Title:
Cybersecurity Architect

Job Summary:
The Cybersecurity Architect designs, implements, and maintains secure enterprise architectures aligned with Risk Management Framework (RMF) standards. This role ensures that systems, applications, and infrastructure incorporate robust security controls, effective access management, and regulatory compliance. The ideal candidate brings extensive experience supporting U.S. Government software programs, including the integration of Commercial Off-the-Shelf (COTS) solutions. They possess deep expertise in security policy, secure system design, and DevOps integration, with a proven ability to operate effectively in Agile/SAFe environments using Azure DevOps (ADO).

Roles and Responsibilities:

• Design and implement enterprise security architectures aligned with RMF (NIST Risk Management Framework) requirements
• Define and enforce security design principles across applications, infrastructure, and cloud environments
• Develop and maintain access control models, including RBAC, ABAC, identity governance, and least privilege strategies
• Ensure integration of security practices into DevOps pipelines (DevSecOps), including automated testing, code scanning, and secure deployment
• Work within SAFe Agile frameworks, participating in planning, architecture reviews, and continuous improvement initiatives
• Utilize Azure DevOps (ADO) for backlog management, CI/CD pipelines, and governance of secure development practices
• Conduct system security architecture reviews, threat modeling, and risk assessments
• Effectively collaborate with development, infrastructure, and business teams to embed security into system lifecycles
• Define and implement security controls, ensuring compliance with regulatory and organizational requirements
• Support Authority to Operate (ATO) processes and ensure proper documentation and RMF artifact development.
• Provide guidance on secure system integration and cloud security architecture
• Monitor evolving threat landscapes and adjust security architecture accordingly
• Develop and maintain security standards, policies, and architecture documentation
• Must possess exceptional communication skills.

Key Competencies

• Strategic thinking and system-level architecture design
• Strong analytical and risk assessment skills
• Excellent communication with both technical and non-technical stakeholders
• Ability to influence and guide secure development practices
• Continuous learning mindset aligned with evolving security threats

Work Environment

• Agile/SAFe collaborative team environment
• Integration with cross-functional teams (engineering, DevOps, compliance, operations)
• Cloud-first and security-focused enterprise ecosystem

Success Metrics

• Compliance with RMF and successful ATO outcomes
• Security posture improvements and risk reduction
• Effectiveness of DevSecOps integration
• Timely delivery of secure architecture solutions within SAFe increments
• Adoption of access control and security design best practices

Basic Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related field (or equivalent experience)
• U.S. Citizen. Active DoD Secret clearance or higher.
• 5+ years of experience in cybersecurity, with at least 3+ years in security architecture roles
• Experience supporting U.S. Government software programs
• Experience integrating Commercial Off-the-Shelf (COTS) Identity Management solutions
• Strong experience with NIST RMF and related frameworks (NIST 800-53, 800-37)
• Proven expertise in access control mechanisms (IAM, RBAC, ABAC, Zero Trust principles)
• Deep understanding of secure system and application design
• Hands-on experience integrating security into DevOps/DevSecOps pipelines
• Experience performing risk assessments, threat modeling, and vulnerability management
• Knowledge of cloud security architectures (particularly Microsoft Azure)
• Strong understanding of network, application, and infrastructure security

Preferred Qualifications

• Certifications such as CISSP, CISM, CCSP, or Azure Security Engineer (AZ-500)
• Experience supporting federal or DoD RMF processes (ATO, eMASS, etc.)
• Familiarity with Zero Trust Architecture (ZTA)
• Experience with security automation tools (SAST, DAST, container security, IaC scanning)
• Experience working in SAFe Agile environments
• Proficiency with Azure DevOps (ADO) for pipeline automation and workflow management
• Knowledge of compliance frameworks (FISMA, FedRAMP, ISO 27001)
• Experience with hybrid and multi-cloud environments

Work Location: Remote

Compensation: $117,300.00 - $176,000.00. The salary range posted is based on the national average. The offered rate will be based on the selected candidate's location, knowledge, skills, abilities, and/or experience, contract affordability, and in consideration of internal parity.

Additional Compensation:

KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short-term incentives, long-term incentives, or discretionary payments for exceptional performance.

Benefits:

KBR offers a selection of competitive lifestyle benefits which could include a 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.