KBR is seeking an Information System Security Manager (ISSM) to join their team in Virginia, Maryland, or Washington, DC. The ISSM will provide cybersecurity and Risk Management Framework (RMF) support to systems and applications for the Test Resource Management Center (TRMC).
Requirements
- Deliver documentation to include: Executive level briefings, Assessments, Self-Assessments, RMF packages, and supporting RMF documentation
- Review Cybersecurity tool reports, ACAS, HBSS, for the purposes of reporting and compliance
- Software Certification package development
- Work directly with the TRMC SISO on all TRMC RMF packages and ATO Status updates
- Support security engineering projects and solution delivery.
- Lead security audit and compliance activities for each system responsible for
- Responsible for auditing all artifacts provided in each RMF package to determine system readiness for ATO packet submissions.
- Provide recommendations to the SISO, PM, and AO regarding remediation and mitigation of identified vulnerabilities on test reports and plan of action and milestones (POA&Ms).
- Monitor system status updates and report to senior leadership.
- Includes monthly executive reports, vulnerability reports, JFHQ DODIN reporting and briefing.
- Monthly executive briefing to SISO, PM on security metrics
- Interface with PMs and SISO on issues needing input/concurrence
- Draft and present RMF deliverables to senior leadership
- Attending Executive Program Reviews as the ISSM
- Work with outside agencies on Memorandums of Understanding / Interconnection Service Agreements, and other senior level agreements etc.
- Work directly with a distributed team to reduce travel
- Travel 25% of time
Benefits
- Health, dental, and vision insurance
- 401(k) matching
- Employee stock purchase plan
- Flexible paid time off policy
- Professional development opportunities
- Equal opportunity employer
