• Senior Information System Security Manager

    KBR (Washington, DC)


    Title:

    Senior Information System Security Manager

     

    Senior Information System Security Manager

     

    This is a contingent position based upon contract award

     

    Who We Are

     

    KBR Mission Technology Solutions delivers full life cycle professional and technical solutions that improve operational readiness and drive innovation. We help ensure mission success on land, air, sea, space and cyberspace for the Department of Defense, Intelligence Community, NASA and other federal agencies. KBR’s areas of expertise include engineering, logistics, operations, science, program management, mission IT and cybersecurity. KBR strives to create a safer, more secure and sustainable world by bringing together the best and brightest to deliver technologies and solutions that help our customers accomplish their most critical missions and objectives.

     

    The Mission Ahead

     

    This role is within KBR/NSS Intel division. At KBR Government Solutions, we don't just envision a world that's safer, more secure, and sustainable - we create it. Our legacy of delivering advanced full life cycle professional and technical solutions is matched only by our commitment to operational readiness and innovation. As stewards of critical missions for the Department of Defense, Intelligence Community, NASA, and other key federal entities, we excel in engineering, logistics, operations, science, program management, mission IT, and cybersecurity. United in our quest for excellence, KBR stands at the vanguard, ready to transform possibilities into impactful realities for a better tomorrow.

    Position Overview

    Serve as one of the Senior Information System Security Managers for classified and unclassified environments and oversee assigned ISSOs and assessment of security architecture. Work with Risk Management Framework to determine security categorization and overlay requirements for all customer information systems. Oversee security controls testing, review test results. Review network scans – apply search or sort policies to determine remediation efforts.

    Requirements:

    + Active TS/SCI or Q Clearance

    + Bachelor's Degree in a Technical Field

    + CISSP, CISA or CISM, and be familiar/proficient in all security domains.

    + 15 years experience in Information Assurance

    + 5 years technical experience providing network and/or system administration, information assurance security testing or evaluation duties

     

    What You’ll Do

    In the role of Senior Information System Security Manager your duties will include:

    + Manage ISSO efforts with respect to established duties

    + Serve as Derivative Classifier as required by location

    + Read and implement IA regulations and requirements per the customer’s CISO’s direction; develop and maintain managerial, operational, and technical IA skillset.

    + Comment on new NIST standards / regulations as applies to client environment

    + Review A&A documentation (BOE) to assure accuracy and professionalism as well as compliance with customer requirements. Support development of Contingency Plan, Incident Response Plan, and Configuration Management Plan

    + Employ best practices when implementing security requirements within an information system including.

    + Manages extensive evaluations of major information security networks, prepares evaluation reports, and presents recommendations. Conducts trade off analyses of products for clients to determine optimal informant security solutions.

    + Prepares remedial options and supervise correction of information security shortfalls.

    + Manage, maintain, and ensure successful implementation of Certification and Accreditation program.

    + Ensure products and services comply with all appropriate (ITSEC) certification & accreditation requirements and best practices as prescribed by the customer, local authorities.

    + Analyze scan results, and document findings for products as required to successfully complete Collateral and SCI-level security certification testing and evaluation (ST&E) as appropriate for the product.

    + Prepare Security documentation in support of project tasks and as tasked for approved project requirements, which support successful completion of Collateral and/or SCI-level security testing and evaluation (ST&E) appropriate for the product, including but not limited to Authority of Operated (ATO), Authority to Test (ATT), Memorandum of Understanding (MOU), and Interconnection Security Agreements (ISA).

    + Develop/Update training material includes refreshing training, role specific training, task specific training

    Qualifications:

    + 5 Years of C&A (certification & accreditation) experience with, DCID 6/3, ICD-503, and/or NIST Framework.

    + Knowledge of the IC, national level system security initiatives, and secure Information/Local Area Network (LAN)/Wide Area Network (WAN) technologies.

    + Experience reporting IT Security events/incidents in the time prescribed based on policies and procedures.

    + Knowledge of cloud architecture

    + Preferred technical experience providing network and/or system administration, and/ or computer operations.

    + Knowledge of virtualization

    + Effective interpersonal and presentation skills with the ability to communicate in written and oral form; publication or presentation experiences are preferred.

     

    KBR Benefits

     

    KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.

     

    Belong, Connect, and Grow at KBR

    Basic Compensation:

    $162,900 - $244,400

     

    This range is for the area only

     

    The offered rate will be based on the selected candidate’s knowledge, skills, abilities and/or experience and in consideration of internal parity.

    Additional Compensation:

    KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance.

     

    Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver – Together.

     

    KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.