Posted today
Top Secret/SCI
$104,160 - $156,135
Unspecified
Engineering - Systems
Colorado Springs, CO (On-Site/Office)
Title:
Cybersecurity & Network Systems Engineer
Program Summary
KBR's Product and Technology Solutions Division specializes in rapid prototyping and advanced technology solutions for directed energy, electronic warfare, and security applications. With expertise in electronic warfare systems, critical infrastructure protection, and product R&D, KBR delivers cutting-edge innovations to meet mission-critical needs. Backed by a global presence and a strong ethical framework, KBR collaborates closely with customers to develop secure, effective, and forward-thinking solutions.
Job Summary
The Cybersecurity & Network Systems Engineer performs modernization, security engineering, and network architecture efforts across Tactical Integrated Ground Suite (TIGS) program. Leveraging expertise in Cisco, identity & access management, Zero Trust Architecture, containerized environments, and NIST-aligned cybersecurity engineering, this role develops secure enterprise and deployable network solutions, performs site surveys, authors network inputs, implements STIG and RMF package requirements, and supports ATO validation activities. The engineer provides hands-on configuration, system hardening, network migration execution, zero trust integration, and cross-platform troubleshooting while ensuring all deliverables (drawings, artifacts, diagrams, documentation, training inputs) meet Army standards and program objectives.
Roles and Responsibilities
• Cybersecurity Engineering and RMF STIG Integration to apply NIST, RMF, and Zero Trust principles across network modernization initiatives and supporting infrastructure projects.
• Develop STIG automation and STIG checklists, perform vulnerability scans using tools such as ACAS, document findings, and support POAM development and remediation tracking.
• Architect and implement Zero Trust and IAM solutions using technologies such as Keycloak, Pomerium, PacketFence, and identity centric access controls.
• DevOps, Automation and Modern Platform Integration supporting configuration and infrastructure management using Ansible, Terraform, Docker, Kubernetes, and related automation frameworks.
• Support engineering of containerized security labs, overlay networks, distributed Kubernetes clusters, and secure cloud adjacent architectures.
• Oversee cybersecurity operations support services spanning hardware and software tools and sensors from perimeter defenses to endpoint systems, including equipment management, logging, incident response, compliance reporting, RMF support, SCA coordination, and CSSP integration.
• Evaluate cybersecurity policies, emerging technologies, and operational best practices to provide recommendations that strengthen the effectiveness and efficiency of cybersecurity operations.
• Analyze complex security issues and develop effective solutions and incident response actions to maintain cybersecurity compliance, operational readiness, and reduce cyber risk.
• Lead preparation and maintenance of artifacts to support RMF packages and achieve ATO, including maintaining documentation, implementing and monitoring security controls, and reporting status to ISSM, ISSO, and Program Manager.
• Support security incident response team requirements including inspections, audits, policy reviews, strategy development, and recommendations to improve overall security posture.
Basic Qualifications
• Bachelor's degree and 2 years of experience OR an Associate's degree and 6 years of experience.
• Active TS/SCI Clearance
• Strong hands-on experience with Cisco/Juniper, AAA/TACACS+, VLAN segmentation.
• Demonstrated capability implementing NIST-aligned cybersecurity controls and Zero Trust architectures. • Experience with IAM solutions including Keycloak, policy-based authentication, and SSO federations.
• Hands-on experience with Docker, Kubernetes, ESXi, and infrastructure automation.
• Experience operating IDS/IPS systems (Suricata), OPNsense, Grafana, and packet analysis platforms.
• Minimum requirement for CompTIA Security+ A+
Preferred Qualifications
• Experience supporting RMF, eMASS package inputs, STIG compliance and vulnerability remediation.
• Familiarity with Army networks, TDL/TDP processes, and DISA STIG/SRG baseline configurations.
• Experience with wireless surveys, RF spectrum analysis, and site infrastructure validation.
• Experience with deployment of Zero Trust overlays (OpenZiti, Pomerium) and NAC solutions (PacketFence). •
• Exposure to Cisco Security training: SCOR, SAUI, CBROPS.
• Experience with enterprise and tactical closed restricted network migration efforts utilizing a varied OS environment such as Ubuntu/RHEL, Windows 11/Server, networking/identity, and secure endpoint integration.
Salary Range: $104,160 - $156,135
The salary range posted is based on Colorado Springs, CO. The offered rate will be based on the selected candidate's location, knowledge, skills, abilities, and/or experience, contract affordability, and in consideration of internal parity.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBR
At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
Cybersecurity & Network Systems Engineer
Program Summary
KBR's Product and Technology Solutions Division specializes in rapid prototyping and advanced technology solutions for directed energy, electronic warfare, and security applications. With expertise in electronic warfare systems, critical infrastructure protection, and product R&D, KBR delivers cutting-edge innovations to meet mission-critical needs. Backed by a global presence and a strong ethical framework, KBR collaborates closely with customers to develop secure, effective, and forward-thinking solutions.
Job Summary
The Cybersecurity & Network Systems Engineer performs modernization, security engineering, and network architecture efforts across Tactical Integrated Ground Suite (TIGS) program. Leveraging expertise in Cisco, identity & access management, Zero Trust Architecture, containerized environments, and NIST-aligned cybersecurity engineering, this role develops secure enterprise and deployable network solutions, performs site surveys, authors network inputs, implements STIG and RMF package requirements, and supports ATO validation activities. The engineer provides hands-on configuration, system hardening, network migration execution, zero trust integration, and cross-platform troubleshooting while ensuring all deliverables (drawings, artifacts, diagrams, documentation, training inputs) meet Army standards and program objectives.
Roles and Responsibilities
• Cybersecurity Engineering and RMF STIG Integration to apply NIST, RMF, and Zero Trust principles across network modernization initiatives and supporting infrastructure projects.
• Develop STIG automation and STIG checklists, perform vulnerability scans using tools such as ACAS, document findings, and support POAM development and remediation tracking.
• Architect and implement Zero Trust and IAM solutions using technologies such as Keycloak, Pomerium, PacketFence, and identity centric access controls.
• DevOps, Automation and Modern Platform Integration supporting configuration and infrastructure management using Ansible, Terraform, Docker, Kubernetes, and related automation frameworks.
• Support engineering of containerized security labs, overlay networks, distributed Kubernetes clusters, and secure cloud adjacent architectures.
• Oversee cybersecurity operations support services spanning hardware and software tools and sensors from perimeter defenses to endpoint systems, including equipment management, logging, incident response, compliance reporting, RMF support, SCA coordination, and CSSP integration.
• Evaluate cybersecurity policies, emerging technologies, and operational best practices to provide recommendations that strengthen the effectiveness and efficiency of cybersecurity operations.
• Analyze complex security issues and develop effective solutions and incident response actions to maintain cybersecurity compliance, operational readiness, and reduce cyber risk.
• Lead preparation and maintenance of artifacts to support RMF packages and achieve ATO, including maintaining documentation, implementing and monitoring security controls, and reporting status to ISSM, ISSO, and Program Manager.
• Support security incident response team requirements including inspections, audits, policy reviews, strategy development, and recommendations to improve overall security posture.
Basic Qualifications
• Bachelor's degree and 2 years of experience OR an Associate's degree and 6 years of experience.
• Active TS/SCI Clearance
• Strong hands-on experience with Cisco/Juniper, AAA/TACACS+, VLAN segmentation.
• Demonstrated capability implementing NIST-aligned cybersecurity controls and Zero Trust architectures. • Experience with IAM solutions including Keycloak, policy-based authentication, and SSO federations.
• Hands-on experience with Docker, Kubernetes, ESXi, and infrastructure automation.
• Experience operating IDS/IPS systems (Suricata), OPNsense, Grafana, and packet analysis platforms.
• Minimum requirement for CompTIA Security+ A+
Preferred Qualifications
• Experience supporting RMF, eMASS package inputs, STIG compliance and vulnerability remediation.
• Familiarity with Army networks, TDL/TDP processes, and DISA STIG/SRG baseline configurations.
• Experience with wireless surveys, RF spectrum analysis, and site infrastructure validation.
• Experience with deployment of Zero Trust overlays (OpenZiti, Pomerium) and NAC solutions (PacketFence). •
• Exposure to Cisco Security training: SCOR, SAUI, CBROPS.
• Experience with enterprise and tactical closed restricted network migration efforts utilizing a varied OS environment such as Ubuntu/RHEL, Windows 11/Server, networking/identity, and secure endpoint integration.
Salary Range: $104,160 - $156,135
The salary range posted is based on Colorado Springs, CO. The offered rate will be based on the selected candidate's location, knowledge, skills, abilities, and/or experience, contract affordability, and in consideration of internal parity.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBR
At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
group id: 10166755
N
We Value Our People
