Title:

Program Summary

KBRs Product and Technology Solutions Division specializes in rapid prototyping and advanced technology solutions for directed energy, electronic warfare, and security applications. With expertise in electronic warfare systems, critical infrastructure protection, and product R&D, KBR delivers cutting-edge innovations to meet mission-critical needs. Backed by a global presence and a strong ethical framework, KBR collaborates closely with customers to develop secure, effective, and forward-thinking solutions.

Job Summary

The Cybersecurity & Network Systems Engineer performs modernization, security engineering, and network architecture efforts across Tactical Integrated Ground Suite (TIGS) program. Leveraging expertise in Cisco, identity & access management, Zero Trust Architecture, containerized environments, and NISTaligned cybersecurity engineering, this role develops secure enterprise and deployable network solutions, performs site surveys, authors network inputs, implements STIG and RMF package requirements, and supports ATO validation activities. The engineer provides handson configuration, system hardening, network migration execution, zero trust integration, and crossplatform troubleshooting while ensuring all deliverables (drawings, artifacts, diagrams, documentation, training inputs) meet Army standards and program objectives.

Roles and Responsibilities

Cybersecurity Engineering and RMF STIG Integration to apply NIST, RMF, and Zero Trust principles across network modernization initiatives and supporting infrastructure projects.

Develop STIG automation and STIG checklists, perform vulnerability scans using tools such as ACAS, document findings, and support POAM development and remediation tracking.

Architect and implement Zero Trust and IAM solutions using technologies such as Keycloak, Pomerium, PacketFence, and identity centric access controls.

DevOps, Automation and Modern Platform Integration supporting configuration and infrastructure management using Ansible, Terraform, Docker, Kubernetes, and related automation frameworks.

Support engineering of containerized security labs, overlay networks, distributed Kubernetes clusters, and secure cloud adjacent architectures.

Oversee cybersecurity operations support services spanning hardware and software tools and sensors from perimeter defenses to endpoint systems, including equipment management, logging, incident response, compliance reporting, RMF support, SCA coordination, and CSSP integration.

Evaluate cybersecurity policies, emerging technologies, and operational best practices to provide recommendations that strengthen the effectiveness and efficiency of cybersecurity operations.

Analyze complex security issues and develop effective solutions and incident response actions to maintain cybersecurity compliance, operational readiness, and reduce cyber risk.

Lead preparation and maintenance of artifacts to support RMF packages and achieve ATO, including maintaining documentation, implementing and monitoring security controls, and reporting status to ISSM, ISSO, and Program Manager.

Support security incident response team requirements including inspections, audits, policy reviews, strategy development, and recommendations to improve overall security posture.

Basic Qualifications

Bachelor's degree and 2 years of experience OR an Associate's degree and 6 years of experience.

Active TS/SCI Clearance

Strong hands-on experience with Cisco/Juniper, AAA/TACACS+, VLAN segmentation.

Demonstrated capability implementing NIST-aligned cybersecurity controls and Zero Trust architectures. Experience with IAM solutions including Keycloak, policy-based authentication, and SSO federations.

Hands-on experience with Docker, Kubernetes, ESXi, and infrastructure automation.

Experience operating IDS/IPS systems (Suricata), OPNsense, Grafana, and packet analysis platforms.

Minimum requirement for CompTIA Security+ A+

Preferred Qualifications

Experience supporting RMF, eMASS package inputs, STIG compliance and vulnerability remediation.

Familiarity with Army networks, TDL/TDP processes, and DISA STIG/SRG baseline configurations.

Experience with wireless surveys, RF spectrum analysis, and site infrastructure validation.

Experience with deployment of Zero Trust overlays (OpenZiti, Pomerium) and NAC solutions (PacketFence).

Exposure to Cisco Security training: SCOR, SAUI, CBROPS.

Experience with enterprise and tactical closed restricted network migration efforts utilizing a varied OS environment such as Ubuntu/RHEL, Windows 11/Server, networking/identity, and secure endpoint integration.

Salary Range: $104,160 - $156,135

The salary range posted is based on Colorado Springs, CO. The offered rate will be based on the selected candidates location, knowledge, skills, abilities, and/or experience, contract affordability, and in consideration of internal parity.

KBR Benefits

KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.

Belong, Connect and Grow at KBR

At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of teams philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver Together.

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.