Title:
Information System Security Manager (ISSM)
Deliver documentation to include Executive level briefings, Assessments, Self-Assessments, RMF packages, and supporting RMF documentationReview Cybersecurity tool reports for the purposes of reporting and complianceSoftware Certification package developmentSupport security engineering projects and solution delivery.Lead security audit and compliance activities for each system responsible forResponsible for auditing all artifacts provided in each RMF package to determine system readiness for ATO packet submissions.Provide recommendations to the SISO, PM, and AO regarding remediation and mitigation of identified vulnerabilities on test reports and plan of action and milestones (POA&Ms).Monitor system status updates and report to senior leadership.Create monthly executive reports, vulnerability reports.Monthly executive briefing to SISO, PM on security metricsInterface with PMs and SISO on issues needing input/concurrenceDraft and present RMF deliverables to senior leadershipAttend Executive Program Reviews as the ISSMWork with outside agencies on Memorandums of Understanding / Interconnection Service Agreements, and other senior level agreements etc.Security Clearance Requirements: Active TS/SCI and willingness to sit for a poly upon request.Bachelor’s degree in engineering, Computer Science, or 8 years IT field experience in lieu of degree; Master’s Degree preferredMinimum of 2 years of Information Technology Information Assurance, or Cyber Security engineering experience.Minimum of 2 years of experience in conducting security assessments by reviewing security controls with the ISSO/ISSM and guide programs through RMF process.Must be DoD 8140 compliantPreferred certifications: CISSP, ISSMP, GSLC, CAP, CASP+, CCISO CCSP, CISM, CISSP, Cloud+ or SSCPProven expertise with assessing security controls in accordance with NIST Special Publications (i.e.: NIST 800 Series)Proven in-depth knowledge of Cybersecurity principles technologies, and processes.Experience with NIST 800-53, Security DevelopmentFamiliarity with performing assessments for Unclassified and Classified environmentsAbility to adapt to process changesAbility to interface with senior leadershipAbility to support high visibility or high priority projectsPossession of excellent oral and written communication skillsDesired
Master’s Degree preferred in Engineering, Computer ScienceBelong, Connect and Grow at KBR
At KBR, we are passionate about our people and our Zero Harm culture.
These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company.
That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow.
We Deliver – Together.
KBR is an equal opportunity employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.