Information Systems Security Officer (ISSO)

KBR, Inc.Beavercreek Township, OH
Onsite

About The Position

KBR is seeking an experienced Information Systems Security Officer (ISSO) to join our Information Assurance (IA) Operations team in Beavercreek, OH. This position is onsite and will support cybersecurity operations and compliance activities for KBR information systems operating within classified environments. Reporting directly to the Site Information Systems Security Manager (ISSM), the ISSO will serve as a key member of the Information Assurance team, supporting Assessment & Authorization (A&A) activities, continuous monitoring efforts, and cybersecurity compliance initiatives. This role is responsible for helping maintain Authorization to Operate (ATO) packages, assessing system security posture, and ensuring compliance with applicable DoD and federal cybersecurity requirements.

Requirements

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field and 4+ years of ISSO experience; or equivalent combination of education and experience.
  • Experience supporting DoD cybersecurity programs and Risk Management Framework (RMF) requirements.
  • Experience developing, submitting, and maintaining RMF authorization packages.
  • Experience supporting Joint Special Access Program Implementation Guide (JSIG) environments.
  • Experience developing and maintaining RMF documentation, including SSPs, PIAs, Security Checklists, POA&Ms, and related ATO artifacts.
  • Knowledge of independent verification and validation methodologies.
  • Experience conducting research, analysis, and security assessments both independently and within a team environment.
  • Current DoD 8570-compliant IAM Level I certification (Security+ CE, CAP, or equivalent).
  • Active DoD Secret security clearance with the ability to obtain and maintain Top Secret/SCI eligibility, or a qualifying background investigation completed within the required timeframe.
  • Strong written and verbal communication skills with the ability to communicate effectively across technical and non-technical audiences.

Nice To Haves

  • Current IAM Level II certification (CISSP, CISM, CASP+, CAP, or equivalent).
  • Experience conducting Security Control Assessments (SCAs) and validating security controls against SSP, NIST SP 800-53, and JSIG requirements.
  • Knowledge of information system maintenance, asset management, and inventory control processes.
  • Experience coordinating cybersecurity compliance activities with leadership and organizational stakeholders.
  • Experience developing waiver and exception packages for information system vulnerabilities.
  • Knowledge of quality assurance, quality control, and independent verification and validation practices.
  • Experience supporting cybersecurity operations within a corporate environment and global enterprise.
  • Familiarity with cybersecurity assessment and compliance tools, including eMASS, ACAS, SCAP Tool, or similar platforms.

Responsibilities

  • Serve as the onsite Information Systems Security Officer (ISSO) supporting Information Assurance (IA) Operations and site-hosted information systems.
  • Conduct security assessments of systems and networks to identify vulnerabilities, configuration deviations, and compliance gaps.
  • Perform passive compliance evaluations and active vulnerability assessments to validate cybersecurity requirements and controls.
  • Support Assessment & Authorization (A&A) activities and maintain Authority to Operate (ATO) packages in accordance with Risk Management Framework (RMF) requirements.
  • Develop, review, and maintain RMF documentation, including System Security Plans (SSPs), Security Checklists, Privacy Impact Assessments (PIAs), POA&Ms, and other authorization artifacts.
  • Assist with implementation and compliance of applicable cybersecurity requirements, including JSIG, NISPOM, NIST SP 800-53, NIST SP 800-171, and RMF guidance.
  • Monitor system audit records and security events, conduct periodic reviews, and track corrective actions through closure.
  • Analyze vulnerability scan results and coordinate remediation efforts with system administrators and technical stakeholders.
  • Support security certification testing, inspections, audits, investigations, and compliance reviews.
  • Assist in evaluating emerging technologies, software implementations, and hardware deployments to ensure cybersecurity requirements are met.
  • Coordinate with site leadership and cross-functional teams to support security initiatives and maintain compliance requirements.
  • Participate in continuous monitoring activities and contribute to process improvement efforts across IA Operations.

Benefits

  • 401K plan with company match
  • medical
  • dental
  • vision
  • life insurance
  • AD&D
  • flexible spending account
  • disability
  • paid time off
  • flexible work schedule
  • professional training and development
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service