Senior Information Systems Security Manager (ISSM)

About The Position

Requirements

• BS degree in information systems or related technical field
• 9+ years' technical experience in cybersecurity or information technology
• CISSP certification
• Understanding of common operating systems (Windows, Linux/Unix, Cisco IOS/NX-OS)
• Knowledge of client, server, data storage, and networking technologies
• Understanding of the requirements and standards for Cloud security
• Familiarity with DevSecOps principles and Secure Software Development Lifecycle (SSDLC)
• Innovative with strong analytical, problem-solving, organization and interpersonal skills
• Self-motivated; able to work independently with minimal direction
• An active TS/SCI clearance is required

Nice To Haves

• Advanced degree in a technical field
• 9+ years of IT/security-related experience with recent ISSM experience
• Software Development in Java, Python, Ruby and/or C++ knowledge
• Linux Expertise (RedHat/RHEL or CentOS preferred) knowledge
• Prior experience with software scanning/static code analysis (e.g. Fortify, SonarQube)
• Prior experience with cloud and container security tools

Responsibilities

• Coordinating, executing, and managing cybersecurity assessment & authorization (A&A) related activities supporting IT hardware, software, and connectivity capabilities in support of intelligence data management and analysis requirements resulting in an Authorization to Operate
• Facilitate, perform, and manage actions necessary to maintain system and capability accreditation status consistent with DoDI 8510.01 (Risk Management Framework (RMF) for DoD Information Technology (IT)), including scanning, auditing, and authoring/coordinating security accreditation-related documentation
• Perform analysis, design, and integration for complex software applications and collaboration infrastructures
• Participate in the change management process, including reviewing Change Requests and assisting in the assessment of security impact of proposed changes
• Create and maintain implementation design documentation, information system security documentation, Standard Operating Procedures (SOP), and provide guidance on active Plans of Action and Milestones (POA&M)
• Keep leadership aware of any roadblocks, issues, or concerns with system authorization status

Benefits

• KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule.
• We support career advancement through professional training and development.