Senior Cybersecurity Engineer – Security Controls Assessor Representative
| Company | KBR |
|---|---|
| Location | Beavercreek, OH, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Expert or higher |
Requirements
- 10+ years of experience in information assurance and/or cybersecurity with BS Degree in Information Technology, Computer Science, or related field. 8 years of experience may be substituted for a bachelor’s degree
- DoD 8140 IAM Level II is required (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC) CCISO, HCISPP)
- Familiarity with DoDIs 8500.01 & 8510.01, NIST SP 800-53, and RMF
- Active Secret Clearance with ability to gain Top Secret, SAP/SAR
Responsibilities
- Provide technical recommendations based on results of evaluation of the technical implementation of the security design to ascertain that security software, hardware, and firmware features affecting confidentiality, integrity, availability, accountability, and nonrepudiation have been implemented.
- Analysis of weapons systems’ Supply Chain Risk Management plans and implementation.
- Develop A&A package artifacts for assigned systems as well as, assisting the program managers in developing decision briefings for the Security Control Assessor (SCA) and the Authorizing Official (AO).
- Conduct hardware and software assurance assessments.
- Participate in Continuous Monitoring activities to include document or process reviews and onsite inspection/audit/validation activities
- Participate in requirements prioritization, reviews and inspections of processes and documents
- Participate in peer reviews of work products derived from requirements specifications to ensure that the requirements were interpreted correctly
- Perform other duties as assigned by management
Preferred Qualifications
- Prior performance in role as ISSM
- Information Assurance background with policy, STIGS, ACAS. Network security and Network management/operations experience is desired.
- Weapon system/airborne platform software, avionics or networking experience is desired.
- Knowledge of Enterprise Mission Assurance Support Service (eMASS) is desired
- Cloud/Web Development Experience with Certified Cloud Security Knowledge (CCSK) Certification