KBR Cyber Security Analyst/Engineer 4 in Charleston, South Carolina
Cyber Security Analyst/Engineer 4
KBR is seeking a Cyber Analyst/Engineer with Risk Management Framework (RMF) experience to perform Assessment and Authorization (A&A) analysis and conduct Independent Verification and Validation (IV&V) for Computer Network Defense (CND) systems, major applications, enclaves, and medical devices. This role will work collaboratively with Information Technology (IT) Engineers, System Administrators, Information Systems Security Managers (ISSM), and Security Controls Assessor Representatives (SCAR) to conduct Cyber Security analysis, assessment, mitigation, and remediation to ensure compliance with applicable Department of Defense (DoD) and Defense Health Agency (DHA) policies, procedures, and regulations.
This position is not limited to the North Charleston, SC location, but it is preferred. Full-time remote work for applicants outside of SC is available for this position.
This individual’s primary responsibility will be to track efforts and perform tasks related to A&A within DHA to ensure assigned DoD information systems, devices, and networks can obtain and maintain Authorization to Operate (ATO) and other decisions. This individual will plan, coordinate, and lead teams to conduct assessments of information systems and networks to identify vulnerabilities, risks, and security requirements in accordance with the DHA A&A process. Secondary responsibilities include testing CCIs, validating Security Plans, weekly status updates, and extensive work in eMASS packages. This individual will be responsible for supporting DHA SCARs, the DHA Security Control Assessor (SCA), and other DHA cybersecurity leadership in the execution and enforcement of DHA’s Cyber Security and RMF process.
Experience with the development of RMF Cyber Security documentation
Experience with DHA Cyber Security Directorate is a plus
Demonstrated experience with RMF Steps 1-5
Working knowledge of eMASS (Enterprise Mission Assurance Support Service)
Knowledge of NIST SP 800-53 and 800-37, CNSSI 1254, and other DoD Risk Management policies
Experience performing Information Assurance (IA) controls analysis, testing, and risk assessments
Ability to identify and evaluate major applications, infrastructure, enclaves, and Enterprise environments based on accreditation boundaries
Knowledge of defense-in-depth and other information security and assurance principles and associated supporting technologies
Familiarity with the use of vulnerability scanning and assessment tools necessary to identify and document compliance
Ability to lead teams and regularly interact with senior level program personnel
Capable of providing thoughtful feedback to the SCAR, SCA and other DHA Cyber Security leadership in to identify risks, communicate recommended courses of action, and recommend process improvements
Ability to manage multiple projects simultaneously
Strong verbal and written communications and interpersonal skills
A self-leader, self-thinker, needs little direction, ability to work in a dynamic team environment Required Qualifications
15+ years of technical experience or a Bachelor's Degree and 7+ years of technical experience
Active Secret Clearance
Minimum of an IAT Level II certification is required
IAT/IAM Level III certification is preferred Travel Travel may be required up to 25%, sometimes with little notice
Full-time, 40 hours per week, Monday-Friday
Scheduled Weekly Hours:
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
KBR is a global provider of differentiated professional services and solutions across the asset and program life cycle within the government services and technology sectors. KBR employs approximately 28,000 people worldwide with customers in more than 80 countries and operations in 40 countries.
KBR is proud to work with customers across the globe to provide technology, value-added services, and long- term operations and maintenance services to ensure consistent delivery with predictable results. At KBR, We Deliver.