Title:
Cybersecurity Engineer (NASA)
Belong. Connect. Grow. with KBR!
Around here, we define the future.
We are a company of innovators, thinkers, creators, explorers, volunteers, and dreamers. But we all share one goal: to improve the world responsibly and safely.
Must be able to obtain and maintain a US government security clearance.
We are seeking a recognized IT cybersecurity technical specialist as a Cybersecurity Engineer to join our team and support NASA's Goddard Space Flight Center under the Ground Systems & Mission Operations (GSMO-3) Contract. The specialist will join a multi-disciplined, integrated team of system administrators, network engineers, and IT security professionals.
The specialist will be a cybersecurity engineer, working with a team to maintain, establish, and operate a complete IT security program, including compliance, continuous monitoring, and system design. The specialist will advise the Information System Security Officer in ensuring technical controls reduce risk to an acceptable level and ensuring appropriate system confidentiality, integrity, and availability per Federal and NASA requirements.
The specialist must have strong technical skills, assisting engineers in security control implementation, assessing security controls, security monitoring, mitigating vulnerabilities, managing role-based access controls, reviewing security configuration, and generally ensuring NASA ground systems are appropriately protected.
They will investigate IT Security incidents and work with the Incident Response Team (IRT) for system forensics, diagnostics and/or malware tracking. The specialist will also work closely with the NASA Cybersecurity and Privacy Division (CSPD) to mitigate risks and respond to vulnerabilities and incidents.
Additional Responsibilities:
Serve as a principal Information System Security Engineer for mission operations systems.
Create Standard Operation Procedures (SOPs) and Configuration Management documentation.
Advise, implement, and monitor networks, computing, communication devices, and control equipment comply with the Federal Information Security Management Act (FISMA) and other related Federal, NIST, DHS and NASA security requirements for information technology.
Review Splunk logs and custom Dashboards, creating searches to assist in understanding security state of environment.
Perform end to end risk assessment planning and analysis to required standards.
Perform support activities associated with the design, development, implementation, and maintenance of IT systems.
Review results of Tenable Nessus scans and provide guidance to System Administrators for remediating vulnerabilities.
Create fixlets using BigFix for automated security checks and remediation.
Write scripts using Python to automate security tasks. Store scripts and configuration information in Git.
Perform security analysis of AWS accounts and ensure cloud migration activities have built-in security.
Required Education / Experience & Skills:
Bachelor's Degree in Cybersecurity or related IT field
5 years of related experience in the IT field covering network/computing operations
In lieu of the educational requirement, 13 total years of related experience is required.
Experience with System Security Plans in the Federal Government
Extensive system admin experience with Windows Server and Linux operating systems
Familiarity or experience with NIST 800-53 Rev 5 for Assessing Security and Privacy Controls in Federal Information Systems and Organizations
Experience securing Linux and Windows operating systems.
Experience securing a variety of technologies including modern, legacy, and custom.
Proven ability to research and problem solve both independently and within a team environment.
Must be able to comprehend and follow complex procedural documentation and guidance.
Perform compliance and risks analysis tasks to systems standards.
Strong interpersonal skills to work directly with client, teammates, business partners, end-users, and other stakeholders to review, validate and implement requirements.
Preferred certifications:
Skills:
Proven ability to research and problem solve both independently and within a team environment.
Strong interpersonal skills to work directly and clearly with client, teammates, business partners, end-users, and other stakeholders to review, validate and implement requirements.
Must be able to comprehend and follow complex procedural documentation and guidance.
Demonstrated ability to work issues through to completion and resolve challenges independently.
Preferred Experience:
Extensive system admin experience with Windows Server and Linux operating systems
Experience with Storage Area Networks (SANs), Fiber Channel, Fiber Connections, Cluster environment
Experience with networks, firewalls, switches, Virtual Machines (VMs), virtual snapshots
Experience with remote management tools, disk encryption, video surveillance systems, system backup solutions
Experience with agile project management, and agile project management tools such as Jira
Experience providing security in a NASA environment, including familiarity with
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Click here to learn more: KBR Benefits (https://bit.ly/3GHFBLA)
Inclusion and Diversity at KBR
At KBR, we are passionate about our people, sustainability, and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a more inclusive and diverse company. That commitment is central to our team of team's philosophy and fosters an environment of real collaboration across cultures and locations. Our individual differences and perspectives bring enhanced value to our teams and help us develop solutions for the most challenging problems. We understand that by embracing those differences and working together, we are more innovative, more resilient, and safer. We Deliver - Together.
Click here to learn more: Inclusion and Diversity at KBR (https://www.kbr.com/en/who-we-are/our-people/inclusion-and-diversity)
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
