Title: Senior System Security Engineer Belong. Connect. Grow. with KBR! KBR’s National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country’s most critical role – protecting our national security. Why Join Us? · Innovative Projects: KBR’s work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions. · Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace. · Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense. Position Summary: KBR, Inc. is seeking a highly skilled and experienced System Security Engineering SME to support the Air Force’s Advanced Battle Management System (ABMS) Division. Responsible for providing expert-level system security engineering guidance, including cybersecurity guidance, on this complex program. Ensure that interfaces to other service, DoD and Intelligence Community (IC) efforts in support of Joint All Domian Command and Control (JADC2) are engineered using appropriate system security engineering practices. This role will focus on implementing, maintaining, and managing system security engineering requirements in compliance with Air Force, DoD and IC instructions and directives across the various ABMS product lines. Provide technical advice to Air Force acquisition teams, ensuring that all system security engineering requirements are met across the entire acquisition lifecycle, from program initiation through system deployment, maintenance, and decommissioning. Key Responsibilities: + Provide subject matter expertise on system security engineering requirements and practices during all phases of the acquisition lifecycle, from materiel solution analysis through production, deployment, and operations and support. + Ensure ABMS acquisition processes and documents align with appropriate system security statutory and regulatory requirements. + Develop and then lead execution of the ABMS Cybersecurity Strategy (CSS). + Develop and lead execution of the ABMS Program Protection Plan (PPP) and its appendices, including Anti-Tamper/CSS, which details critical program technologies and information which must be protected. + Address System Security During Design + Provide subject matter expertise to product delivery teams to ensure their systems are designed, developed, and maintained securely. + Advise on security considerations for critical infrastructure and classified systems as they relate to Air Force acquisition efforts (e.g., Sensitive Compartmented Information (SCI), Special Access Program (SAP), Collateral, and Controlled Unclassified Information (CUI)). + Conduct system security evaluations and support certification and accreditation processes to ensure the systems align with AFI 17-101, DoD 8570.01-M, and other relevant directives. + Cybersecurity Compliance, Risk Management and Documentation: + Oversee compliance with the Risk Management Framework (RMF) as outlined by NIST and DoD Instruction 8510.01, specifically focusing on Air Force-specific requirements for System Security Authorization and Security Assessment Reports (SAR). + Lead the development of Assessment and Authorization (A&A) packages, ensuring full compliance with DoD 8500.2 and AFI 17-101, including Security Test & Evaluation (ST&E) reports and Cybersecurity Risk Assessments. + Support the development of System Security Plans (SSPs), Security Assessment Reports (SARs), and other cybersecurity documentation for Air Force systems and programs. + Ensure Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS) clauses relating to system security are implemented. + Advise program managers about Cybersecurity Maturity Model Certification (CMMC) compliance requirements and assist contractors in achieving necessary certification levels. + Lead the response to cybersecurity incidents involving assigned systems, ensuring swift identification, containment, and mitigation of cyber threats. + Provide input on risk mitigation strategies for ongoing and future acquisition programs and assist with incident response plan development. + Develop and maintain security metrics and key performance indicators (KPIs) to continuously monitor and evaluate security measure effectiveness. + Deliver training and awareness programs on Air Force-specific system security engineering requirements for acquisition program office personnel. + Promote system security best practices across all assigned programs, ensuring that program personnel understand and implement security controls effectively. + Serve as a liaison between program office, user community and contractor personnel to ensure clear communication and adherence to acquisition security policies. Work Environment: · Location: On-site (Beavercreek, OH) · Travel Requirements: Moderate, 20-40% · Working Hours: Standard – Core hours 0900 - 1500 Qualifications: Required: + Bachelor’s or Master’s degree in Cybersecurity, Information Security, Engineering or a related technical field. + 10+ years of experience in system security engineering and/or cybersecurity with a specific focus on Air Force acquisition programs or similar DoD systems. + Demonstrated ability to deliver system security engineering solutions which meet applicable security policies, standards, and guidelines. + Demonstrated knowledge of applying the Risk Management Framework (RMF) to DoD and/or IC acquisition programs. + Expertise in System Security Engineering Acquisition Documentation (e.g., CSS, PPP, Anti-Tamper, System Security Plans, Security Test & Evaluation Reports). + Familiarity with CMMC (Cybersecurity Maturity Model Certification), CUI, and classified system s­­­­ecurity requirements. + Proficiency with security tools and technologies commonly used in Air Force and DoD environments, such as endpoint protection, and cloud security solutions. + Communication and Collaboration: + Strong written and verbal communication skills, with the ability to articulate complex security concepts to program managers, contractors, and non-technical stakeholders. + Exceptional problem-solving skills and the ability to manage multiple priorities and deadlines within the DoD acquisition environment. + Ability to navigate the complexities of military contracting processes and collaborate with defense contractors to ensure compliance with Air Force security requirements. + Top Secret, SCI Eligible + SAP Eligibility (Counterintelligence Polygraph may be required) Desired: + Minimum of 2 years' experience in Special Access and/or SCI programs. + Demonstrated ability to work well independently or as a team member. + Demonstrated ability to drive projects to closure and to assimilate and correlate project information in a fast-paced environment. + Demonstrated ability to communicate with technical and non-technical project teams. + Experience with cloud security in an Air Force or DoD context (e.g., AWS GovCloud, Azure Government). + Familiarity with DoD and Air Force system security-related acquisition initiatives. + Experience evaluating contract proposals and security specifications. + Highly Preferred: DAWIA Engineering and Technology Management Practitioner with Intermediate Secure Cyber Resilient Engineering Credential or DoD 8140 DCWF Security Architect Intermediate Qualification or Equivalent + Preferred: DoD 8140 DCWF Security Architect Advanced Qualification or Equivalent Ready to Make a Difference? If you’re excited about making a significant impact in the field of space defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together. KBR Benefits KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development. Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver – Together. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.