Logo for KBR, Inc.

Associate Security Engineer, Identity Security

Role overview

Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related field
  • 2+ years of experience in information technology, cybersecurity, identity administration, systems administration, cloud support, service desk support, or a related technical field
  • U.S. citizenship required
  • Foundational understanding of information technology concepts

Responsibilities

  • Support the administration and operation of Microsoft Entra ID, Active Directory, hybrid identity, and directory synchronization services
  • Perform identity administration activities for users, groups, devices, applications, service accounts, and access permissions
  • Troubleshoot authentication, authorization, provisioning, account lifecycle, and access-related issues
  • Review logs, alerts, and system data to identify and resolve identity-related incidents and operational problems

Key facts

Other skills

  • Governance
  • Troubleshooting (Problem Solving)
  • Communication
  • Teamwork
  • Problem Solving
  • Detail Oriented

About the company

KBR, Inc. logo

KBR, Inc.

Engineering Services

We deliver science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 30,000 people performing diverse, complex and mission-critical roles in 34 countries. KBR is proud to work with its customers across the globe to provide technology, value-added services, and long-term operations and maintenance services to ensure consistent delivery with predictable results. At KBR, We Deliver.

Company details

Company typeXLarge
IndustryEngineering Services
Company size10001

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Title:

Associate Security Engineer, Identity Security

KBR is seeking an Associate Security Engineer to join our Identity Security Services team within a global cybersecurity organization supporting complex, highly regulated enterprise environments. This hands-on role provides the opportunity to build technical expertise across identity and access management, authentication, privileged access, identity governance, and enterprise security technologies while working alongside experienced engineers and architects.

You will support the administration, security, and continuous improvement of identity platforms including Microsoft Entra ID, Active Directory, and hybrid identity solutions. The ideal candidate is curious, detail-oriented, eager to learn, and passionate about cybersecurity and technology. This is a permanent, full-time position based in the United States and requires U.S. citizenship.

In September 2025, KBR announced that we are spinning our Mission Technology Solutions business into a separate public company. This role will ultimately be part of the new company. The Mission Technology Solutions business partners with governments and defense, intelligence, space, aviation, and critical infrastructure customers to deliver high-end engineering, science, technology, and mission support solutions.

Key Responsibilities

  • Support the administration and operation of Microsoft Entra ID, Active Directory, hybrid identity, and directory synchronization services.
  • Perform identity administration activities for users, groups, devices, applications, service accounts, and access permissions.
  • Troubleshoot authentication, authorization, provisioning, account lifecycle, and access-related issues.
  • Review logs, alerts, and system data to identify and resolve identity-related incidents and operational problems.
  • Support Conditional Access, multifactor authentication (MFA), passwordless authentication, and other modern access control solutions.
  • Assist with privileged access management activities, including role assignments, access reviews, and least-privilege enforcement.
  • Support identity governance processes, including access reviews, entitlement management, and joiner, mover, and leaver activities.
  • Assist with enterprise application integrations and identity federation technologies, including SAML, OAuth, OpenID Connect, and SCIM.
  • Support application identities, service principals, managed identities, workload identities, and service accounts.
  • Assist with Active Directory administration, Group Policy management, directory health monitoring, and hybrid identity operations.
  • Support PKI and certificate lifecycle management activities, including certificate issuance, renewal, inventory, and trust relationships.
  • Identify and help remediate identity-related risks, including excessive access, stale accounts, weak authentication, and unmanaged credentials.
  • Support security monitoring, threat detection, and incident investigations using Microsoft security platforms and related tools.
  • Gather technical evidence, perform root cause analysis, and assist with remediation activities during security and operational incidents.
  • Participate in cloud deployments, application onboarding, tenant migrations, and other identity-related projects and initiatives.
  • Support audit, compliance, and governance activities through evidence collection, documentation, and control validation.
  • Create and maintain technical documentation, procedures, knowledge articles, and operational runbooks.
  • Assist with reporting, automation, and continuous improvement efforts using PowerShell, Microsoft Graph, KQL, and related technologies.
  • Follow established security, change management, incident management, and operational procedures.
  • Collaborate with engineers, administrators, and stakeholders to improve identity security controls and operational effectiveness.
  • Communicate technical issues, findings, and project updates clearly while continuing to develop identity security knowledge and expertise.

Basic Qualifications

Education & Experience:

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related field; equivalent combination of education and professional experience may be considered.
  • 2+ years of experience in information technology, cybersecurity, identity administration, systems administration, cloud support, service desk support, or a related technical field.
  • U.S. citizenship required.

Skills & Competencies:

  • Foundational understanding of information technology concepts, including user accounts, permissions, authentication, operating systems, networking, and cloud services.
  • Familiarity with Microsoft Windows, Microsoft 365, Active Directory, Microsoft Entra ID, Azure, or comparable enterprise technologies.
  • Understanding of core security principles such as least privilege, multifactor authentication, role-based access control, and identity lifecycle management.
  • Strong technical aptitude and ability to learn new technologies and processes quickly.
  • Strong troubleshooting, analytical, and problem-solving skills.
  • Ability to follow established procedures, security standards, and change management requirements.
  • Strong attention to detail and commitment to handling sensitive information responsibly.
  • Effective written and verbal communication skills with the ability to document technical work clearly.
  • Ability to collaborate within a team environment, manage assigned tasks, and escalate issues appropriately.
  • Demonstrated reliability, integrity, professionalism, and commitment to continuous learning.

Preferred Qualifications

  • Hands-on experience with Microsoft Entra ID, Active Directory, Azure, or Microsoft 365 administration.
  • Familiarity with identity and access management concepts, including authentication, authorization, provisioning, and identity governance.
  • Experience supporting user accounts, permissions, enterprise applications, or access management processes.
  • Basic experience with PowerShell, scripting, automation tools, or API integrations.
  • Familiarity with Microsoft Sentinel, Microsoft Defender, SIEM technologies, or security monitoring tools.
  • Exposure to SAML, OAuth, OpenID Connect, SCIM, LDAP, Kerberos, PKI, or certificate-based authentication.
  • Experience working in environments with formal change management, incident management, compliance, or audit requirements.
  • Industry certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Azure Fundamentals, CompTIA Security+, CompTIA Network+, or equivalent.

Belong, Connect and Grow at KBR

At KBR, we are passionate about our people and our Zero Harm culture.  These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company.  That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver – Together. 

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
Β·

Security Engineer Related jobs

Other jobs at KBR, Inc.

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.