Information Systems Security Officer (ISSO) / Secret / Onsite: FL

About The Position

Requirements

• Hands on experience hardening Windows and/or Linux systems per approved DISA STIGs and SRGs.
• Proficiency with core cyber security tools, (e.g., Splunk, Trellix ePO, ACAS/Tenable SC).
• DoD 8570/8140 IAT Level II or III certification (Security+, CISSP Associate, etc.).
• Demonstrated information system auditing experience.
• Strong written and verbal communication, analytical, troubleshooting, and interpersonal skills.
• Ability to work with multiple customers and foster collaborative team environments.
• Active U.S. government security clearance (Secret or higher) with eligibility for classified or sensitive projects.
• This position requires a government security clearance, you must be a US Citizen for consideration.

Nice To Haves

• Prior experience as an ISSO or an equivalent DoD security role in a similarly complex organization.
• Experience in SAP/SCI/Collateral environments and knowledge of government contractor network interconnectivity arrangements.
• Comfortable presenting to large audiences and delivering briefings.
• Bachelor's degree in a related discipline or equivalent combined education/experience.
• Advanced certifications such as CISSP, CISM, AWS Certified Security - Specialty, or Microsoft Certified: Azure Security Engineer Associate.
• Hands on experience with Infrastructure as Code tools (Terraform, AWS CloudFormation, Azure ARM, Ansible) and the ability to review and harden IaC templates for compliance.
• Deep understanding of the NIST Risk Management Framework and the ability to author and maintain SSPs, POA&Ms, and security assessment packages.
• Proven expertise in DevSecOps practices, including secure CI/CD pipeline design, automated security testing, and vulnerability management.

Responsibilities

• Compliance & Regulatory Assessments - Lead periodic regulatory assessments, validate system security requirements, and create, maintain, and submit security documentation (SSPs, POA&Ms, assessment packages) to the appropriate agencies.
• Secure System Implementation - Deploy, harden, and test Windows and Linux operating systems, networks, and database platforms using approved DISA STIGs/SRGs and NIST RMF controls.
• Vulnerability Management & Training - Monitor system vulnerabilities, operate security tools (Splunk, Trellix ePO, ACAS/Tenable SC), and deliver up to date security training to all system users.
• Risk Assessment Mitigation - Perform comprehensive risk analyses, recommend secure implementation strategies, and apply an architectural risk framework to align current systems with future requirements and trends.
• Certification & Accreditation - Plan and execute information system certification and accreditation activities, including testing, liaison with assessors, and post assessment remediation.
• Documentation & Architecture - Produce and maintain information system security architectural documents that conform to DoD/GAO standards and cyber security directives.
• Stakeholder Collaboration - Build and sustain effective relationships with multiple customers, engineering teams, and senior leadership; communicate findings clearly in written reports and oral briefings.

Benefits

• Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees.
• Schedules range from standard 40 hours over a five day work week while others may be condensed.
• These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.