Title:IT Security PrincipalKBR is a global provider of differentiated, professional services and technologies delivered across a wide government, defense and industrial base. Drawing from its rich 100-year history and culture of innovation and mission focus, KBR creates sustainable value by combining engineering, technical and scientific expertise with its full life cycle capabilities to help our clients meet their most pressing challenges today and into the future.KBR employs approximately 29,000 people worldwide (including our joint ventures), with customers in more than 80 countries, and operations in 40 countries, across two synergistic global businessesThis position supports the KBR Directory and Cloud Services and Enterprise Security Operations teams. The candidate must be eligible to work on projects supporting the UK Ministry of Defence. Under general direction, is accountable for the performance and results of a related discipline or sub-group within a function. Responsible for delivery of functional Directory and Cloud services objectives outlined below and participates in the development of functional strategy and may be responsible for global processes and procedures.Manages Active Directory, including Group Policy, OU Structures, Sites and Services, Trusts, and DNS.Uses general networking knowledge to troubleshoot connectivity issues, including firewall policies, and have familiarity with network tracing tools like Wireshark.Provides support for the internal PKI infrastructure, certificate issuance, template, as well as assists with the public certificate authority and application teams certificate requirements.Supports audit and compliance requirements in the UK and other countries, including Cyber Essentials/Cyber Essentials Plus and ISO27001.Works with the other IT teams to manage KBR’s cloud computing environments, including Microsoft Azure/Office 365, Amazon Web Services, Google Cloud Platform, and more.Provides operational support for cloud directories such as Azure AD.Designs and implements security policies such as Conditional Access and others to secure the cloud environments.Joins the endpoint management teams to deploy policies with Microsoft Intune for PCs, mobile devices, and other endpoints.Leverages scripting tools, such as PowerShell, to help manage the on-premises and cloud directories.Assist with KBR’s Zero Trust remote access security initiatives.Support Internet access management through on-premises proxy servers and cloud proxy/URL filtering solutions.Works collaboratively with key stakeholders across the company organization, including external auditors, process owners, functional management, and business stakeholders.Develops an understanding of organisations, processes, goals and strategies.Identifies opportunities to improve existing process and controls, recommend constructive corrective actions to address control deficiencies identified through compliance audits to strengthen cybersecurity posture and improve processes.This position requires in-depth working knowledge on Microsoft core platform technologies. Knowledge supporting IT enterprise directory services technologies and standards including software & hardware life cycle, system and security configuration policies, hardening, AD, DNS, PKI, DHCP, HA, DR, etc.Experience and knowledge of cloud computing technologies, business drivers, and emerging computing trends for driving long-term cloud adoption with appropriate security controls.Working knowledge of Microsoft Office 365, Azure AD and AWS supporting security governance and technologies is required.Qualifications & Skill RequirementsCompletion of an undergraduate degree in Electronic Engineering, Computer Science or Management Information Systems.A relevant number of years' experience in architecting, implementing and maintaining Microsoft infrastructure and security technologies, with experience focused on Directory Services or IT Security Network experience.Skills & CompetenciesExcellent verbal and written communication skills with ability to communicate confidentially with all levels of IT management.Excellent analytical, problem-solving, and decision-making skills to mitigate risks and resolve control deficiencies.Effective time management skills with ability to manage multiple responsibilities and projects simultaneously with varying degree of complexities and timelines.Demonstrates genuine desire in continuous learning and process improvement.Technical/Functional ExpertiseDemonstrating broad, in-depth, and up-to-date advance working knowledge in the areas of architecting installing, configuring, administering, managing, and troubleshooting Microsoft core platform technologies to include all security components associated with Active Directory and Microsoft cloud security and infrastructure services. Experienced in troubleshooting perimeter and endpoint system security technologies.Teamwork: Building cooperation among individuals and departments, sharing information and resources, and working to achieve group goals and outcomes.Communication: Listening effectively, transmitting information accurately and understandably, and actively seeking feedback. Be able to communicate status, issues, and impacts, with team, team leadership, relevant client sponsors and process owners.Flexibility: Performing a wide range of tasks, responding to changes in direction and priorities, and accepting new challenges, responsibilities, and assignments.Ownership/Accountability: Taking the lead in getting the job done and accepting responsibility for personal actions, costs and results.Analytical Skills: Recognizing patterns in data, information, or events, drawing logical conclusions, and making recommendations for action.Attention to Detail: Adherence to standards and actively checking for accuracy of data received or generated before passing it on.Problem Solving/Decision Making: Taking a well-ordered approach to solving problems and acting despite obstacles or resistance.Professionalism: Dealing directly and forthrightly with people and problems, persisting to get the job done, and managing personal responses and stress.Quality Advocate: Championing the quality process by reinforcing the organization's vision, quality values, and quality processes and by fostering the continuous improvement of all operational and business practices.Dependability/Reliability: Following through on commitments, producing timely work to required-- or higher-- standards, and pitching in to get the job done.Workload efficiency: Must have the ability to work well under time constraints and handle multiple tasks.CertificationsRequire at least one or more of the following – Network Security Certified Professional (NSCP), Certified Information Systems Security Professional (CISSP), Cisco Certifications (CCNA, CCNP, CCSP, CCIE), MCSE, MCP, MCTS, Security+, MCITP.KBR Company InformationWhen you become part of the KBR team, your opportunities are endless. Through collaboration with our customers, we’re defining tomorrow’s challenges, then providing the solutions and services to overcome those challenges, always maintaining our commitment to total safety and reliability.At KBR, we partner with government and industry clients to provide purposeful and comprehensive solutions with an emphasis on efficiency and safety. With a full portfolio of services, proprietary technologies and expertise, our employees are ready to handle projects and missions throughout their entire lifecycle, from planning and design to sustainability and maintenance. Whether at the bottom of the ocean or in outer space, our clients trust us to deliver the impossible on a daily basis.Working at KBR means being rewarded for your contributions. In addition to competitive benefits and professional development, our people are empowered to use all their potential, creating meaningful change for themselves and our clients. We attract the best minds in the world because our expertise thrives on creativity, resourcefulness and collaboration. That is how we supply our clients with cutting-edge solutions and services. As the needs of the world change, we’re ready to respond and guide the way forward with strategic, sustainable, and technological advancements grounded in more than a century of practical application and execution.#LI-RK1