Information System Security Manager (ISSM) KOP

Lockheed Martin•King of Prussia, PA

3d•Onsite

About The Position

Lockheed Martin’s Rotary and Mission Systems (RMS) Classified Cyber Security organization is looking for a Classified Cyber Security Manager who will serve as the on site cyber leader for our classified programs. In this role you will own the day to day security posture of the site’s classified systems and infrastructure, serve as the facility Information Systems Security Manager (ISSM), and provide authoritative guidance on all matters of confidentiality, integrity, and availability. You will lead a team of cyber professionals, partner with engineering and program leads, and ensure that security governance, risk management, and compliance are embedded into every operational and development activity across the site. Minimum Final Secret Clearance Required Minimum 8 + years of progressive experience in cybersecurity, with at least 3 + years in an ISSM or site leadership role for classified systems.

Requirements

U.S. citizen with a final Secret security clearance (or higher).
DoD 8570/8140 IAM Level III certification (e.g., CISSP, CISM).
Demonstrated ability to motivate and influence personnel who possess classified cybersecurity skills.
Proven track record of analyzing complex situations and charting a strategic path that enables program success.
Hands on experience driving the RMF process and working directly with government authorities (e.g., DCSA) for security approvals.
Capability to conduct risk and vulnerability assessments in accordance with current regulatory guidance such as the DCSA Assessment & Authorization Guide (DAAG) and the National Industrial Security Program Operating Manual (NISPOM).
Minimum 8 + years of progressive experience in cybersecurity, with at least 3 + years in an ISSM or site leadership role for classified systems.

Nice To Haves

Practical experience with industry standard Information Assurance tools required for DCSA system authorizations, including:
Vulnerability scanning tools (e.g., Tenable)
Endpoint protection platforms (e.g., Trellix)
SIEM/auditing solutions (e.g., Splunk)
Bachelor’s degree from an accredited college in a relevant discipline plus 8 + years of professional cybersecurity experience.
SME level expertise with authorization package submission tools (e.g., eMASS) leading to successful Authorization to Operate (ATO) and Authority to Connect (ATC).
Direct experience with the DCSA Assessment and Authorization Guide (DAAG) or the DCSA Assessment and Authorization Process Manual.
Familiarity with one or more of the following frameworks and guides:
Joint Special Access Program (SAP) Implementation Guide (JSIG)
Committee on National Security Systems Instruction (CNSSI) 1253
NIST SP 800 37 Risk Management Framework (RMF)
NIST SP 800 53 Security and Privacy Control Requirements.

Responsibilities

Own the execution of business enablement initiatives, embedding 21st Century Security into the Classified Cyber program to effectively manage risk while ensuring seamless alignment with customer requirements and successful program execution.
Leadership and stewardship of Classified Cyber Security Professionals.
Serve as the ISSM for the site’s classified environment.
Mentor, train, and develop the cyber talent pool to sustain a high performing, classified cyber security capability.
Develop, enforce, and continuously improve security policies, standards, and processes that meet DoD, DISA, and RMS requirements.
Oversee the implementation and validation of security controls, ensuring they are applied consistently across all classified assets.
Lead risk based assessments, vulnerability management, and incident response activities for the site.
Provide expert guidance to program and engineering teams on secure architecture, system hardening, and compliance with NIST SP 800 53, DISA STIGs, and other applicable frameworks.