Information Security Engineer
KBR
- Sioux Falls, SD
- Permanent
- Full-time
- Leading and coordinating project activities with other Security and engineering staff to meet or exceed deadlines.
- Leading a series of security activities in pursuit of a specific goal (e.g. Lead engineer for a project).
- Expected to be forward thinking and work closely with the Infrastructure Operations and Engineering staff to formulate solutions and create efficiencies.
- Establish personal and team talent development expectations aligned with both technical skills development leadership development
- Ensuring system information security requirements are achieved on complex systems of small, mid-size, or large scope
- Providing information security expert advice and support during the entire systems engineering life cycle from the specification and analysis of requirements, through the design of hardware or software, procurement, development, to integration, test, operations and maintenance
- Providing analysis, definition, and the recommendation of information assurance and security requirements for advancing Information Security technologies of computing and network infrastructures.
- Knowledge of continuous monitoring techniques and tools (e.g. SIEM, etc.) to evaluate system security postures
- Ensure systems are in compliance with support NIST 800-53 security control requirements.
- Perform and coordinate incident response activities in order to document and triage events.
- Perform vulnerability assessment scans and evaluate results to suggest additional safeguards.
- Emphasis on Cloud security
- Site Reliability Engineering (SRE) focus / knowledge.
- Proven written and verbal communication skills.
- Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
- Knowledgeable with Windows/Linux/Mac systems
- Ability to work independently as well as part of a team.
- Results oriented.
- Experience developing security plans and other security documents.
- Experience working with Information Security risk assessments, vulnerability assessment, firewalls, intrusion detection/prevention and automated log monitoring.
- CISSP or advanced security certification (CISA, CISM) is highly desired.
- Three years of continuous residency in the US for issuance of a Government Security credential
- The candidate must be able to obtain and maintain a national agency check and background investigation after hire to obtain a badge for government facility access and user account.