Mid-Career Information System Security Officer

Lockheed Martin Corporation•Littleton, CO

46d•Onsite

About The Position

C4ISR: Command, Control, Communications, Computers, Intelligence, Surveillance and Reconnaissance Across air, land, sea and space, thousands of sensors onboard manned and unmanned military platforms are collecting huge amounts of data. These ISR systems task, collect, process, analyze, fuse and disseminate the most mission-critical information. The threats our customers face require us to deliver innovation at scale, and with greater agility than ever before, to address their toughest challenges and ensure they stay ahead of ready. In this important role you will collaborate with a diverse team of technical professionals including system/network administrators, cybersecurity engineers, program security, and communications security on key programs in both collateral and Special Access Program (SAP) environments. You will work with cross-functional, multi-site teams and should be comfortable working in a highly dynamic mission-focused environment and adept at working with geographically dispersed teams. You appreciate the compliance side of cybersecurity and can visualize and understand complex systems in order to better manage risks and vulnerabilities. At the same time, you find it easy (and also fun) interacting with colleagues and customers. You thrive and do your best in a collaborative and agile environment.

Requirements

Final Top Secret clearance
Ability to obtain and maintain TS/SCI clearance
Possess a valid certification that meets or exceeds DoD 8140 basic foundational requirements for ISSM work role, to include Security+, GSEC, CAP, CASP+, CCISO, CSSP, CISM, CISSP, Cloud+, SSCP, or GSLC
Experience with IS auditing and investigations
Knowledgeable of operating system security requirements
Hands-on experience with industry-standard Information Assurance tools
Experience with developing, reviewing and maintaining RMF artifacts

Nice To Haves

Experience implementing new and complex technologies at multiple classification levels within large environments and at an Enterprise level
Currently working in environment supporting IC customers
Proved ability to obtain and maintain system ATOs
Hands-on experience with ICD 503, JSIG, and DAAPM/DAAG
DoD 8570/8140 IAM Level III certification
Experience setting up or using Tenable Nessus / Security Center
Experience setting up or using Splunk
Experience with scripting languages
Experience implementing or validating Security Technical Implementation Guidance (STIGs)
Experience with containerization

Responsibilities

Oversee day-to-day information system security operations including auditing the IS, hardware, and software implementations and RMF package authorizations.
Carry out technical administration of IS in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF).
Upkeep, monitor, analyze, and respond to network and security events.
Document compliance actions with the ISSM to address non-compliance in the allotted time frame.
Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices.
Participate in internal/external security audits/inspections; performs risk assessments.
Ensure records are maintained for workstations, software, servers, routers, firewalls, network switches, telephony equipment, etc. throughout the information system's life cycle.
Evaluate proposed changes or additions to the information system, and advise the ISSM of their security relevance.
Ensure configuration management (CM) for security relevant IS software, hardware, and firmware is maintained and documented.
Assist in conducting investigations of computer security violations and incidents, reporting as necessary.
Ensure proper protection and / or corrective measures have been taken when an incident or vulnerability has been discovered.
Communicate, implement and manage a formal Information Security / Information Systems Security Program together with ISSM and Program Security.