Information Assurance Manager

at  KBR

WHO WE ARE

KBR Government Solutions delivers full life cycle professional and technical solutions that improve operational readiness and drive innovation. Our solutions help ensure mission success on land, air, sea, space and cyberspace for the Department of Defense, Intelligence Community, NASA and other federal agencies. KBR’s areas of expertise include engineering, logistics, operations, science, program management, mission IT and cybersecurity. KBR strives to create a safer, more secure and sustainable world by bringing together the best and brightest to deliver technologies and solutions that help our customers accomplish their most critical missions and objectives.

REQUIREMENTS:

• Must be a US or Australian Citizen
• Must Possess a US TS/SCI with Polygraph or AUS PV Clearance.
• Must have a minimum of a BA/BS from an accredited institution.
• Must have a minimum of five years of experience as an IT systems administrator.
• Must possess a DoDD 8140 (8570.1-M) IAT Level 2 certification.
• Must have experience with Windows operating systems and Active Directory.
• Must have experience with NIST 800-53 and RMF accreditations and DISA Security Technical Implementation Guides (STIG), SCAP Compliance Checker (SCC), and STIF Viewer
• Attention to Detail: Precision and attention to detail to ensure high-quality service delivery and compliance with safety standards.
• Adaptability: Flexibility to adapt to changing conditions, technologies, and requirements.
• Decision-Making Ability: Strong decision-making skills to resolve issues quickly and effectively under pressure.
  This role will be located in Alice Springs. This position is expected to be onsite 100%.

In the role of Information Assurance Manager, your duties will include:

• Recommends connection approval/disapproval/modification based on security risks/system vulnerabilities.
• Provides systems administration and information assurance support for classified systems
• Configures/validates information system compliance using DISA STIGs, SCAP Compliance Checker (SCC), and STIG Viewer.
• Initiates, and follows through to completion, RMF packages for enterprise architectures in accordance with NISPOM/DAAPM, ICD 503/CNSSI 1253, JSIG, NIST 800-53 and NIST 800-171.
• Creates/maintains Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs), and Plans of Action & Milestones (POA&Ms).
• Establishes appropriate security systems/policies/standards/procedures in compliance with applicable Government and corporate directives/guidelines/contractual obligations.
• Conducts analysis/assessment of the security control assessment guidance/procedures/templates to ensure correct implementation of the new RMF assessment processes.
• Identifies/contains/investigates/reports data spills to the Government ISSM.
• Coordinates containment and device sanitization at affected locations and provides an assessment/mitigation strategy addressing the data spill.
• Provide technical oversight for classified system compliance and conducts self-assessments.
• Other duties as required.