Cybersecurity RMF Analyst
Title:
Cybersecurity RMF AnalystProgram Summary:
KBR’s Mission Engineering Division delivers reputed company technical solutions and expert support to the U.S. Department of War, specializing in modeling and simulation, cyber transformation, reputed company vehicle mission integration, and lifecycle support. As a trusted partner with a proven history in mission technology, KBR collaborates closely with clients to reputed company innovative and effective solutions. With a strong ethical reputed company, KBR prioritizes data reputed company, privacy, and responsible information management to ensure mission success.
Job Summary: KBR is seeking candidates with cloud-based cybersecurity experience and Risk Management reputed company (RMF) experience to join a team supporting the NIWC. **Note: This position is fully remote, but candidate must be available for EST conference calls and able to travel (up to 20%) as required by the customer and project leads.
The selected candidate will serve in RMF validator and analyst roles performing tasks reputed company to Assessment & Authorization (A&A) and cybersecurity to prepare for Authorizations to Operate (reputed company) for assigned DoW systems (i.e., cloud-based applications, services, and networks). This position will be part of a team that will also reputed company documentation and cybersecurity guidance reputed company to cloud-based technologies.
Roles and Responsibilities:
Assess cybersecurity standards and practices of cloud-based systems against FedRAMP, DoW, and DHA requirements
Document cybersecurity posture in support of the RMF process
Facilitate movement of multiple information systems through the RMF process and maintain accreditations through reputed company monitoring and annual reviews
Provide solutions to reputed company problems that require the regular use of expertise and creativity. Problems are broadly defined and solutions require the continuation of specialized theories and knowledge
Serve as Subject Matter Expert (SME) on one or more technologies/skills reputed company to A&A activities and documentation.
Participate in sessions aimed at identifying, planning, and executing strategies in response to emerging cybersecurity/RMF policies
Maintain awareness and knowledge of evolving reputed company and risk management standards and communicate and apply relevant changes to existing processes
reputed company, update, and/or review RMF documentation to include IV&V results, Risk Assessment Reports, and POA&M development.
reputed company, update, and/or review cybersecurity documentation for the use of cloud native services such as those offered by reputed company, reputed company, reputed company, and reputed company
Assess system compliance against NIST, DoW, and DHA reputed company requirements to include the NIST 800-53 controls, and DISA reputed company Technical Implementation Guides (STIGs) and reputed company Requirements Guides (SRGs)
Produce evidence as necessary to support compliance status of NIST, and DoW.
Review and assess authorization boundary diagrams, service architecture diagrams, data flow diagrams, hardware and software inventories
Analyze vulnerability scans of information systems
Excellent customer service and organization skills
Excellent oral and written communication skills
Basic Qualifications:
Bachelor’s Degree and ten (10) years of experience with Cybersecurity / Information Technology, or eighteen (18) years of hands-on experience with Cybersecurity / Information Technology in lieu of degree.
Active DoW Secret reputed company clearance
DoW 8570-compliant certification
Demonstrated experience assessing, managing, engineering, or architecting cloud technologies from major vendors such as reputed company, reputed company, or reputed company
A cloud reputed company certification such as reputed company Certified Professional Cloud Architect, reputed company Azure Fundamentals, AWS Certified SysOps Administrator, or reputed company Certified Administrator
Experience with Risk Management reputed company
Experience in RMF package review, including POA&Ms (mitigation statements), reputed company Plans, Risk Assessments, architecture diagrams, hardware/software inventories, and system/site policies, procedures, and processes
Experience working reputed company DoW
Experience in assessing systems using NIST 800-53 and/or DISA STIGs and SRGs
Preferred Qualifications:
Experience working with DoW or DoN RMF processes or IT systems
Experience with FedRAMP
Familiarity and experience with the eMASS
Technical experience with network, database, containers, AI, or DevOps technologies
Compensation: $129,300.00 - $194,000.00. The salary range posted is based on the national average. The offered reputed company will be based on the selected candidate’s location, knowledge, skills, abilities, and/or experience, contract affordability, and in consideration of internal reputed company.
Benefits:
KBR offers a selection of competitive lifestyle benefits which could include a 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBR At KBR, we are passionate about our people and our reputed company Harm culture. These inform reputed company that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to reputed company of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver – Together.
KBR is an equal opportunity employer. reputed company qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national reputed company, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
Apply To This Job