Cybersecurity Software Assurance SME - Military veterans preferred

Title:

Cybersecurity Software Assurance SME

KBR requires an Cybersecurity Software Assurance (CSA) Subject Matter Expert (SME), located on Robins AFB, GA, to support the stand-up of the C-130 Cybersecurity Team for planning and execution activities. The team is responsible to ensure cybersecurity risks are identified and mitigated across the C-130 weapons system on existing and future modifications. This highly complex mission area requires specialized skills and expertise.

This CSA SME candidate will be the primary cybersecurity technical advisor to the Program Leads and Supervisors on Robins AFB, GA. The candidate will be working as part of a dynamic team to develop next generation cybersecurity strategies as well as program protection planning and support. To that end, the candidate will coordinate with the various agencies on development of an Information Security strategy and monitor any proposed or actual changes to the system and its environment. The candidate will monitor the IT and environment for security-relevant events, assess proposed configuration changes for potential impact to the cybersecurity posture, and assess the quality of security controls implementation against performance indicators. The candidate will ensure cybersecurity-related events or configuration changes that impact IT authorization or adversely impact the security posture are formally reported to the Director and other affected parties. Additionally, the candidate will provide oversight to ensure ISSOs follow established cybersecurity policies and procedures In Accordance With (IAW) DoDI 8500.01. Moreover, the candidate will ensure the IT is acquired, documented, operated, used, maintained, and disposed of properly and IAW DoDI 5000.02 and DoDI 8510.01. Furthermore, the candidate will conduct analysis on components that comprise the C-130 Weapon Systems such as data environments, software applications, data, and hardware to identify the cybersecurity requirements and risks. Additionally, the candidate will analyze and identify components and subsystems vulnerabilities in order to determine potential solutions and safeguards including system interoperability. The candidate will analyze multiple information system solutions including evaluation approaches, criteria, findings, and recommendations to ensure cybersecurity controls, risk mitigations, and testing are in compliance as they relate to the Risk Management Framework (RFM). As such, the candidate will maintain current authorization to operate, and approval to connect (if required) and in implementing corrective actions identified in the plan of actions and milestones.

Duties include but are not limited to:

• Plan/execute initiatives and special projects in order to realize the C-130 Senior Leadership's vision for the organization and mission
• Develop and execute project/program plans from tasking through completion using common US Government IT tools and practices
• Ensures all IT cybersecurity-related documentation is current and accessible to properly authorized individuals.
• Ensure software, hardware, and firmware complies with appropriate security configuration guidelines(e.g., security technical implementation guides /security requirement guides)
• Ensure proper configuration management procedures are followed prior to implementation and contingent upon necessary approval
• Coordinate changes or modifications with system-level ISSM, SCA, and/or applicable Cybersecurity office
• Initiate exceptions, deviations, or waivers to cybersecurity requirements

Travel: Occasional travel required (15-20%) to Robins AFB, GA, due to possible approved telework opportunity, and vendor sites as required

BASIC QUALIFICATIONS :

• Bachelor's degree and minimum of 12 years of Information Systems Security experience
• DoD 8570.01M IAT Level II certification
• DoD Clearance Requirement: Secret
• U.S. citizenship
• Complete and maintain required cybersecurity certification IAW AFMAN 17-1303

Must demonstrate comprehensive experience/knowledge of:

• Integrating cybersecurity into, and throughout the lifecycle of the IT IAW DoDI 8510.01
• Establishing timelines for both quick-turn and longer-term projects and tracking progress through completion
• Drafting correspondence on behalf of SES/GO-equivalent for wide distribution to key mission stakeholders at tactical and strategic levels
• Using Microsoft Office suite of applications/tools to develop and publish products for senior executive review, coordination and approval
• Prepping senior leader(s) for meetings and engagements, ensuring all relevant information is conveyed and understood to support discussions and decision-making

The Candidate must display practical and demonstrated program management skills with emphasis on communication and stakeholder engagement with the following required skills:

• Multi-Tasking
• Problem solving
• Critical and Creative Thinking
• Plan development and execution
• Excellent communication skills (written, verbal, and active listening)
• Self-starter with excellent writing and communication skills
• Professional writing skills, to include Staff Summary Sheets (SSS)
• Must be comfortable working in a very dynamic, fluid environment and enjoy problem solving
• Working productively with a widely-dispersed team and be assertive in capturing key inputs and data to incorporate into various products on a daily basis

ADDITIONAL QUALIFICATIONS:

• Experience in life cycle support on developmental programs
• Experience collaborating with Program Offices on Weapon Systems Programs
• Experience engaging with customers at both tactical and strategic levels
• Experience working in or directly with the JPO, AFLCMC, or similar DoD organizations is highly desired
• Familiarity with DoD 5000.02 acquisition policies and processes, a plus, but not required.
• Familiarity with DoD and international military protocols, customs and courtesies, is a plus, but not required

Familiarity with DoD 5000.02 acquisition policies and/or mission transition or centralization projects is ideal.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

KBR is a global provider of differentiated professional services and solutions across the asset and program life cycle within the government services and technology sectors. KBR employs approximately 28,000 people worldwide with customers in more than 80 countries and operations in 40 countries. ?

KBR is proud to work with customers across the globe to provide technology, value-added services, and long- term operations and maintenance services to ensure consistent delivery with predictable results. At KBR, We Deliver.

Fraud Alert

Attempts to commit fraud against individuals has infiltrated the job placement market both on the internet and through direct phone or email contact. Such attempts have on occasion, included the unauthorized use of KBR’s name and logo to solicit potential job seekers for employment or to extend fraudulent job offers. Bad actors may place advertisements for fake positions mixed with legitimate job postings, with false contact instructions for expressing interest of obtaining additional information. These misrepresentations typically include promises of high-paying jobs with the requirement that job seekers send sensitive personal information or money to pay for things such as visa applications or processing fees.

Please be advised that KBR will never ask a potential job seeker for any sort of advance payment as part of the recruiting or hiring process, and candidate profiles are carefully managed to protect personal information.