Ability to translate cybersecurity related policies and guidance into system requirements
• Experience with cybersecurity assessment and authorization processes such as the Risk Management Framework
• Understanding of common vulnerabilities and associated risk mitigation strategies
• Experience with cybersecurity policy and processes, architectures, testing and evaluation procedures, including Zero Trust
• Articulate complicated security concepts in cross-functional planning, coordination and task execution across the spectrum of systems engineering and integration activities
• With minimal oversight, be able to sort through complex issues, prioritize them accordingly, advocate for resources, and elevate to management as necessary
• Effective interpersonal and team-building skills, to engage at both the engineer and management levels to build confidence and collaboration between team members
• Strong written and verbal communications skills
• Experience with COMSEC key management and familiarity with cryptographic equipment lifecycle management concepts
• Ability and willingness to obtain a DoD 8570.01-M recognized IAT Level III cyber security certification within 1 year from date of hire
• The ability to work in a secure, confined location (i.e., SCIF)
• Must have an active TS/SCI clearance to be considered for this position

Preferred Skills and Experience:

• DoD 8570.01-M IAT Level III approved cybersecurity baseline certification
• Master's degree in Cybersecurity, Engineering, or a related scientific or technical discipline
• Computing Technology Industry Association Security + Certification
• Understanding and experience in the acquisition life cycle for information systems
• Experience in security control evaluation, testing, and assessment in complex system environments
• Familiarity with security tools for implementing and assessing security compliance (e.g. SCAP, STIGS, ACAS)
• Experience deploying and maintaining a Security Information and Event Management system for a multiple operating system enterprise

Scheduled Weekly Hours: 40

Basic Compensation: $160,000 - $200,000

The offered rate will be based on the selected candidate's knowledge, skills, abilities and/or experience and in consideration of internal parity.

Additional Compensation:

KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance.

Belong, Connect and Grow at KBR

At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.