POSITIONS CONTINGENT ON CONTRACT AWARD

KBR is actively seeking skilled professionals across a variety of high-impact cybersecurity roles—from Incident Response and Cyber Hunt to Digital Forensics, Insider Threat, Continuous Monitoring, and Red/Blue Team Operations.

HOST-BASED SECURITY ENGINEER

Job Description:
The Host-Based Security Engineer is responsible for developing, implementing, and managing host-based security solutions to protect NIWC CSSP networks and endpoints. This role involves supporting endpoint security, intrusion detection/prevention, malware analysis, and security compliance enforcement in alignment with DoD cybersecurity policies. The engineer will also work with incident response teams to investigate security breaches and perform host-based forensic analysis.

Key Responsibilities:

• Develop and maintain host-based security solutions using government-approved tools such as Host-Based Security System (HBSS), Endpoint Detection and Response (EDR), and Next-Gen Antivirus (NGAV).
• Create, test, and deploy custom host-based security signatures to detect and mitigate threats.
• Implement host-based intrusion detection/prevention systems (HIDS/HIPS) and fine-tune policies for maximum protection with minimal impact on system performance.
• Perform malware analysis and behavioral analysis to identify and neutralize malicious software threats.
• Conduct host-based forensic investigations to analyze security breaches, identify attack vectors, and collect digital evidence.
• Ensure compliance with DoD security standards such as DISA STIGs, DoD 8570, and RMF guidelines.
• Monitor and assess endpoint security logs from SIEM platforms to detect anomalies, investigate security alerts, and mitigate cyber threats.
• Develop security automation scripts to enhance endpoint protection and streamline response actions.
• Support incident response teams by providing host-based security expertise during cyber incidents.
• Stay current on emerging host-based attack techniques, malware, and adversarial Tactics, Techniques, and Procedures (TTPs) to enhance detection and prevention capabilities.
• Train and mentor junior security engineers on best practices for host-based security management.

• Develop and maintain host-based security solutions using government-approved tools such as Host-Based Security System (HBSS), Endpoint Detection and Response (EDR), and Next-Gen Antivirus (NGAV).
• Create, test, and deploy custom host-based security signatures to detect and mitigate threats.
• Implement host-based intrusion detection/prevention systems (HIDS/HIPS) and fine-tune policies for maximum protection with minimal impact on system performance.
• Perform malware analysis and behavioral analysis to identify and neutralize malicious software threats.
• Conduct host-based forensic investigations to analyze security breaches, identify attack vectors, and collect digital evidence.
• Ensure compliance with DoD security standards such as DISA STIGs, DoD 8570, and RMF guidelines.
• Monitor and assess endpoint security logs from SIEM platforms to detect anomalies, investigate security alerts, and mitigate cyber threats.
• Develop security automation scripts to enhance endpoint protection and streamline response actions.
• Support incident response teams by providing host-based security expertise during cyber incidents.
• Stay current on emerging host-based attack techniques, malware, and adversarial Tactics, Techniques, and Procedures (TTPs) to enhance detection and prevention capabilities.
• Train and mentor junior security engineers on best practices for host-based security management