Information Technology Auditor, Mid-Level

Lockheed Martin•Fort Worth, CA

2d•Remote

About The Position

Corporate Internal Audit – Business Leadership Program – Information Technology Auditor, Mid-Level LM Corporate Internal Audit organization conducts risk‑based Information Technology (IT) and cybersecurity audits across Lockheed Martin, helping our business improve its IT health and resilience. We add value by performing risk‑based audits that enhance Lockheed Martin’s IT health across all domains – Artificial Intelligence (AI) / Machine Language (ML), emergent technologies, IT operations, logical security, application and database security, system development, and IT program management. We proactively identify and report IT risks, exposures, control gaps, and key performance indicators across LM’s Business Areas and Enterprise Operations, providing actionable recommendations to senior leadership. Key Success Factors: Proficiency in IT and cybersecurity, combined with strong analytical skills to convert findings into meaningful business intelligence. Systems‑thinking mindset; able to understand and communicate risk in business‑friendly language to stakeholders at all levels. Flexibility and business acumen to understand appropriate application of processes and controls, tuned to the client’s environment and risks. The hired professional will join the two‑year Business Leadership Program (BLP), a rotational early to mid-level career development program that provides broad exposure to LM businesses, formal training, and a capstone project that addresses a senior‑executive issue. Participants are expected to transition to a permanent LM role after the program. Learn more about LM Corporate Internal Audit and the BLP Program at https://tiny.lmco.com/78562 This role is virtual, reporting to LM Corporate Headquarters. The salary for this position will be adjusted to reflect the salary band for the geographic location of the selected employee. This position requires approximately 20% travel. Reasonable proximity to an airport is required to facilitate travel.

Requirements

Experience: A minimum of 5 years’ progressive experience in IT systems administration, system development, or system integration, or 3 years with a relevant master’s degree, or an equivalent combination of education and experience.
Education: Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, Artificial Intelligence, or related field (or equivalent experience); or a Master’s degree in a related field with 3+ years of experience.
Strong written and verbal communication skills, with the ability to clearly articulate business problems, including complex or sensitive issues at multiple levels from tactical employee through executive leadership.
Skilled in building collaborative relationships with business leaders and key technical personnel.
Adept at assessing technical workflows, identifying business implications, and recommending targeted, risk-prioritized improvements.
Demonstrated business acumen and a track record of influencing cross‑functional teams
Ability to align audit work with corporate strategies and proactively propose innovative audit scopes and approaches.

Nice To Haves

Operating System Controls (e.g., Red Hat, Ubuntu, Windows, UNIX, ESXi, Kubernetes): Experience with assessing OS security configurations, patch management, and compliance with corporate security policies and Corporate Information Security Blueprints.
Network Controls (Switches, Routers, Firewalls): Ability to assess network device hardening, segmentation, and firewall rule sets to ensure compliance with security standards.
Application and Database Security: Experience with IT and cyber security evaluation of business applications and databases, including the review of application and database design / architectures, management procedures, and security controls to corporate security policies and regulations.
AI/ML Governance: Experienced in evaluating ethical AI frameworks, managing model risk, ensuring data protection, and mitigating algorithmic bias.
Disaster Recovery (DR) and Business Continuity (BC): Experience assessing DR/BC planning plans, testing processes, and alignment with enterprise resiliency standards.
IT Physical and Environmental Security: Skilled in evaluating data center, server room, and lab access controls, facility construction, power redundancy, fire suppression, temperature and humidity monitoring, and ensuring compliance with relevant standards.
Experience with Lockheed Martin IT monitoring and analytics platforms, such as Attack Surface Monitoring & Reduction (ASMR), PassM, Splunk, Spectrum, and related tools.
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), or Global Information Assurance Certification (GIAC) Security Leadership (GSLC)
Certified Ethical Hacker (CEH), CompTIA Cybersecurity Analyst (CySA+/CSA+), or GIAC Systems and Network Auditor (GSNA)
Certified Internal Auditor (CIA)
AI/ML‑related credentials (e.g., Microsoft AI‑900, Coursera/edX AI specialization)