Security Controls Assessor (SCA) Representative jobs in United States
cer-icon
Apply on Employer Site
company-logo

KBR Careers · 1 day ago

Security Controls Assessor (SCA) Representative

positionColorado Springs, Colorado
timeFull-time
remoteOnsite
senioritySenior Level
money$160K/yr - $180K/yr
date5+ years exp

KBR is seeking a Security Controls Assessor (SCA) Representative in Colorado Springs, CO area. The individual will directly support the United States Space Force (USSF) Risk Management Framework, Cybersecurity Framework (RMF, CSF) compliance activities to ensure security controls are defined, implemented, and assessed for complex multi-level security architectures of advanced aerospace systems.

Information Technology & Services
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Conducts independent comprehensive assessments of the management, operational, and technical security controls, and control enhancements implementation within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37)
Applies RMF/CSF principles to the development of integrated weapon systems
Conducts assessment and authorization (A&A) events to support recommendations to the USSF Special Access Program/Special Access Required (SAP/SAR) Authorizing Official (USSF SAP AO) based on requirements, security impact levels and projected/current operational environment
Develops Security Assessment Report to support Authorization to Operate decisions
Full-time job with frequent US travel required

Qualification

TS/SCI clearanceLinux administrationRMF/CSF knowledgeCISSP certificationCybersecurity assessmentsDevSecOps processCloud security certificationRisk management planningTechnical proficiency in securityCommunication skills

Required

An active TS/SCI and eligible for SAP/SAR, which is something only a U.S. citizen can obtain
Prior experience as a SAP SCA or SAP SCA Representative
Ability to travel 20%-50%
5 years of Linux experience in implementation/principles/administration
Strong knowledge of RMF/CSF process activities and related documentation (e.g., life-cycle support plans, concept of operations, and operational procedures) to confirm the level of risk is within acceptable limits
Demonstrated ability perform cybersecurity assessments, identify gaps in cybersecurity architecture, and develop a security risk management plan that articulates risk to both technical and non-technical audiences
Ability to ensure Body of Evidence (BoE) artifacts such as plans of actions and milestones and cybersecurity plans are in place for vulnerabilities/deficiencies identified during risk assessments, audits, inspections, etc
Demonstrated history finding unique mitigations to varied systems' cybersecurity challenges to assess the effectiveness of security controls
Demonstrated technical proficiency in at least two of the following areas of security: communications, networks, embedded systems, software, system testing or assessment, etc
Strong written and oral communication skills to support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs)
Ability to verify software/network/system security postures are implemented within a DevSecOps process, agile methodology and continuous integration/continuous delivery (CI/CD) pipeline to ensure cybersecurity requirements are included in early during development
Demonstrated ability to develop methods to develop methods to monitor and measure risk, compliance, and information assurance efforts
Certified Information System Security Professional (CISSP)

Preferred

Bachelor's Degree in Engineering, Computer Science or other Technology related fields is desired
Prior law enforcement, counterintelligence or cyber operation experience is highly desired
Certified Cloud Security Professional (CCSP)
Certified Ethical Hacker (CEH)
AWS or other cloud technology security certification

Benefits

401K plan with company match
Medical
Dental
Vision
Life insurance
AD&D
Flexible spending account
Disability
Paid time off
Flexible work schedule

Company

KBR Careers

twitter
company-logo
At KBR, we deliver science, technology and engineering solutions that are helping governments and companies around the world take on the great challenges of our time.
dateFounded in 1919
location
Houston, TX, US
people-size10001+ employees
web-link
https://careers.kbr.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Becky Sewell
Chief Training Officer (CTO)
linkedin
leader-logo
Dana Dorsey
Sr. VP, Chief Financial Officer
linkedin
Company data provided by crunchbase