KBR
Mission Engineering
InformationSystemsSecurityOfficer
Neural analysis suggests this role is
optimal for Senior candidates.
“Information Systems Security Officer at KBR. Skills: Information Systems Security, Risk Management Framework (RMF), Security Controls, System Audits. Perform extensive assessments of systems and networks. Identify deviations from acceptable configurations”
What You'll Achieve.
Ensure mission success; Mitigate risk; Support system certification and accreditation; Ensure compliance through monthly and quarterly updates; Ensure controls meet security requirements
Industry & Context.
Develop analytical techniques and methodologies; Analyze test results
Travel for the position will be <20% per year, Ability to successfully undergo a government security investigation, Meet eligibility requirements for access to classified, Active Secret clearance required
What They're Looking For.
Must Have
Bachelor's degree in Computer and Architecture Information Systems Management or a related field from an accredited college or university, or equivalent experience, Five (5) to twelve (12) or more years of combined experience performing related duties, An Associate’s degree plus an additional nine (9) to sixteen (16) years of relevant experience may be substituted for a Bachelor’s degree, A high school diploma plus an additional thirteen (13) to twenty (20) years of relevant experience may be substituted for a Bachelor’s degree, A minimum of two (2) years of experience with mid-sized client/server systems in systems analysis, software design, software development, and system administration, Experience with DoD M 5205. 07 Series, Risk Management Framework (RMF), and Joint SAP Implementation Guide (JSIG) requirements, Knowledge of quality assurance, quality control, and independent verification and validation (IV&V) techniques, Experience working independently and as part of a team to research data and develop analytical techniques and methodologies, Experience managing secure Information Systems (IS) and databases, including implementing and maintaining cross-domain solutions, Current Information Assurance Manager (IAM) Level certification in accordance with DoD 8570. 01-M, or the ability to obtain IAM Level certification within six (6) months, Ability to successfully undergo a government security investigation and meet eligibility requirements for access to classified active Secret clearance required
Nice to Have
Implement the Risk Management Framework (RMF) in accordance with NIST SP 800 and the Joint Special Access Program Implementation Guide (JSIG), Participate in the development and maintenance of System Security Plans (SSPs) and Contingency Plans for all assigned systems, Draft, maintain, and manage security artifacts, including System Security Checklists, Privacy Impact Assessments (PIAs), Plans of Action and Milestones (POA&Ms), and Authority to Operate (ATO) documentation, Develop and manage POA&Ms for identified vulnerabilities and ensure compliance through monthly and quarterly updates, Maintain an inventory of all assigned Information Security Systems, Develop Assessment and Authorization (A&A) deliverables, including SSPs, Security Assessment Reports (SARs), Contingency Plans (CPs), and POA&Ms for review and approval by the Authorizing Official, Monitor and conduct Security Control Assessments to ensure controls meet security requirements outlined in the SSP, NIST SP 800-53, and JSIG, Effectively communicate technical security information to non-technical personnel, Coordinate with organizational leadership to ensure timely compliance with security and regulatory requirements, Develop waivers and exceptions for identified information system vulnerabilities
What You'll Do.
Perform extensive assessments of systems and networks
Identify deviations from acceptable configurations
Conduct passive evaluations
Conduct active evaluations
Establish and maintain program control processes
Support system certification and accreditation
Provide support across multiple areas
Assist in implementing government security policies
Recommend appropriate process tailoring
Perform in-depth analyses
Validate security requirements
Recommend additional security controls
Support formal Security Test and Evaluation (ST&E) activities
Conduct pre-test preparations
Participate in security tests
Prepare required reports
Periodically review system audits
Monitor corrective actions
How You'll Work.
Team & Collaboration
Experience working as part of a team to research data; Coordinate with organizational leadership
Communication Scope
Effectively communicate technical security information to non-technical personnel
Process & Methodology
Program control processes
Full Job Description
**Title:** Information Systems Security Officer **Program Summary:** KBR’s Mission Engineering Division delivers complex technical solutions and expert support to the U.S. Department of War, specializing in modeling and simulation, cyber transformation, air vehicle mission integration, and lifecycle support. As a trusted partner with a proven history in mission technology, KBR collaborates closely with clients to develop innovative and effective solutions. With a strong ethical framework, KBR prioritizes data security, privacy, and responsible information management to ensure mission success. **Job Summary:** KBR is seeking a Information Systems Security Officer (ISSO) for Government information systems in support of a Program Management Activity (PMA). The job does not offer remote work; all work will be done onsite. Travel for the position will be <20% per year. **Roles and Responsibilities:** * Perform extensive assessments of systems and networks within a networking environment or enclave to identify deviations from acceptable configurations, enclave policy, or local policy * Conduct both passive evaluations (compliance audits) and active evaluations (vulnerability assessments) * Establish and maintain strict program control processes to mitigate risk and support system certification and accreditation * Provide support across multiple areas, including: * Process support and analysis support * Coordination support * Security certification test support * Security documentation support * Investigations and software research * Introduction and release of new software * Emerging technology research, inspections, and periodic audits * Assist in implementing required government security policies (e.g., RMF, NISPOM, JSIG) and recommend appropriate process tailoring * Perform in-depth analyses to validate existing security requirements and recommend additional security controls and safeguards * Support formal Security Test and Evaluation (ST&E) activities by: * Conductin
Applying for this Information Systems Security Officer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about KBR?
Real rants from real employees. Read before you apply.