Lead Cyber Security Engineer
Role and Responsibilities
KBRwyle is seeking an experienced Cyber Security Engineer to lead KBRwyle's efforts in support of the Life Cycle Management Center's Cybersecurity work efforts across numerous weapon systems. The successful candidate will utilize their expertise in developing and analyzing cybersecurity engineering artifacts used to support the Assessment and Authorization (A&A) process leading to successful Authority to Operate (ATO) decisions.
The candidate will develop A&A package artifacts for assigned systems as well as, assisting the program managers in developing decision briefings for the Security Control Assessor (SCA) and the Authorizing Official (AO). This position will focus on technical assessments of program developed artifacts, test results, and the output of the risk management program for each system assessed. The candidate will be trained to conduct security assessments on various aircraft platforms. The candidate will be experienced and successful at solving complex cyber security issues, enjoy working in a dynamic, responsive, and collaborative environment, and dedicated to the success of our customers against advanced, persistent threats.
The employee will provide critical inputs into Program Office RMF-based armament cybersecurity documents including (but not limited to) Architecture Analysis Reports, Security Plans, Security Assessment Plans/Reports, Risk Assessment Reports, POA&Ms, Continuous Monitoring Plans, and Annual Authorization Updates. The employee will provide technical recommendations based on results of evaluation of the technical implementation of the security design to ascertain that security software, hardware, and firmware features affecting confidentiality, integrity, availability, accountability, and nonrepudiation have been implemented.
Analyze weapons systems' Supply Chain Risk Management plans and implementation. Conduct hardware and software assurance assessments. Employee will participate in Continuous Monitoring activities to include document or process reviews and on-site inspection/audit/validation activities.
A Master's degree from an accredited college or university in a related discipline is required. Eight (8) years of experience in Information Assurance/cybersecurity a may be substituted in lieu of degree. Must hold a minimum of IAM Level 2 or 3 approved certification (CISSP) as identified in DoD 8570.
Four years of practical experience with Information Assurance/Cybersecurity Engineering is required with a total of no less than 10 years of total work experience required.
Must have the ability to communicate with and distill information from technical resources during formal and informal meetings.
Knowledge of systems engineering principles, network architecture analysis, verification and validation of requirements, and understanding the risk management process is desired.
Current experience and knowledge of the DoD Risk Management Framework (RMF) processes and other service specific A&A/cybersecurity requirements is preferred. Ideal candidate would have experience in the A&A process for weapon systems.
Experience with Joint Programs and Interoperability is also highly desired. A Master's degree in Computer Resources or related technical field is desired.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
Job: Test Engineering
Primary Location: US-US-OH-Dayton
Req ID: 1072789
Wyle Laboratories, Inc.