Information System Security Manager (ISSM) KOP

About The Position

Requirements

• Minimum Top Secret Security Clearance is required
• DoD 8570/8140 IAM Level III certification (i.e. CISSP, CISM)
• Ability to motivate, influence and performance manage personnel with classified cyber security skills.
• Demonstrable SME level experience with authorization package submission tools (e.g., eMASS) leading to Authorizations to Operate (ATO) and Authority to Connect (ATC).
• Ability to perform an analysis in order to determine path forward in regards to policies and procedures and how to resolve discrepancies.
• Experience driving the RMF process while working with government authorities (e.g., DCSA) for approvals and the ability to perform risk and vulnerability assessments in line with current regulatory guidelines such as DCSA Assessment & Authorization Guide (DAAG) and the National Industrial Security Program Operating Manual (NISPOM).
• Candiate must have SIPRNet experience with CORA inspections
• US Citizen

Nice To Haves

• Experience with industry standard Information Assurance tools required to achieve Defense Counterintelligence and Security Agency (DCSA) authorization of systems to include vulnerability scanning tools (e.g., Tenable), and endpoint protection tools (e.g., Trellix), and Security Information and Event Mgmt (SIEM)/auditing tools (e.g., Splunk).
• Experience with Agile and DevSecOps concepts and toolsets (e.g. JIRA, Confluence, Docker, Ansible, Git, etc.
• Experience with the National Industrial Security Program Operating Manual (NISPOM) and the DCSA Assessment and Authorization Guide (DAAG)
• Familiarity with Joint Special Access Program (SAP) Implementation Guide (JSIG), Committee on National Security Systems Instruction (CNSSI) 1253, NIST SP 800-37 Risk Management Framework (RMF), and/or NIST SP 800-53 Security and Privacy Controls requirements
• Bachelor's degree from an accredited college in a related discipline with 12 years of professional experience; or 10 years of professional experience with a related Master's degree

Responsibilities

• Overseeing and directing day-to-day information system security operations, providing expert guidance on all technical security matters as the ISSM.
• Attracting, retaining, and developing top cyber talent to ensure a skilled and effective classified cyber security team.
• Coordinating and managing interactions with government authorization authorities to facilitate and maintain 100% active authorization status of all Authorization to Operate.
• Developing and implementing government-approved information security procedures and system security plans for the operation of networked and standalone classified computers systems.
• Communicating, implementing, and managing a formal Information Security / Information Systems Security Program together with the Facility Security Officer (FSO) and Program Management.
• Overseeing and conducting risk assessments on cybersecurity architecture and perform comprehensive investigations of computer security incidents, collaborating with outside agencies as required.
• Ensure configuration management (CM) for security-relevant IS software, hardware, firmware, and system documentation.
• Assist and conduct security IS education and training.
• Assist in conducting investigations of computer security violations and incidents.
• Handling mission requirements which may drive unpredictable work hours/schedules
• Working in a high paced environment driven by growing and ever-changing technical implementation requirements.

Benefits

• Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees.
• Schedules range from standard 40 hours over a five day work week while others may be condensed.
• These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.