Information System Security Officer (ISSO)
About The Position
Lockheed Martin is a cybersecurity pioneer, partner, innovator and builder. Our amazing employees are on a mission to make a difference in the world and every single day we use our unique skills and experiences to create, design and build solutions to some of the worlds’ hardest engineering problems. Do you want to be part of a culture that inspires employees to think big, perform with excellence and build incredible products? We provide the resources, inspiration, and focus – if you have the passion and courage to dream big, then we want to build a better tomorrow with you. At Lockheed Martin Rotary and Mission Systems (RMS), we are driven by innovation and integrity. We believe that by applying the highest standards of business ethics and visionary thinking, everything is within our reach – and yours as a Lockheed Martin employee. Lockheed Martin values your skills, training and education. Come and experience your future! We are looking for a cybersecurity professional to join an exciting opportunity within the RMS classified cybersecurity group. The position is located in Colorado Springs, CO and will support the C2BMC program. The candidate will lead a team to ensure security compliance through the implementation of information system security best practices for assigned information systems utilizing industry-standard cybersecurity tools. The candidate will be responsible for the overall ATO lifecycle and compliance enforcement of cybersecurity requirements. The candidate will be expected to participate in tasks that include, but are not limited to the management of information systems, providing information for the development of System Security Plans, establishing and maintaining hardware and software configuration management plans, preparing documents to gain government approvals to operate information systems, weekly system audits, anti-virus software management, creating sanitization procedures for hardware components, maintenance of all user accounts, preparing for and supporting inspections, participating in enterprise initiatives, continuous monitoring, self-inspection review, Proposal Estimates, and other duties as assigned. Successful candidates should be knowledgeable of information technology security principles, various computer/network operating systems, and Microsoft suite of applications. This is a multi-tasking environment that demands customer service, communication, leadership, and organizational skills.
Requirements
- MUST BE A U.S. CITIZEN
- This position requires a current secret clearance and active DOD 8570 IATII certification (e.g, COMPTIA Security +)
- Excellent verbal and writing skills
- Keen attention to detail and adherence to established security policies
- Proven project management, process improvement, and documentation skills
- Demonstrated experience utilizing Tenable.sc, Trellix ePO, Splunk, and/or other vulnerability management compliance tools
- Experience hardening Linux and Windows Operating Systems to DISA STIG baselines
- Experience with system certification, auditing, and continuous monitoring
- Experience managing and implementing the ATO Lifecyle utilizing eMASS, Xacta, or other technologies
- knowledgeable of information technology security principles
- knowledgeable of various computer/network operating systems
- knowledgeable of Microsoft suite of applications
- customer service, communication, leadership, and organizational skills
Nice To Haves
- Knowledgeable of vulnerability management tools
- Knowledgeable of information system auditing best practices
- Knowledgeable of Risk Management Framework (RMF) Lifecyle
- Knowledgeable of network device management (i.e., Cisco, Juniper, etc)
- Knowledgeable of Cloud technologies (e.g., AWS, Azure, Kubernetes, etc.)
- Familiar with Agile and DevSecOps concepts and toolsets (e.g. JIRA, Confluence, Docker, Ansible, Git, etc.)
- Familiarity with the National Industrial Security Program Operating Manual (NISPOM) and the Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual (DAAPM)
Responsibilities
- management of information systems
- providing information for the development of System Security Plans
- establishing and maintaining hardware and software configuration management plans
- preparing documents to gain government approvals to operate information systems
- weekly system audits
- anti-virus software management
- creating sanitization procedures for hardware components
- maintenance of all user accounts
- preparing for and supporting inspections
- participating in enterprise initiatives
- continuous monitoring
- self-inspection review
- Proposal Estimates
- ensure security compliance through the implementation of information system security best practices for assigned information systems utilizing industry-standard cybersecurity tools
- responsible for the overall ATO lifecycle and compliance enforcement of cybersecurity requirements
Benefits
- Medical
- Dental
- Vision
- Life Insurance
- Short-Term Disability
- Long-Term Disability
- 401(k) match
- Flexible Spending Accounts
- EAP
- Education Assistance
- Parental Leave
- Paid time off
- Holidays
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
