KBR, Inc

Information Systems Security Engineer (ISSE)

KBR, Inc$160K — $172K *
Information Technology
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • Experience with Special Access Programs (SAPs) is essential
  • Strong cloud architecture security knowledge required
  • Excellent analytical skills for quantifying enterprise risk and compliance
  • At least 12 years of technical experience in cybersecurity, IT, or systems engineering
  • Master's degree in engineering, computer science, cybersecurity, networking, or programming needed
  • Active Top Secret/SCI clearance with recent DoD SAP access
  • Subject to a Counterintelligence (CI) polygraph.

Responsibilities

  • Integrate cybersecurity requirements into system architecture and engineering processes
  • Develop and maintain required security artifacts and documentation
  • Perform security engineering analyses such as threat modeling and vulnerability assessments
  • Implement security controls aligned with NIST and other frameworks
  • Communicate risk analysis and mitigation strategies to stakeholders
  • Participate in the change management process and assess security impacts
  • Conduct continuous monitoring for compliance and security standards
  • Collaborate with teams to remediate vulnerabilities and ensure secure configurations
  • Support incident response efforts and coordination with cybersecurity teams
  • Help manage governance frameworks for national security systems.

Benefits

  • 401K plan with company match
  • Medical, dental, and vision insurance
  • Life insurance and AD&D coverage
  • Flexible spending accounts
  • Disability benefits and paid time off
  • Support for professional training and career advancement
  • Potential for bonuses and other forms of compensation.
Full Job Description
Title:
Information Systems Security Engineer (ISSE)

Key Responsibilities:

KBR seeks an Information Systems Security Engineer to provide Senior Cloud Information Systems Security Engineer support to the government program manager to:
  • Integrate cybersecurity requirements into system architecture, design, and engineering processes from concept through deployment
  • Develop and maintain system security artifacts including Security Plans, Security Controls Traceability matrices, architectural diagrams, and engineering documentation
  • Perform security engineering analyses, including threat modeling, vulnerability assessments, and security impact analyses of proposed changes
  • Select, tailor, and implement security controls aligned with NIST SP 800-53, CNSSI 1253, the Joint Special Access Program (SAP) Implementation Guide, and/or applicable organizational frameworks
  • Communicate risk analysis associated with engineered solutions including mitigation strategies, residual risk and risk-benefit recommendations
  • Perform requirements analysis, design, and integration for complex software applications and collaboration infrastructures
  • Participate in the change management process, including submitting and reviewing Change Requests (CRs) and assisting in the assessment of security impact of proposed changes
  • Create and maintain information system security documentation, Standard Operating Procedures (SOP), and provide guidance on active Plans of Action and Milestones (POA&M)
  • Conduct periodic and continuous monitoring of the system, procedures, and documentation to ensure compliance with the authorization
  • Collaborate with ISSOs, system administrators, and development teams to remediate vulnerabilities and ensure secure system configurations
  • Communicate with multiple systems owners to address security relevant design and integration requirements for hybrid systems
  • Evaluate cloud supporting technologies in areas of encryption, identity and access control, boundary protection, and logging/monitoring
  • Support incident response and forensic analysis as needed, ensuring proper coordination with organizational cybersecurity teams
  • Support development and execution of governance frameworks for managing and authorizing national security systems


Work Environment:
  • Location: On-site
  • Travel Requirements: Minimal 0-25%
  • Working Hours: Standard


Qualifications:

Required:
  • Must have experience working with Special Access Programs (SAPs)
  • Strong proficiency in Cloud architecture and associated security elements
  • Must possess excellent analytical skills and be capable of quantifying risk to enterprise systems
    and level of compliance with security policy
  • 12+ years' technical experience in cybersecurity, information technology, or systems engineering
  • Excellent communication skills (verbal and written) required
  • Master's Degree in engineering, computer science, cybersecurity, networking, or programming
  • Current/active Top Secret/SCI; Current or recent DoD SAP access
  • Subject to a Counterintelligence (CI) polygraph


Desired:

  • Advanced knowledge in one or more of the following areas:
  • Secure systems engineering practices, including threat modeling, security architecture design, and/or system hardening
  • Software Development in Java, Python, Ruby and/or C++
  • Linux Expertise
  • Dynamic & Static Application Security Scanning (e.g., OPSWAT, OWASP ZAP, BurpSuite, Fortify
  • Experience with vulnerability management tools (e.g., Tenable, Defender), SIEM technologies, and secure configuration baseline
  • Infrastructure Security Scanning, Vulnerability Scanning (NMAP, Azure Defender, AWS Inspector, ACAS/Nessus)
    Certification Requirements in one or more of the following:
  • Information Systems Security Engineering Professional (ISSEP)
  • Certified Cloud Security Professional (CCSP)
  • Certified Information Systems Security Professional (CISSP)
  • CompTIA Advanced Security Practitioner (CASP)
  • GIAC Cloud Security Essentials Certification (GCLD)


Scheduled Weekly Hours:

40hrs

Basic Compensation:

For Virginia compensation salary range is $160,000-$172,000.

Additional Compensation:

KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance.

Ready to Make a Difference?

If you're excited about making a significant impact in the field of national defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together.

KBR Benefits

KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.

Belong, Connect and Grow at KBR

At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.

About KBR, Inc

KBR, Inc is an American engineering, procurement, and construction company headquartered in Houston, Texas. The company provides services to customers in the energy, chemical, and government sectors, among others. KBR has a global presence, with operations in over 40 countries. The company was founded in 1901 as M.W. Kellogg Company and has undergone several name changes and mergers since then. KBR is committed to delivering innovative and sustainable solutions to its customers while also being a responsible corporate citizen.
Learn more about KBR, Inc
Size
28,000 employees
Market Cap
$7.1 billion
Industry
Net Income
-$72 million
Founded
1919
5 Year Trend
+11.5%
Revenue
$5.7 billion
NASDAQ

Similar Jobs

More Jobs at KBR, Inc

More Information Technology Jobs

Find similar Information Systems Security Engineer (ISSE) jobs: