Title:

Senior Information System Security Officer (ISSO)

Senior Information System Security Officer (ISSO)

The Senior Information System Security Officer (ISSO) is responsible for developing and implementing strategies to safeguard the organization's critical information assets, ensuring compliance with relevant security policies, standards, and regulations. The Senior ISSO will help guide a team of cybersecurity professionals in identifying security risks, developing mitigation plans, and maintaining a robust security posture across the organization. The ideal candidate will have a strong background in cybersecurity and extensive experience with the Risk Management Framework (RMF).

Work Location: Colorado Springs, CO – 100% onsite

Primary Responsibilities:

• Develop, update, and/or review RMF documentation to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP).

• Assess system compliance against NIST, DoD, and IC security requirements to include the NIST 800-53 and 800-171 controls, and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs).

• Provide Subject Matter Expert (SME) knowledge on matters related to RMF activities across multiple systems and networks of various classifications.

• Develop and implement information security policies, procedures, and guidelines in accordance with industry best practices, regulatory requirements, and required government policy (e.g. JSIG, NISPOM, NIST SP 800-171, NIST 800-53).

• Participate in sessions aimed at identifying, planning, and executing strategies in response to emerging cybersecurity policies.

• Maintain awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes.

• Stay up-to-date with the latest cybersecurity trends, threats, and technologies.

• Collaborate with cross-functional teams to ensure the security of new and existing systems and applications.

• Attend meetings with system stakeholders to discuss statuses of efforts.

Security Clearance:

• Active DoD Top Secret security clearance with SCI eligibility

Basic Qualifications:

• Bachelor’s Degree in computer, information systems, or related field and at least ten (10) years of relevant work experience in IT or cybersecurity

• Minimum of five (5) years of experience performing ISSM or ISSO duties in classified environments

• DoD 8140-compliant baseline certification (CISSP preferred)

• Experience with cloud service providers (CSPs) (e.g. AWS, Azure)

• Demonstrated experience with Risk Management Framework

• Familiarity and experience with technologies such as eMASS, Xacta, ACAS, and Splunk

• Experience in assessing systems using NIST 800-53 and/or DISA STIGs and SRGs

• Excellent oral and written communication skills

Basic Compensation: $125K – $187K The offered rate will be based on the selected candidate’s knowledge, skills, abilities and/or experience and in consideration of internal parity.

Additional Compensation:

KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance.

Benefits:

KBR offers a selection of competitive lifestyle benefits which could include a 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.