Senior Information System Security Officer (ISSO)
Title: Senior Information System Security Officer (ISSO)Belong. Connect. Grow. with KBR! KBRs National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the countrys most critical role protecting our national security. Why Join Us? Innovative Projects: KBRs work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
KBR is seeking a Senior ISSO to be part of our team supporting our customer in Chantilly, VA that delivers mission-critical capabilities directly supporting intelligence-gathering missions from overhead systems. The ISSO is responsible for developing and implementing strategies to safeguard the organization's critical information assets, ensuring compliance with relevant security policies, standards, and regulations. The Senior ISSO will help guide a team of professionals in identifying security risks, developing mitigation plans, and maintaining a robust security posture across the organization. The ideal candidate will have a strong background in space and intelligence systems with extensive experience using the Risk Management Framework (RMF). This is a contingent position based upon contract award Primary Responsibilities: Develop, update, and/or review RMF documentation to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP). Assess system compliance against NIST, DoD, and IC security requirements to include the NIST 800-53 and 800-171 controls, and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs). Provide Subject Matter Expert (SME) knowledge on matters related to RMF activities across multiple systems and networks of various classifications. Develop and implement information security policies, procedures, and guidelines in accordance with industry best practices, regulatory requirements, and required government policy (e.g. JSIG, NISPOM, NIST SP 800-171, NIST 800-53). Participate in sessions aimed at identifying, planning, and executing strategies in response to emerging cybersecurity policies. Maintain awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes. Collaborate with cross-functional teams to ensure the security of new and existing systems and applications. Other duties as assigned.
Basic Qualifications: Bachelors Degree in computer science, information systems, or related field and at least ten (10) years of relevant work experience in IT or cybersecurity Minimum of five (5) years of experience performing ISSM or ISSO duties in classified environments DoD 8140-compliant baseline certification (CISSP preferred) Experience with cloud service providers (CSPs) (e.g. AWS, Azure) Demonstrated experience with Risk Management Framework Familiarity and experience with technologies such as eMASS, Xacta, ACAS, and Splunk Experience in assessing systems using NIST 800-53 and/or DISA STIGs and SRGs Excellent oral and written communication skills
Security Clearance: Active TS/SCI with Polygraph Belong, Connect and Grow at KBR
At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of teams philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver Together. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
|
