POSITIONS CONTINGENT ON CONTRACT AWARD

KBR is actively seeking skilled professionals across a variety of high-impact cybersecurity roles—from Incident Response and Cyber Hunt to Digital Forensics, Insider Threat, Continuous Monitoring, and Red/Blue Team Operations.

NETWORK ENGINEER

Job Description:
The Network Engineer is responsible for the design, implementation, maintenance, and security of NIWC CSSP network infrastructure, ensuring its resiliency, scalability, and compliance with DoD cybersecurity policies. This role requires strong expertise in network security, routing, switching, firewall configurations, and secure communication protocols to support mission-critical operations. The engineer will also work closely with incident response, continuous monitoring, and vulnerability.

Key Responsibilities:

• Design, configure, and maintain secure network architectures for classified and unclassified NIWC CSSP environments.
• Implement and manage firewalls, intrusion detection/prevention systems (IDS/IPS), and network access controls (NAC) to prevent unauthorized access.
• Monitor network traffic and logs for anomalies, security events, and performance issues using SIEM and network monitoring tools (e.g., Splunk, SolarWinds, Wireshark).
• Ensure compliance with DoD network security policies, including STIGs, RMF, and CJCSM 6510.01.
• Configure and optimize routers, switches, VPNs, and load balancers to ensure high availability and secure connectivity.
• Support implementation of Zero Trust Architecture (ZTA) by segmenting networks and applying least-privilege access controls.
• Perform vulnerability assessments on network devices and coordinate mitigation plans in collaboration with cybersecurity teams.
• Manage encryption solutions and cryptographic key handling to protect data in transit.
• Provide Tier 3 network troubleshooting and technical support to CSSP subscribers and internal teams.
• Automate network security monitoring and incident detection using scripting languages (Python, PowerShell, Bash).
• Participate in cybersecurity assessments and audits to validate network security posture.
• Develop and maintain network documentation, SOPs, and topology diagrams.
• Coordinate with external DoD entities (DISA, USCYBERCOM, JFHQ-DODIN) on network security initiatives.

• Design, configure, and maintain secure network architectures for classified and unclassified NIWC CSSP environments.
• Implement and manage firewalls, intrusion detection/prevention systems (IDS/IPS), and network access controls (NAC) to prevent unauthorized access.
• Monitor network traffic and logs for anomalies, security events, and performance issues using SIEM and network monitoring tools (e.g., Splunk, SolarWinds, Wireshark).
• Ensure compliance with DoD network security policies, including STIGs, RMF, and CJCSM 6510.01.
• Configure and optimize routers, switches, VPNs, and load balancers to ensure high availability and secure connectivity.
• Support implementation of Zero Trust Architecture (ZTA) by segmenting networks and applying least-privilege access controls.
• Perform vulnerability assessments on network devices and coordinate mitigation plans in collaboration with cybersecurity teams.
• Manage encryption solutions and cryptographic key handling to protect data in transit.
• Provide Tier 3 network troubleshooting and technical support to CSSP subscribers and internal teams.
• Automate network security monitoring and incident detection using scripting languages (Python, PowerShell, Bash).
• Participate in cybersecurity assessments and audits to validate network security posture.
• Develop and maintain network documentation, SOPs, and topology diagrams.
• Coordinate with external DoD entities (DISA, USCYBERCOM, JFHQ-DODIN) on network security initiatives