Chief Information Security Officer

KBR

Title: Chief Information Security Officer Director KBR is seeking a Chief Information Security Officer Director to provide enterprise leadership for corporate cybersecurity and information protection. This role will define and execute KBR’s global corporate information security strategy, safeguarding corporate systems, data, intellectual property, and digital platforms while enabling secure business growth and transformation. This Chief Information Security Officer Director will focus on corporate IT and shared services environments, including cloud platforms, SaaS applications, enterprise systems, and workforce technologies. The role operates as a trusted advisor to executive leadership, partnering across functionally to manage cyber risk and strengthen enterprise resilience. Ability and willingness to travel internationally as required (approximately 10–20%). ***Background Check Required*** Responsibilities: Define, lead, and execute KBR’s information security strategy, operating model, and multiyear roadmap aligned with enterprise objectivesServe as the enterprise authority on cyber risk, threat posture, and resilience, advising executive leadership on risk-based decision makingEstablish and maintain corporate information security policies, standards, and governance aligned to frameworks such as NIST CSF, ISO 27001, SOX ITGCs, GDPR, Australia and UK data protection requirementsOversee enterprise-wide risk management and compliance:Conduct regular risk and information security assessments to identify security vulnerabilities and threats, both internal and externalDevelop and implement risk mitigation strategies and security controls to reduce and manage identified risksMonitor compliance with applicable laws, regulations, and contractual obligations related to information securityLead incident response and breach management, including executive communications, regulatory coordination, and post incident remediationPartner with IT and Digital teams to embed secure by design practices into cloud adoption, enterprise applications (ERP, HRIS, CRM), data platforms, and automation initiativesOversee third party and supplier cyber risk management for vendors and technology partnersSupport enterprise initiatives including M&A, divestitures, and system integrations from a cybersecurity and risk perspectiveBuild, lead, and develop a high performing global information security organizationDrive enterprise-wide security awareness, training, and accountability to strengthen KBR’s cyber cultureCollaborate across regions and functions in alignment with KBR’s team of teams operating model Qualifications: Bachelor’s degree in computer science, information security, engineering, or a related fieldProgressive professional experience in information security, IT risk, or technology leadershipProven ability leading enterprise or cybersecurity programs in a global organizationExpertise securing IT environments, including cloud, SaaS, identity, and enterprise applicationsExecutive level communication skills with the ability to translate technical risk into business impactProfessional certifications preferably CISSP, CISM, or CRISC Preferred Qualifications: Master’s degree or MBAProficiency supporting public company environments, including SOX and internal audit collaborationCompetency leading information protection initiatives and building security culture in an international organizationCloud security expertise (AWS, Azure, or similar platforms)Demonstrated capacity in supporting large scale digital transformation or enterprise modernization initiativesProven success operating within a matrixed, multinational organizationEffective leadership presence with the ability to influence

Last checked on June 2, 2026. We may earn a commission when you click through.

Advertisement

Chief Information Security Officer

KBR

Updated 28 days ago
Apply now

You'll be redirected to careers.kbr.com

Leatherhead Full-Time

About this role

Title:

Chief Information Security Officer Director

KBR is seeking a Chief Information Security Officer Director to provide enterprise leadership for corporate cybersecurity and information protection. This role will define and execute KBR’s global corporate information security strategy, safeguarding corporate systems, data, intellectual property, and digital platforms while enabling secure business growth and transformation.

This Chief Information Security Officer Director will focus on corporate IT and shared services environments, including cloud platforms, SaaS applications, enterprise systems, and workforce technologies. The role operates as a trusted advisor to executive leadership, partnering across functionally to manage cyber risk and strengthen enterprise resilience.

Ability and willingness to travel internationally as required (approximately 10–20%).

Background Check Required

Responsibilities:

Define, lead, and execute KBR’s information security strategy, operating model, and multiyear roadmap aligned with enterprise objectivesServe as the enterprise authority on cyber risk, threat posture, and resilience, advising executive leadership on risk-based decision makingEstablish and maintain corporate information security policies, standards, and governance aligned to frameworks such as NIST CSF, ISO 27001, SOX ITGCs, GDPR, Australia and UK data protection requirementsOversee enterprise-wide risk management and compliance:Conduct regular risk and information security assessments to identify security vulnerabilities and threats, both internal and externalDevelop and implement risk mitigation strategies and security controls to reduce and manage identified risksMonitor compliance with applicable laws, regulations, and contractual obligations related to information securityLead incident response and breach management, including executive communications, regulatory coordination, and post incident remediationPartner with IT and Digital teams to embed secure by design practices into cloud adoption, enterprise applications (ERP, HRIS, CRM), data platforms, and automation initiativesOversee third party and supplier cyber risk management for vendors and technology partnersSupport enterprise initiatives including M&A, divestitures, and system integrations from a cybersecurity and risk perspectiveBuild, lead, and develop a high performing global information security organizationDrive enterprise-wide security awareness, training, and accountability to strengthen KBR’s cyber cultureCollaborate across regions and functions in alignment with KBR’s team of teams operating model

Qualifications:

Bachelor’s degree in computer science, information security, engineering, or a related fieldProgressive professional experience in information security, IT risk, or technology leadershipProven ability leading enterprise or cybersecurity programs in a global organizationExpertise securing IT environments, including cloud, SaaS, identity, and enterprise applicationsExecutive level communication skills with the ability to translate technical risk into business impactProfessional certifications preferably CISSP, CISM, or CRISC

Preferred Qualifications:

Master’s degree or MBAProficiency supporting public company environments, including SOX and internal audit collaborationCompetency leading information protection initiatives and building security culture in an international organizationCloud security expertise (AWS, Azure, or similar platforms)Demonstrated capacity in supporting large scale digital transformation or enterprise modernization initiativesProven success operating within a matrixed, multinational organizationEffective leadership presence with the ability to influence

You might also like

Related Articles