KBR, Inc.
Overview
Cyber Security RMF Support role at KBR, Inc. National Security Solutions team provides high-end engineering and advanced technology solutions to customers in the intelligence and national security communities. The position supports Systems Engineering & Integration (SE&I) activities for US Space Force satellite communications and interfaces with SE&I team members, contractors, government civilians, and USSF personnel. You will lead and support working groups responsible for technical discussion, risk resolution, requirement gaps, briefings, writing, and action-item tracking, and meeting minutes. Key Responsibilities
Support the Space System Center (SSC) security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation. Create, edit, and review RMF and policy documents to implement administrative controls for Rev 5 control families. Develop and review self-assessments of control narratives and System Control Traceability Matrix (SCTM). Review and edit ATO artifacts such as Ports, Protocols and Services, matrices, and Hardware/Software lists. Propose, coordinate, implement, and enforce DoD information system security policies, standards, and methodologies. Familiarity with vulnerability assessments using ACAS, DISA STIG, and SCAP, incorporating automated Benchmarks. Evaluate security configurations of operating systems and network devices per DISA STIG guidance. Perform security control continuous monitoring, security audits, risk analysis, and mitigation for DoD information systems. Ensure software, hardware, and firmware comply with security configuration guidelines; coordinate changes with ISSM, SCA, and/or Wing Cybersecurity office. Recommend protective or corrective measures during system development in coordination with ISSM; report incidents or vulnerabilities per AFI 17-203. Recommend exceptions, deviations, or waivers to cybersecurity requirements. Prepare certification letters, MoA, ATC packages, SIA, and Security Impact Assessments with system owners for interfaces and networking implementations. Support SCA and STIG curation to DoD/DAF/USSF baselines, audit standards, and POAM. Attend cleared threat briefings; oversee security program design, incident response, cyber risk assessments, attack surface assessments; conduct tabletop exercises and breach readiness reviews. Complete and maintain required cybersecurity certification in accordance with AFMAN 17-1303. Work Environment
Location:
Onsite Travel Requirements:
Minimal Working Hours:
Standard Qualifications
Required: An active Secret clearance is required BA or BS degree in engineering, physics, chemistry, mathematics, computer science, information systems, information technology, or related fields Minimum 2 years of continuous Information Systems/IA/Cybersecurity experience Understanding and working knowledge of RMF Rev 5 and DoDI 8510.01 2+ years of experience with security controls per CNSSI 1253, NIST SP 800-53, and JSIG 2+ years of experience with vulnerability assessments using ACAS, DISA STIG, and SCAP 2+ years of experience with SolarWinds and Splunk or equivalent tools Extensive experience with Linux/Unix CLI and regular expressions Ability to read and extract Cisco configuration files 2+ years of experience implementing DISA-approved security configurations 2+ years of security control continuous monitoring and risk analysis Experience identifying CNCI/NIAP certified technologies and DISA APL Experience in a military cybersecurity role with tactical or enterprise systems DoD Approved Baseline Certification as Information Assurance Manager II (e.g., CISSP, CASP+) Desired: Master’s degree in Computer Science/Engineering with cybersecurity emphasis 5+ years in Cyber Security 5+ years in Systems Engineering Architecture/Design Linux and Cisco certifications DoD Space program experience Security Test and Evaluation (ST&E) TS/SCI Clearance Compensation : Basic Compensation: $135,000-$168,000 in California. The offered rate will be based on the candidate’s knowledge, skills, abilities, and experience. About the Company
KBR is an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status, or other protected characteristics. KBR’s commitment to Belong, Connect and Grow is part of the Zero Harm culture and People First philosophy. R2113488 Note: This description reflects responsibilities and qualifications; it does not include every duty of the position and may be updated as required.
#J-18808-Ljbffr
Cyber Security RMF Support role at KBR, Inc. National Security Solutions team provides high-end engineering and advanced technology solutions to customers in the intelligence and national security communities. The position supports Systems Engineering & Integration (SE&I) activities for US Space Force satellite communications and interfaces with SE&I team members, contractors, government civilians, and USSF personnel. You will lead and support working groups responsible for technical discussion, risk resolution, requirement gaps, briefings, writing, and action-item tracking, and meeting minutes. Key Responsibilities
Support the Space System Center (SSC) security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation. Create, edit, and review RMF and policy documents to implement administrative controls for Rev 5 control families. Develop and review self-assessments of control narratives and System Control Traceability Matrix (SCTM). Review and edit ATO artifacts such as Ports, Protocols and Services, matrices, and Hardware/Software lists. Propose, coordinate, implement, and enforce DoD information system security policies, standards, and methodologies. Familiarity with vulnerability assessments using ACAS, DISA STIG, and SCAP, incorporating automated Benchmarks. Evaluate security configurations of operating systems and network devices per DISA STIG guidance. Perform security control continuous monitoring, security audits, risk analysis, and mitigation for DoD information systems. Ensure software, hardware, and firmware comply with security configuration guidelines; coordinate changes with ISSM, SCA, and/or Wing Cybersecurity office. Recommend protective or corrective measures during system development in coordination with ISSM; report incidents or vulnerabilities per AFI 17-203. Recommend exceptions, deviations, or waivers to cybersecurity requirements. Prepare certification letters, MoA, ATC packages, SIA, and Security Impact Assessments with system owners for interfaces and networking implementations. Support SCA and STIG curation to DoD/DAF/USSF baselines, audit standards, and POAM. Attend cleared threat briefings; oversee security program design, incident response, cyber risk assessments, attack surface assessments; conduct tabletop exercises and breach readiness reviews. Complete and maintain required cybersecurity certification in accordance with AFMAN 17-1303. Work Environment
Location:
Onsite Travel Requirements:
Minimal Working Hours:
Standard Qualifications
Required: An active Secret clearance is required BA or BS degree in engineering, physics, chemistry, mathematics, computer science, information systems, information technology, or related fields Minimum 2 years of continuous Information Systems/IA/Cybersecurity experience Understanding and working knowledge of RMF Rev 5 and DoDI 8510.01 2+ years of experience with security controls per CNSSI 1253, NIST SP 800-53, and JSIG 2+ years of experience with vulnerability assessments using ACAS, DISA STIG, and SCAP 2+ years of experience with SolarWinds and Splunk or equivalent tools Extensive experience with Linux/Unix CLI and regular expressions Ability to read and extract Cisco configuration files 2+ years of experience implementing DISA-approved security configurations 2+ years of security control continuous monitoring and risk analysis Experience identifying CNCI/NIAP certified technologies and DISA APL Experience in a military cybersecurity role with tactical or enterprise systems DoD Approved Baseline Certification as Information Assurance Manager II (e.g., CISSP, CASP+) Desired: Master’s degree in Computer Science/Engineering with cybersecurity emphasis 5+ years in Cyber Security 5+ years in Systems Engineering Architecture/Design Linux and Cisco certifications DoD Space program experience Security Test and Evaluation (ST&E) TS/SCI Clearance Compensation : Basic Compensation: $135,000-$168,000 in California. The offered rate will be based on the candidate’s knowledge, skills, abilities, and experience. About the Company
KBR is an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status, or other protected characteristics. KBR’s commitment to Belong, Connect and Grow is part of the Zero Harm culture and People First philosophy. R2113488 Note: This description reflects responsibilities and qualifications; it does not include every duty of the position and may be updated as required.
#J-18808-Ljbffr