All jobs

Associate Security Engineer, Identity Security

KBR20h ago
United StatesHybridFull-timeEntry Level2+ yrs exp

Top focus

Security EngineerIdentity EngineerCloud Security Engineer

Title: Associate Security Engineer, Identity Security KBR is seeking an Associate Security Engineer to join our Identity Security Services team within a global cybersecurity organization supporting complex, highly regulated enterprise environments.

This hands-on role provides the opportunity to build technical expertise across identity and access management, authentication, privileged access, identity governance, and enterprise security technologies while working alongside experienced engineers and architects.

You will support the administration, security, and continuous improvement of identity platforms including Microsoft Entra ID, Active Directory, and hybrid identity solutions. The ideal candidate is curious, detail-oriented, eager to learn, and passionate about cybersecurity and technology.

This is a permanent, full-time position based in the United States and requires U.S. citizenship. In September 2025, KBR announced that we are spinning our Mission Technology Solutions business into a separate public company. This role will ultimately be part of the new company.

The Mission Technology Solutions business partners with governments and defense, intelligence, space, aviation, and critical infrastructure customers to deliver high-end engineering, science, technology, and mission support solutions. Key Responsibilities Support the administration and operation of Microsoft Entra ID, Active Directory, hybrid identity, and directory synchronization services.

Perform identity administration activities for users, groups, devices, applications, service accounts, and access permissions. Troubleshoot authentication, authorization, provisioning, account lifecycle, and access-related issues. Review logs, alerts, and system data to identify and resolve identity-related incidents and operational problems.

Support Conditional Access, multifactor authentication (MFA), passwordless authentication, and other modern access control solutions. Assist with privileged access management activities, including role assignments, access reviews, and least-privilege enforcement.

Support identity governance processes, including access reviews, entitlement management, and joiner, mover, and leaver activities. Assist with enterprise application integrations and identity federation technologies, including SAML, OAuth, OpenID Connect, and SCIM.

Support application identities, service principals, managed identities, workload identities, and service accounts. Assist with Active Directory administration, Group Policy management, directory health monitoring, and hybrid identity operations.

Support PKI and certificate lifecycle management activities, including certificate issuance, renewal, inventory, and trust relationships. Identify and help remediate identity-related risks, including excessive access, stale accounts, weak authentication, and unmanaged credentials.

Support security monitoring, threat detection, and incident investigations using Microsoft security platforms and related tools. Gather technical evidence, perform root cause analysis, and assist with remediation activities during security and operational incidents.

Participate in cloud deployments, application onboarding, tenant migrations, and other identity-related projects and initiatives. Support audit, compliance, and governance activities through evidence collection, documentation, and control validation.

Create and maintain technical documentation, procedures, knowledge articles, and operational runbooks. Assist with reporting, automation, and continuous improvement efforts using PowerShell, Microsoft Graph, KQL, and related technologies. Follow established security, change management, incident management, and operational procedures.

Collaborate with engineers, administrators, and stakeholders to improve identity security controls and operational effectiveness. Communicate technical issues, findings, and project updates clearly while continuing to develop identity security knowledge and expertise.

Basic Qualifications Education & Experience: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related field; equivalent combination of education and professional experience may be considered. 2+ years of experience in information technology, cybersecurity, identity administration, systems administration, cloud support, service desk support, or a related technical field.

U.S. citizenship required. Skills & Competencies: Foundational understanding of information technology concepts, including user accounts, permissions, authentication, operating systems, networking, and cloud services. Familiarity with Microsoft Windows, Microsoft 365, Active Directory, Microsoft Entra ID, Azure, or comparable enterprise technologies.

Understanding of core security principles such as least privilege, multifactor authentication, role-based access control, and identity lifecycle management. Strong technical aptitude and ability to learn new technologies and processes quickly.

Strong troubleshooting, analytical, and problem-solving skills. Ability to follow established procedures, security standards, and change management requirements. Strong attention to detail and commitment to handling sensitive information responsibly.

Effective written and verbal communication skills with the ability to document technical work clearly. Ability to collaborate within a team environment, manage assigned tasks, and escalate issues appropriately. Demonstrated reliability, integrity, professionalism, and commitment to continuous learning.

Preferred Qualifications Hands-on experience with Microsoft Entra ID, Active Directory, Azure, or Microsoft 365 administration. Familiarity with identity and access management concepts, including authentication, authorization, provisioning, and identity governance.

Experience supporting user accounts, permissions, enterprise applications, or access management processes. Basic experience with PowerShell, scripting, automation tools, or API integrations. Familiarity with Microsoft Sentinel, Microsoft Defender, SIEM technologies, or security monitoring tools.

Exposure to SAML, OAuth, OpenID Connect, SCIM, LDAP, Kerberos, PKI, or certificate-based authentication. Experience working in environments with formal change management, incident management, compliance, or audit requirements. Industry certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Azure Fundamentals, CompTIA Security+, CompTIA Network+, or equivalent.

Belong, Connect and Grow at KBR At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow.

We Deliver – Together. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Required skills

Microsoft Entra IDActive Directorycloud servicesPowerShellMicrosoft GraphKQLidentity governancemultifactor authenticationauthenticationauthorizationprovisioningidentity lifecycle management
Posted on JobRush — the end-to-end AI job-search platform.