PIPELINE - Ongoing KBR is seeking candidates with Assessment & Authorization experience to join a team supporting the Defense Health Agency (DHA) Security Solutions Division (SDD). **Note: This position is remote, but candidate must be available for EST conference calls and able to travel (up to 35%) as required by the customer and project leads. ABOUT THIS POSITION Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) within the Defense Health Agency to ensure assigned DoD systems/Enclaves/Networks can obtain and maintain Authorization to Operate (ATO) and Authorization to Connect (ATC) certifications. Conduct risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs. This position will be a part of a team developing recommended courses of action needed to transition current policies and procedures to the Risk Management Framework (RMF) approved processes. Provide solutions to complex problems that require the regular use of expertise and creativity. Problems are broadly defined and solutions require the continuation of specialized theories and knowledge. Serve as Subject Matter Expert (SME) on one or more technologies. Qualifications: * BS degree and ten (10) years of experience with Information Technology/Information Assurance or fifteen (15) years of hands-on experience with Information Technology/Information Assurance.
* Travel: 30-35%
* Must possess a CompTIA Security + to start work * OS Certification/Approved Training completed within 180 days of hire * Clearance: Active Secret clearance Additional Qualifications: * Experience with DIACAP and RMF in DHA a plus * Experience with Accreditation package management in eMASS a plus * Excellent customer service and organization skills * Excellent oral and written communication skills Familiarity with Guidance: * Risk Management Framework * NIST 800 series policies & Guidance * NIST Federal Information Processing Standards (FIPS) * Department of Defense Instructions (DoDI) * Security Technical Implementation Guides (STIGs) Familiarity with Toolsets/Technlogies: * STIGViewer, * Vulnerator, * eMASS * Assured Compliance Assessment Solution (ACAS) Knowledge in at least one in the following OS/Technologies * Windows * Linux/Unix * Network Devices * Databases - MS SQL , Oracle * VMWare - Virtualization * Web Services * Active Directory / Group Policy * Group Policy * Scripting Basic Compensation: Pay Range: $91,500.00 - $137,300.00 The offered rate will be based on the selected candidate's knowledge, skills, abilities and/or experience and in consideration of internal parity. Additional Compensation: KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of sign on bonus, relocation benefits, short term incentives, long term incentives, or discretionary payments for exceptional performance. Benefits: KBR offers a selection of competitive lifestyle benefits which could include a 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Posting ID: 602933896Posted: 2021-03-01