Information System Security Officer

About The Position

Requirements

• Must be a U.S. citizen - This position is located at a facility that requires special access.
• Top Secret clearance required.
• DoD 8140 IAT Level II certification (Security +).
• Experience with IS auditing and investigation.
• Practical experience hardening and/or testing Microsoft Windows and Linux operating systems, Active Directory, DNS, SQL, and Oracle Databases, IIS and Apache web servers, and network devices, including various switches, routers, and firewalls.
• Hands-on experience with industry-standard Information Assurance tools.
• Experience with developing, reviewing and maintaining RMF artifacts.

Nice To Haves

• DoD 8140 IAT Level III certification (CASP, CCNP).
• Experience implementing new and complex technologies at multiple classification levels within large environments and at an Enterprise level.
• Practical experience configuring and administering Host-Based Security System, Splunk and other network monitoring, incident response, and logging tools.
• Familiarity with using Bash/Shell/Ansible to produce hardening scripts and workable knowledge of system scan analysis tools, such as SCAP, to identify system vulnerabilities.
• Experience with Sentris, PITBULL OS, MLSDrive, containers, and various networking products.
• Experience with cloud platforms, such as AWS, Microsoft Azure, Docker, and others.

Responsibilities

• Oversee day-to-day information system security operations as the lead on all technical security matters within complex environments including auditing the IS, hardware and software implementations and RMF package authorizations.
• Develop and implement government-approved information security procedures and system security plans for the operation of networked and standalone classified computer systems.
• Carry out technical administration of information systems in accordance with internal Lockheed Martin and customer security requirements, primarily Risk Management Framework (RMF).
• Document compliance actions with the ISSM to address non-compliance in the allotted time frame.
• Coordinate and manage interactions with government accreditation authorities to facilitate and maintain 100% active accreditation status of all Authorization to Operate (ATO).
• Oversee and conduct risk assessments on cybersecurity architecture and perform comprehensive investigations of computer security incidents, collaborating with outside agencies as required.
• Ensure configuration management (CM) for security-relevant IS software, hardware, and firmware.
• Upkeep, monitor, analyze, and respond to security events.
• Assist and conduct security IS education and training.
• Assist in conducting investigations of computer security violations and incidents.
• Participate in internal/external security audits/inspections; performs risk assessments.
• Communicate, implement and manage a formal Information Security / Information Systems Security Program together with ISSM and Program Security.

Benefits

• Medical
• Dental
• Vision
• Life Insurance
• Short-Term Disability
• Long-Term Disability
• 401(k) match
• Flexible Spending Accounts
• EAP
• Education Assistance
• Parental Leave
• Paid time off
• Holidays