4,839 System Security jobs in the United States

In a world of possibilities, pursue one with endless opportunities. Imagine Next!
When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with exceptional people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next, right now. We've got what you're looking for.
**Job Description:**
Parsons is looking for an amazingly talented **Lead System Security Engineer** to join our team!
**What You'll Be Doing:**
+ Serve as the technical SME for RMF-based cybersecurity assessments and system authorization strategies.
+ Develop and update RMF artifacts, including some or all of the following:
+ System Security Plans (SSPs)
+ Security Control Traceability Matrices (SCTMs)
+ Configuration Management Plans
+ Incident Response Plans
+ Continuous Monitoring (CONMON) Plans
+ POA&Ms and Security Assessment Reports (SARs)
+ Support the IATT, ATC, and ATO processes, supporting internal engineering teams and external Authorizing Officials (AOs).
+ Perform system-level security control assessments (NIST SP 800-53) and validation of security posture.
+ Evaluate external connection risks and support the ATC approval process with boundary defense configurations and enclave protections.
+ Support vulnerability and compliance scans using tools such as ACAS, Tenable Security Center, STIG Viewer, and Evaluate STIG.
+ Work with development and infrastructure teams to define, validate, and maintain secure configurations and baselines.
+ Maintain and update continuous monitoring (CONMON) processes, collect metrics, track findings, and coordinate with ISSMs and stakeholders.
+ Draft and maintain cyber documentation required for accreditation package submission.
+ Assist in security impact analyses for changes in configuration, new software deployments, or system modifications
**What Required Skills You'll Bring** **:**
+ Bachelor's degree in Software, Computer, Systems, Electrical, Information Technology Engineering, or a related technical field. Additional years of experience can count in lieu of a degree.
+ 15+ years of related experience
+ Experience withRMF-based cybersecurity assessments
+ Experience supporting IATT, ATO, or ATC approval efforts
+ Strong understanding of DoD and NIST cybersecurity frameworks and controls
+ Possess a DoD / Information Assurance Manager II certification or able to obtain within 6 months of hire: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Authorization Professional (CAP), CompTIA Advanced Security Practitioner Plus (CASP+), GIAC Security Leadership Certification (GSLC), Chief Information Security Officer Certification (CCISO), or Healthcare Information Security and Privacy Practitioner (HCISPP)
+ Knowledge of and hands on experience with Security Technical Implementation Guides (STIGs), Assured Compliance Assessment Solution (ACAS), Host Based Security System (HBSS) / Trellix
+ Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners
+ Working knowledge of Microsoft Office (Word, PowerPoint, and Excel)
**What Desired Skills You Might Bring** **:**
+ Cybersecurity certifications such as CompTIA CASP+, CISSP, OSCP, CISM, CEH, GSEC
+ System administration experience with Linux
+ Network switch and router administration experience or network engineering experience
+ Experience with VMware
+ Experience with Kubernetes and Docker
+ Familiarity with MBSE/SysML system engineering
**Security Clearance Requirement:**
An active Top Secret SCI security clearance is required for this position.
This position is part of our Federal Solutions team.
The Federal Solutions segment delivers resources to our US government customers that ensure the success of missions around the globe. Our intelligent employees drive the state of the art as they provide services and solutions in the areas of defense, security, intelligence, infrastructure, and environmental. We promote a culture of excellence and close-knit teams that take pride in delivering, protecting, and sustaining our nation's most critical assets, from Earth to cyberspace. Throughout the company, our people are anticipating what's next to deliver the solutions our customers need now.
Salary Range: $144,800.00 - $260,600.00
We value our employees and want our employees to take care of their overall wellbeing, which is why we offer best-in-class benefits such as medical, dental, vision, paid time off, Employee Stock Ownership Plan (ESOP), 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle!
This position will be posted for a minimum of 3 days and will continue to be posted for an average of 30 days until a qualified applicant is selected or the position has been cancelled.
Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status.
We truly invest and care about our employee's wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the Parsons quest-APPLY TODAY!
Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to .
About Us
Parsons is a digitally enabled solutions provider focused on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government agencies, as well as to private industrial customers worldwide.
Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBTQ+.
For more about Parsons, visit parsons.com and follow us on Facebook, Twitter, LinkedIn, and YouTube.

Title:
Senior System Security Engineer
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
· Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
· Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
· Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
Position Summary:
KBR, Inc. is seeking a highly skilled and experienced armament weapon System Security Engineer to support Air Force air-to-air and air-to-ground weapon programs. The selected candidate will support the Government System Program Office and coordinate with the Prime Contractor and external agencies to develop and validate weapon system security engineering solutions, ensure the weapon system design complies with Government controls, instructions, circulars and directives, and develop and coordinate required artifacts to obtain weapon system Authorization to Operate. This position will support the team through the full acquisition life cycle, i.e. development, test, production, and fielding of weapon systems. This position will be executed from inside government on-site facilities.
Key Responsibilities:
+ Provide System Security Engineering (SSE), Program Protection, and Anti Tamper expertise across all phases of the weapon system lifecycle.
+ Ensure weapon systems, system-of-systems, and architectures meet all U.S. Government systems security and cybersecurity controls, directives, and contractual requirements.
+ Analyze system configurations, architectures, and designs to identify mission-critical components, safety concerns, and Critical Program Information (CPI). Provide guidance on security for critical infrastructure and classified systems, including SCI, SAP, Collateral, and CUI environments.
+ Coordinate with Prime Contractors and major suppliers to ensure effective execution of system security responsibilities and compliance with weapon system performance requirements.
+ Lead development of Assessment & Authorization (A&A) packages, including but not limited to System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Security Test & Evaluation (ST&E) reports, Cybersecurity Risk Assessments, Continuous Monitoring Plan (ConMon), and Plan of Actions and Milestones (POA&Ms).
+ Work directly with the Prime Contractor to ensure required contractual deliverables are sufficient to meet Government approval. This includes supporting the development of key security documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), Security Control Traceability Matrices (SCTMs), Continuous Monitoring Plans (ConMons), Plan of Actions and Milestones (POA&Ms), Security Classification Guides (SCGs), Program Protection Plans (PPPs), Program Protection Implementation Plans (PPIPs), Cybersecurity Implementation Plans (CSIPs), Cyber Test Plans, Anti Tamper Plans, and other Authorization to Operate (ATO) artifacts. Candidate may be required to author artifacts as required by the Government
+ Conduct system security evaluations and support certification/accreditation processes in alignment with AFI 17-101, DoD -M, DoD 8500.2, CNSSI 1253, and other directives
+ Oversee compliance with the Joint Special Access Program Implementation Guide (JSIG) Rev 4 and the Risk Management Framework (RMF) per NIST SP 800-53, DoDI , and CNSSI 1253 with emphasis on Air Force-specific requirements.
+ Advise Program Managers on Cybersecurity Maturity Model Certification (CMMC) requirements and assist contractors in achieving certification.
+ Collaborate with test engineers to develop and validate system security test procedures aligned with operational requirements.
+ Liaise with external agencies to ensure system security and cybersecurity compliance for system fielding.
+ Conduct risk assessments to identify vulnerabilities and assess criticalities in weapon system designs.
+ Ensure acquisition processes and documentation align with statutory and regulatory system security requirements. Ensure implementation of FAR and DFARS clauses related to system security.
+ Promote system security best practices across all assigned programs.
Work Environment:
+ Location: On-site (Eglin AFB, FL)
+ Travel Requirements: Moderate, 20-40%
+ Working Hours: Standard - Core hours 0900 - 1500
Qualifications:
Required:
+ Current Top Secret, SCI Eligible clearance
+ SAP eligibility (Counterintelligence Polygraph may be required)
+ Bachelor's or Master's degree in Engineering or a related technical field with an emphasis in cybersecurity
+ 10+ years of experience in system security engineering and/or cybersecurity with minimum 5 years of demonstrated application to DoD weapon system acquisition programs
+ Demonstrated ability to deliver system security engineering solutions for DoD systems which meet applicable security policies, standards, and guidelines
+ Demonstrated knowledge of applying the Joint Special Access Program Implementation Guide (JSIG) and the Risk Management Framework (RMF) to DoD or similar acquisition programs
+ Expertise in System Security Engineering documentation (e.g., CSS, PPP, Anti-Tamper, System Security Plans, Security Test & Evaluation Reports) for DoD weapon system acquisitions
+ Familiarity with CMMC (Cybersecurity Maturity Model Certification), CUI, and classified system security requirements
+ Proficiency with security tools and technologies commonly used in Air Force and DoD environments, such as endpoint protection, and cloud security solutions
+ Strong written and verbal communication skills, with the ability to articulate complex security concepts to program managers, contractors, and non-technical stakeholders
+ Exceptional problem-solving skills and the ability to manage multiple priorities and deadlines within the DoD acquisition environment
+ Ability to navigate the complexities of military contracting processes and collaborate with defense contractors to ensure compliance with Air Force security requirements
+ Experience evaluating contract proposals and security specifications
+ Demonstrated ability to work well independently or as a team member
+ Demonstrated ability to drive projects to closure and to assimilate and correlate project information in a fast-paced environment
Desired:
+ Minimum of 2 years' experience in Special Access and/or SCI programs
+ Highly Preferred: DAWIA Engineering and Technology Management Practitioner with Intermediate Secure Cyber Resilient Engineering Credential or DoD 8140 DCWF Security Architect Intermediate Qualification or Equivalent
+ Preferred: DoD 8140 DCWF Security Architect Advanced Qualification or Equivalent
Ready to Make a Difference?
If you're excited about making a significant impact in the field of space defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

**Req ID:** RQ
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Top Secret
**Public Trust/Other Required:** None
**Job Family:** Cyber and IT Risk Management
**Skills:**
Cyber Defense,Information Security,Information Systems
**Certifications:**
Certified Information Systems Security Professional (CISSP) | International Information System Security Certification Consortium (ISC2) - International Information System Security Certification Consortium (ISC2)
**Experience:**
5 + years of related experience
**US Citizenship Required:**
Yes
**Job Description:**
GDIT is your place. Make it your own by discovering new ways to apply the latest technology securely and expertly. Own your opportunity at GDIT and you'll be a meaningful part of improving how agencies operate. Our work depends on an Information Systems Security Engineer joining our team.
At GDIT, we foster a people-centric environment. As an **Information Systems Security Engineer,** you will be responsible for capturing and refining information security requirements and ensuring their integration into information technology component products and information systems through purposeful security design or configuration. You will work closely with other project managers and various software engineering, infrastructure, and technical operations teams to assess requirements, coordinate resources, and deliver information security updates for the customer.
**KEY RESPONSIBILITIES**
+ Participating in high-level enterprise architecture analysis, evaluation, design, integration, documentation, and development to include security control design and security package documentation.
+ Understanding, implementing, documenting, communicating, and assessing NIST 800-53 security controls
+ Documenting security control implementations and the respective systems, applications, tools, devices, etc. that are part of the comprehensive solution.
+ Identifying the artifacts that demonstrate security controls are implemented as documented.
+ Analyzing security controls and the impact major and/or significant changes would introduce to the environment.
+ Researching remediation options for findings or vulnerabilities identified for security controls.
+ Assessing and/or authorizing systems in accordance with the Risk Management Framework (RMF).
+ Applying high-level business and technical principles and methods to very difficult technical problems to arrive at creative information
+ Recommending, taking action, and documenting the solution to direct the analysis of IA/security control-related issues.
+ Supporting the IA functions and related security controls for the services deployed above the hypervisor to customers in the DOD on-premise and cloud based offerings.
+ Consulting with customers in the DOD on-premise and cloud based offers on authorizing their systems through DOD RMF.
+ Administering Splunk and dashboard creation within a cloud environment.
**EDUCATION AND EXPERIENCE**
+ Active Secret Clearance
+ Bachelor's degree in a related business or technical discipline (Systems Security Engineering, Software Engineering, or Computer Science, etc.), or the equivalent combination of education, technical training, or work/military experience
**REQUIRED QUALIFICATIONS**
+ 5+ years or relevant experience.
+ Ability to work closely with stakeholders, developers, and external teams including customer security managers (ISSMs), organizational leadership, and key personnel.
+ Identify requirements for documentation associated with system categorization, the System Security Plan, and systems risk assessment as required under NIST 800-53/53A.
+ Previous experience completing customer Assessment and Authorization (A&A) process from start to end.
+ Demonstrated on-the-job experience with RMF implementation and tracking tools like Enterprise Mission Assurance Support Service (eMASS).
+ Assess system compliance with NIST requirements, identifying weaknesses and evaluating planned remedial actions based upon those requirements.
+ Support control implementation assessment and reporting and monitoring processes using cyber security and assessment management systems.
+ Understanding of perimeter controls (firewalls), access control mechanisms, and network architectures.
+ Strong understanding of methodologies for researching and documenting software and hardware vulnerabilities.
+ Skilled in cross-team collaboration and effective communication to fulfill specific accreditation requirements.
+ Strong verbal and written communication/cooperation within a team context.
+ Ability to work within fast-paced customer environments.
+ Demonstrated skill documenting processes and procedures in CONOPS, system security, contingency, configuration management and other plans.
+ Demonstrated ability to facilitate customer concurrences required for risk-based decisions requiring waivers.
+ Experience assisting the customer with decisions impacting the security posture and compliance of their systems and networks with requirements as documented in NIST 800-53 and its revisions.
+ Excellent verbal and written communication skills.
+ Experience with Microsoft Office tools like PowerPoint, Word, Excel, etc.
+ Travel required.
**DESIRED QUALIFICATIONS**
+ Certified Information Systems Security Professional (CISSP) or DoD -M IAM Lvl III certification.
+ Demonstrated on-the-job experience with Jira Software for planning and tracking projects.
+ Knowledge of the US Military, their network systems and infrastructure, processes and procedures, and request and approval tools.
+ Skilled with and/or demonstrated technical aptitude with vulnerability and risk assessment tools such as Elasticsearch or Splunk SIEMs, ACAS (Nessus), and ESS (HBSS).
+ Splunk certification: Splunk Certified Power User, Splunk Enterprise Certified Admin preferred.
**GDIT IS YOUR PLACE:**
+ 401K with company match
+ Comprehensive health and wellness packages
+ Internal mobility team dedicated to helping you own your career
+ Professional growth opportunities including paid education and certifications
+ Cutting-edge technology you can learn from
+ Rest and recharge with paid vacation and holidays
#GDITPriority
The likely salary range for this position is $89,250 - $120,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at Opportunity Employer / Individuals with Disabilities / Protected Veterans

NDI Engineering Company is seeking Systems Security Engineer (SSE) with experience related to SW development, SW test, SW support, and SSE functions.

Responsibilities

· Ability to create and or modify required documentation in support of creating ALS-CPS ship class configurations

· Ability to setup ALS-CPS ship class equipment, install software and preform validation testing prior to equipment delivery

· Support ALS-CPS SSA formal software testing for active ECP implementation. Testing is normally conducted at C3I manufacturing facility

· Support ALS-CPS in-house testing if needed based on active ECP scope

· Support shipboard software installation and System Operational Validation Testing

· Support diagnosing shipboard failures and provide corrective recommendations

Security/Cyber Responsibilities

· Developing Cybersecurity strategies and requirements.

· Developing Cybersecurity plans for the systems or Engineering Change Proposals (ECP)

· Developing Cybersecurity plans for Navy Programs of Record (PORs)

· Defining connectivity and interface requirements.

· Applying DoD and DoN Cybersecurity and Information Security (IS) policies and standards.

· Assessing system/software risk and vulnerability.

· Supporting Cybersecurity integration.

· Preparing Cybersecurity support documentation.

· Monitoring the security posture of assigned programs and develop remediation and mitigation plans and tasking to address vulnerabilities.

· Performing remediation of IAVAs, harden servers and workstations.

· Attend systems meetings and IPTs to support the Navy PM for all Cyber Security matters throughout the lifecycle of the system from inception to disposal.

· Support system SETR events

· Performing security related some system administration tasks as required.

Qualifications

• Must have a Bachelor of Science degree in Computer Science, Software Engineering, System Security Engineering, or a related technical field.
• Must have Security+ CE certification.
• Certified Information Systems Security Professional (CISSP) certification or equivalent is a plus.
• Must have a Secret Clearance and have the ability to obtain a Top Secret Clearance.
• At least 3 years of Cybersecurity experience, including demonstrated knowledge, skills, and abilities to perform the job responsibilities listed above.

NDI Engineering Company is a privately-held small business consulting firm. NDI provides engineering and technical services to Government clients chartered with responsibility for the defense of our country. NDI offerings include naval architecture, marine, civil, structural, mechanical, and electrical engineering and design services. NDI has an ISO 9001:20015 Certified Quality System and was a prior recipient of the U.S. Small Business Administration Region II, Prime Contractor of the Year Award. NDI's corporate office is located in Thorofare, NJ with additional offices at the Naval Business Center, Philadelphia, PA, and Virginia Beach, VA.

NDI Engineering Company is an Equal Opportunity Employer. This contractor and subcontractor shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status

**MANTECH** seek a motivated, career and customer-oriented **Senior Information System Security Engineer** to join our team **Huntsville, AL.**
**Responsibilities include, but are not limited to:**
+ Define IS and Network Environment security requirements in accordance with applicable cybersecurity requirements.
+ Design security architectures for use within the IS and Network Environment. Design and develop cybersecurity-enabled products for use within an IS and Network Environment.
+ Integrate and/or implement security with Cross Domain Solutions (CDS) for use within an IS and Network Environment.
+ Develop and implement security designs for new or existing network system(s). Ensure that the design of hardware, operating systems, and software applications adequately address cybersecurity requirements for the IS and Network Environment.
+ Design, develop, and implement network security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation. Design, develop, and implement specific cybersecurity countermeasures for the IS and Network Environment.
+ Develop interface specifications for the IS and Network Environment. Develop approaches to mitigate IS and Network Environment vulnerabilities and recommend changes to network or network system components as needed.
+ Ensure that network system(s) designs support the incorporation of FBI directed cybersecurity vulnerability solutions.
**Minimum Qualifications:**
+ Bachelor's plus minimum 8 years' experience, or equivalent education/experience; Doctorate plus 6 years; Master's plus 6 years; Associates plus 10 years; or H.S./GED plus 14 years.
+ Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP) (or Associate), CompTIA Advanced Security Practitioner (CASP) CE, Certified Secure Software Lifecycle Professional (CSSLP), CISSP- Information System Security Engineering Professional (ISSEP), or CISSP- Information System Security Architecture Professional (ISSAP). At least one IASAE Level II or IASAE Level III proficiency **.**
+ Familiarity with the use and operation of security tools including: Tenable Nessus and/or Security Center, IBM Guardium, HP WeblInspect, Network Mapper (NMAP), and/or similar applications.
**Preferred Qualifications:**
+ Degree in Computer Science, Cybersecurity, or other cyber discipline.
**Clearance Requirements:**
+ Must be a US citizen and have a current/active Top Secret security clearance with SCI eligibility.
+ Applicant may also undergo a Polygraph.
**Physical Requirements:**
+ Must be able to remain in a stationary position 50%.
+ Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
+ Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.
+ Often positions self to maintain computers in the lab, including under the desks and in the server closet.
+ Frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
If you are a qualified individual with a disability and require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please email us at and provide your name and contact information.

Title:
Information System Security Engineer (ISSE)
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
+ Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
+ Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
+ Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
KBR, Inc. is seeking a highly skilled and experienced Information Systems Security Engineer (ISSE) to support the Aerial Connectivity (AC) Branch within the Air Force's Advanced Battle Management System (ABMS) Division. You will be responsible for providing expert-level information systems security guidance on this complex program. As part of your duties, you will ensure AC product lines are secure and compliant with industry cybersecurity best practices and current DoD, Air Force, and Space Force cybersecurity guidance. The objective is to secure the DAF BATTLE NETWORK, provide secure interfaces to other services, DoD and Intelligence Community (IC) efforts in support of Joint All Domian Command and Control (JADC2), and to ensure interoperability across joint and coalition forces. This role will focus on developing and then implementing an integrated cybersecurity strategy, in support of AC product line interoperability testing for the DAF BATTLE NETWORK.
Key Responsibilities:
+ Develop and then lead execution of the AC integrated cybersecurity strategy, ensuring alignment with mission objectives.
+ Serve as the focal point for all AC integrated security assessments and authorization activities.
+ Collaborate with program stakeholders to define security objectives and measurable results for each integrated evaluation or accreditation milestone.
+ Facilitate security planning sessions and working groups to ensure cybersecurity is integrated into test and evaluation objectives.
+ Provide subject matter expertise on cybersecurity engineering requirements and practices during all phases of the acquisition lifecycle, from materiel solution analysis through production, deployment, and operations and support, with a focus on secure interoperability requirements.
+ Ensure AC acquisition processes and documents align with statutory and regulatory cybersecurity requirements (e.g., DoD RMF, NIST 800-53).
+ Support development and maintenance of system security plans (SSPs), assessment and authorization (A&A) packages, and continuous monitoring strategies.
+ Provide subject matter expertise to product delivery teams to ensure their systems are designed, developed, and sustained in a way that incorporates cybersecurity controls and enables secure interoperability across the DAF BATTLE NETWORK and with relevant joint/coalition partner capabilities.
+ Advise on cybersecurity considerations for critical infrastructure and classified environments (e.g., SCI, SAP, Collateral, and CUI) as they relate to acquisition and fielding activities.
+ Participate in cybersecurity test and certification events, as required
+ Deliver training and awareness programs on Air Force-specific cybersecurity, risk management, and secure interoperability requirements for acquisition program office personnel.
+ Promote cybersecurity engineering best practices across all assigned programs, ensuring that program personnel understand and implement cybersecurity and RMF requirements effectively.
+ Serve as a liaison between program office, user community, cybersecurity authorizing officials, and contractor personnel to ensure clear communication and adherence to integrated cybersecurity and authorization policies.
Work Environment:
+ Location: On-site
+ Travel Requirements: Moderate 20-40%
+ Working Hours: Standard - Core hours 0900 - 1500
Qualifications:
Required:
+ Bachelor's or Master's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or a related technical field.
+ 10+ years of experience in information systems security engineering, cybersecurity architecture, or risk management within Air Force acquisition programs or similar DoD/IC systems.
+ Demonstrated ability to develop, implement, and validate cybersecurity requirements in accordance with DoD Risk Management Framework (RMF) and NIST 800-53 controls.
+ Demonstrated ability to lead planning and execution of system cybersecurity engineering activities, including security test events and authorization efforts.
+ Expertise in secure system/software integration, vulnerability assessment, and penetration testing.
+ Experience supporting cybersecurity prototyping, experimentation, and pilot efforts within the DoD or IC.
+ Proficiency with cybersecurity and engineering tools such as eMASS, ACAS, HBSS/Trellix, SIEM platforms, and risk management tools used in Air Force and DoD acquisition programs.
+ Strong written and verbal communication skills, with the ability to articulate complex cybersecurity and risk concepts to program managers, contractors, and non-technical stakeholders.
+ Exceptional problem-solving skills and ability to balance cybersecurity risk against mission requirements in fast-paced DoD acquisition environments.
+ Ability to navigate the complexities of DoD cybersecurity accreditation, military contracting processes, and to collaborate with defense contractors to ensure compliance with Air Force cybersecurity policies and authorizing official requirements.
+ Top Secret clearance required with SCI Eligible.
+ SAP Eligibility (Counterintelligence Polygraph may be required).
Desired
+ Minimum of 2 years' experience in Special Access and/or SCI programs involving information system security engineering.
+ Demonstrated ability to work independently or collaboratively on integrated product teams with both engineers and cybersecurity professionals.
+ Demonstrated ability to drive cybersecurity projects to closure, synthesizing security risk assessments and mitigation strategies in dynamic environments.
+ Demonstrated ability to communicate security requirements and assessment results effectively with technical and non-technical audiences.
+ Experience with cybersecurity for command and control (C2), battle management, or mission-critical weapon systems.
+ Experience integrating secure weapon systems into a larger system-of-systems architecture.
+ Experience supporting AFSIT and JITC cybersecurity-related certification and accreditation testing.
+ Preferred: DoD 8140 DCWF Security Architect Intermediate Qualification or DAWIA Engineering and Technology Management Practitioner with Intermediate Secure Cyber Resilient Engineering Credential or Equivalent
Ready to Make a Difference?
If you're excited about making a significant impact in the field of space defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Title:
Information System Security Engineer (ISSE)
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
+ Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
+ Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
+ Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of defense.
+ Position Summary:
The selected candidate will serve in a Senior ISSE role and perform tasks related to Assessment & Authorization (A&A) and cybersecurity under DHA to obtain and maintain Authorizations to Operate (ATOs) for assigned DoD medical systems (i.e., applications, networks, devices).
Key Responsibilities:
+ Support team in a Senior ISSE capacity for multiple information systems
+ Serve as Subject Matter Expert (SME) on one or more technologies/skills related to A&A activities
+ Conduct risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs
+ Provide solutions to complex problems that require the regular use of expertise and creativity. Problems are broadly defined and solutions require the continuation of specialized theories and knowledge
+ Actively lead and participate in regular A&A status meetings with senior government and contract personnel to facilitate progress and address potential issues of RMF system efforts
+ Participate in sessions aimed at identifying, planning, and executing strategies in response to emerging cybersecurity/RMF policies
+ Maintain awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes
+ Lead and/or attend meetings with SDD stakeholders to discuss statuses of efforts
+ Assess system compliance against NIST, DoD, and DHA security requirements to include the NIST 800-53 controls, DISA Security Technical Implementation Guides (STIGs), and DISA Security Requirements Guides (SRGs)
+ Produce evidence as necessary to support compliance status of NIST, DoD, and DHA security requirements
+ Analyze vulnerability scans of information systems and assist in remediation tasks
+ Submit weekly reports to DHA leadership regarding system/program status
+ Develop, update, and/or review RMF documentation to include Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms), and Risk Assessment Reports
+ Coordinate with other system SMEs to identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories
Work Environment:
+ Location: onsite
+ Travel Requirements: 35%
+ Working Hours: Standard
Qualifications:
Required:
+ Bachelor's Degree and fifteen (15) years of experience with Cybersecurity / Information Technology, or in lieu of a degree eighteen (18) years of hands-on experience with Cybersecurity / Information Technology
+ Contract requirements regarding education and experience will prevail.
+ An active TS/SCI clearance is required
+ Must have experience working with Special Access Programs (SAPs)
+ DoD 8570-compliant
+ Demonstrated expert-level experience with Risk Management Framework
+ RMF policy development, process improvement, and strategy implementation
+ Demonstrated expert-level experience with DISA STIGs and SRGs
+ Demonstrated efficiency and expert-level experience in RMF package development, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, architecture diagrams, asset inventories, and system/site policies, procedures, and processes
+ Experience with Assured Compliance Assessment Solution (ACAS)
+ Experience in assessing systems using NIST 800-53, DISA STIGs/SRGs, and ACAS
+ Deep familiarity and experience with the DoD tool eMASS
+ Experience working within DoD (experience under DHA a plus)
+ Excellent customer service and organization skills
+ Excellent oral and written communication skills
+ Familiarity with NIST publications
Desired:
+ Experience working under DHA
+ Experience with HBSS
+ Knowledge in Continuous Monitoring and Risk Scoring (CMRS)
+ Experience with Fortify, WebInspect, and/or AppDetective
Ready to Make a Difference?
If you're excited about making a significant impact in the field of space defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.