Information Assurance Manager
We are seeking a highly skilled Information Assurance Manager to join our team. As a key player in protecting an organization's digital assets and infrastructure, you will be responsible for safeguarding information systems, managing cybersecurity risks, and ensuring the integrity of sensitive data.
About the Role
The ideal candidate will have a strong background in security frameworks, regulatory compliance, and risk management, with expertise in developing, implementing, and maintaining robust information security strategies. You will lead teams and collaborate across departments to identify and mitigate cybersecurity risks, while staying ahead of emerging threats.
Duties and Responsibilities
* Recommend connection approval/disapproval/modification based on security risks/system vulnerabilities.
* Provide systems administration and information assurance support for classified systems.
* Configure/validate information system compliance using DISA STIGs, SCAP Compliance Checker (SCC), and STIG Viewer.
* Initiate, and follow through to completion, RMF packages for enterprise architectures in accordance with NISPOM/DAAPM, ICD 503/CNSSI 1253, JSIG, NIST 800-53 and NIST 800-171.
* Create/maintain Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs), and Plans of Action & Milestones (POA&Ms).
* Establish appropriate security systems/policies/standards/procedures in compliance with applicable Government and corporate directives/guidelines/contractual obligations.
* Conduct analysis/assessment of the security control assessment guidance/procedures/templates to ensure correct implementation of the new RMF assessment processes.
* Identify/contains/investigates/reports data spills to the Government ISSM.
* Coordinates containment and device sanitization at affected locations and provides an assessment/mitigation strategy addressing the data spill.
* Provide technical oversight for classified system compliance and conducts self-assessments.
* Other duties as required.
Requirements
* Must be a US or Australian Citizen.
* Must Possess a US TS/SCI with Polygraph or AUS PV Clearance.
* Must have a minimum of a BA/BS from an accredited institution.
* Must have a minimum of five years of experience as an IT systems administrator.
* Must possess a DoDD 8140 (8570.1-M) IAT Level 2 certification.
* Must have experience with Windows operating systems and Active Directory.
* Must have experience with NIST 800-53 and RMF accreditations and DISA Security Technical Implementation Guides (STIG), SCAP Compliance Checker (SCC), and STIF Viewer.
* Attention to Detail: Precision and attention to detail to ensure high-quality service delivery and compliance with safety standards.
* Adaptability: Flexibility to adapt to changing conditions, technologies, and requirements.
* Decision-Making Ability: Strong decision-making skills to resolve issues quickly and effectively under pressure.
Benefits
KBR offers a comprehensive benefits package, including medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We also support career advancement through professional training and development.