All jobs

Security Control Assessor (SCA)

KBR23h ago
United StatesOnsite$160K–$172KFull-timeSenior Level7+ yrs exp

Top focus

Security EngineerSecurity Architect

Title: Security Control Assessor (SCA) Belong. Connect. Grow. with KBR! KBR’s National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities.

In this position, your work will have a profound impact on the country’s most critical role – protecting our national security. Why Join Us? Innovative Projects: KBR’s work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.

Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace. Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of Joint and multi-domain operations

Key Responsibilities

  • KBR is seeking a Security Control Assessor (SCA) to support an MTSI contract with the Assistant Secretary of the Air Force, Acquisition, Technology and Logistics. The SCA is responsible for conducting a comprehensive assessment of the management, operational
  • technical security controls employed within or inherited by an Information System (IS) to determine the overall effectiveness of the controls. SCAs also provide an assessment of the severity of weaknesses or deficiencies discovered in the IS and its environment of operation and recommend corrective actions to address identified vulnerabilities. Responsibilities will cover Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities within the customer’s area of responsibility. Key Responsibilities:
  • Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure.
  • Perform assessment of ISs, based upon the Risk Management Framework (RMF) methodology in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG).
  • Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization issues
  • Evaluate authorization packages and make recommendations to the AO and/or DAO for authorization.
  • Evaluate IS threats and vulnerabilities to determine whether additional safeguards are required.
  • Advise the Government concerning the impact levels for confidentiality, integrity, and availability for the information on a system.
  • Ensure security assessments are completed and results documented and prepare the Security Assessment Report (SAR) for the authorization boundary.
  • Initiate a Plan of Action and Milestones (POA&M) with identified weaknesses for each authorization boundary assessed, based on findings and recommendations from the SAR.
  • Initiate a Plan of Action and Milestones (POA&M) with identified weaknesses for each authorization boundary assessed, based on findings and recommendations from the SAR.
  • Evaluate security assessment documentation and provide written recommendations for security authorization to the Government.
  • Assess proposed changes to authorization boundaries operating environment and mission needs to determine the continuation to operate.
  • Review and concur with all sanitization and clearing procedures in accordance with Government guidance and/or policy.
  • Assist the Government compliance inspections.
  • Assist the Government with security incidents that relate to cybersecurity and ensure that the proper and corrective measures have been taken.
  • Evaluate hardware and software to determine security impact that it might have on authorization boundaries.
  • Evaluate the effectiveness and implementation of Continuous Monitoring Plans. Work Environment: JBAB Location: On-site Travel Requirements: Minimal 0-25% Working Hours: Standard Qualifications

Required

  • Master’s Degree in Cybersecurity, IT, Engineering
  • related field (or equivalent experience). 7+ years cybersecurity experience in DoD classified environments. (SAP/SCI) 3+ years experience as ISSM or equivalent senior cybersecurity lead Deep familiarity with: JSIG, RMF (DoDI 8510.01), ICD 503, NIST 800-53 DoD 8570/8140 IAT Level III or IAM Level II/III certification (e.g., CISSP preferred).
  • Strong written and verbal communication skills with experience preparing presentation materials for leadership audiences Experience working directly with Authorizing Officials and SCAs Experience in multi-system portfolio management.
  • TS/SCI w/SAP Eligibility required Scheduled Weekly Hours: 40hrs Basic Compensation: For Virginia compensation salary range is $160,000-$172,000.
  • Additional Compensation: KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation.
  • Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance.
  • Ready to Make a Difference?
  • If you’re excited about making a significant impact in the field of national defense and working on projects that matter, we encourage you to apply and join our team at KBR.
  • Let's shape the future together.
  • KBR Benefits KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off
  • flexible work schedule.
  • We support career advancement through professional training and development.
  • Belong, Connect and Grow at KBR At KBR, we are passionate about our people and our Zero Harm culture.
  • These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company.
  • That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow.
  • We Deliver – Together.
  • KBR is an equal opportunity employer.
  • All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs
  • any other characteristic protected by federal, state

Required skills

CybersecurityJSIGRMFNIST 800-53DoD 8570IAT Level IIIIAM Level IICISSP
Posted on JobRush — the end-to-end AI job-search platform.