Security Operations – Director

Title:

KBR — Delivering Solutions, Changing the World.

KBR brings together the best and brightest to deliver science, technology and engineering solutions that help governments and companies around the world accomplish their most critical missions and objectives.

In everything we do, we are guided by our ONE KBR Values:

• We Value Our People – We create diverse, inclusive environments in which each person can feel safe, respected and valued, and where everyone has opportunities to grow and reach their full potential.

• We Deliver – We are uncompromising in our commitment to deliver innovative, high-quality, technology-led solutions for our customers and exceptional, sustainable value for all our stakeholders.

• We Are People of Integrity – We value honesty, trust, courage, fairness, prudence and tenacity. We believe doing what’s right for the planet, the communities where we work, and our people is good for business.

• We Empower – We empower our people with a shared purpose, the right tools and the supportive culture they need to be proactive decision-makers, to be adaptive to change, and to succeed.

• We Are a Team of Teams – We have a will to succeed, but we value the achievements of our team of teams over individual accomplishments. Our collective focus makes us a better, stronger, more effective company

We have also embedded environmental, social and governance (ESG) principles in every business operation and corporate function. Not only are we committed to operating safely, sustainably and equitably, but we are also committed to using our capabilities and expertise to help our customers accomplish their sustainability goals. Worldwide, KBR employs a diverse workforce approximately 29,000 people strong, with customers in more than 80 countries and operations in 40 countries. At KBR, We Deliver.

Daily responsibilities for the Information Security Operations – Director are as follows:

Talent Management

• Advocates for effectively executing the performance management process by collaborating with direct report/s to set clear objectives, goals, and expectations. Conducts regular coaching and constructive feedback discussions to review performance and goal progress, assist with challenges, and identify strengths and development areas, all to support Associate professional and career development while increasing engagement and motivation.

• Supports workforce planning and talent acquisition strategies by effectively staffing and hiring diverse talent for the organization.

• Addresses Associate relations and performance issues promptly and makes appropriate decisions relative to performance challenges.

• Develop direct reports to increase the team's bench strength and flexibility. Ensure that Associates receive appropriate training and resources to perform their jobs effectively and efficiently.

Operational Management

• Ensure the security architecture is integrated and consistent with the company’s overall systems architecture.

• Provide timely reporting and analytics on security engineering design and architecture and its relationship to security posture and threat landscape.

• Engineer and architect in collaboration with security operations and information assurance real-time monitoring/management of events and event correlations and appropriate and timely response.

• Engineer and architect integration of security products with each other and other information systems.

• Provide advice and reporting to executive management on the effects of various current and proposed security engineering on business performance.

• Interface with service and hardware vendors for procurement and maintenance of cybersecurity equipment and services.

• Engineer and architect configurations and technologies for security management and for the dynamic configuration of supported security devices and applications.

• Collaborate with the Chief Information Security Officer to facilitate the development and implementation of appropriate security configurations, policies, processes, and procedures.

• Lead the implementation of industry best practices, procedures, and standards.

• Facilitate excellent communication with all functional areas, technical personnel department heads, and executive management.

• Oversee operations-related projects and project portfolio.

• Continuously improve the Cyber Incident Response and Problem Management processes. Identify trends and areas for improvement – drive root cause analysis and resolutions.

Strategy & Planning

• Partner with Business Technology leadership to actively participate in strategic roadmap exercises.

• Work with stakeholders to define business and systems requirements for new technology implementations in partnership with Business Technology leadership.

• Partner with Business Technology leadership to support emerging technology proof-of-concepts that are aligned with cyber security governance and security recommendations.

• Design and implement short and long-term strategic plans to make certain cyber security meets existing and future requirements.

• Maintain awareness of current and evolving cyber threat techniques, tactics, and procedures.

• Partner with the Chief Information Security Officer and Business Technology Leadership on the strategy and execution of the cybersecurity program.

• Develop and deploy methodologies for testing network security performance and providing network security performance statistics and reports.

• Develop and implement all functional policies and procedures, including those for purchasing network security architecture standards and service provision.

• Identify recommend and develop cost-effective technology solutions for the enterprise.

• Assist in the development of and accountable for adherence to the departmental capital and expense budgets.

Acquisition & Deployment

• Manage vendor relationships.

• Develop business case justifications and cost/benefit analyses for IT spending and initiatives.

• Approve the purchase of equipment and supplies to meet the business's operational requirements.

• Analyze existing operations and make recommendations for improving and growing the cyber security architecture and systems.

• Conduct research and remain current with the latest technologies and solutions supporting procurement efforts.

• Develop requests for proposal and capital appropriation requests.

Professional Qualifications/Skills:

• 10+ years of experience with a minimum of 5 years in an IT Management role

• One or more of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM)or other DoD 8570.01-M Approved certification for IAM Level III or IAT Level III; candidates with other relevant certification(s) may be considered

• US DOD Security Clearance

• Understanding of cyber risk management frameworks and controls such as NIST Cybersecurity Framework, NIST Privacy Framework NIST AI Risk Management Framework, ISO 27001, and CMMC

• Hands-on technical experience with security assessment, monitoring, and management tools

• Approachable, strategic leader with a proven ability to build and sustain trusting relationships across the enterprise at all levels and demonstrated customer focus.

• Proven ability to design and drive change.

• Experience in the delivery of complex technology initiatives.

• Experience with repeatable infrastructure delivery and support processes and deliverables.

• Demonstrated ability to select and integrate major cyber security technologies and services.

• Experience in a role requiring budget responsibility of $25 Million or more with line management accountability.

• Experience in cyber security, driving best practices, standards, measurement, and service-oriented architecture approaches.

• Demonstrated effectiveness as a thought leader and business partner to senior operating leaders.

• Demonstrated strong cyber security background with program management, project management, and execution and delivery oversight, with attention to detail around metrics, accountability, and operational excellence.

• Proficient level of knowledge of applicable data privacy practices and laws.

• Demonstrated success in influencing a company’s overall business strategy and processes. Collaborative but decisive personal style; highly effective communicator and problem solver

KBR Benefits​

KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule.  We support career advancement through professional training and development.​

Click here to learn more:  KBR Benefits

Belong, Connect and Grow at KBR

At KBR, we are passionate about our people and our Zero Harm culture.  These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company.  That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver – Together. 

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.