Mid-Career Cybersecurity Technologist

Description: WHAT WE’RE DOING

Are you passionate about cybersecurity, automation, and risk governance? Lockheed Martin recognizes the challenges we face today and the need to embrace the convergence of these disciplines to transform ourselves for tomorrow. This transformation will enable Lockheed Martin to provide more autonomous and continuous cyber support for our classified environments. The Rotary and Mission Systems (RMS) Classified Cyber Security organization is seeking a Classified Cyber Security professional to deliver automated, sustainable, and consistent cyber products and services for the RMS Business Area, that enable the delivery of 21st-century security services to our classified programs.

The Work

The selected individual will serve as a Classified Cyber Security Technologist Sr. In this role, the selected individual will collaborate with a team of cybersecurity professionals and work closely with the Information System Security Manager(s) to implement and monitor comprehensive cybersecurity solutions. This will involve identifying, designing, securing, and deploying specialized applications and tools that support the governance and risk management of classified systems, infrastructure, and tools, ensuring the confidentiality, integrity, and availability of classified assets.

The selected candidate will also help design and document advanced risk governance operations to implement proactive security methodologies for classified programs. This position requires an understanding of development and security controls, as well as a mindset focused on automation-enabled cybersecurity for day-to-day activities.

Key Responsibilities

• Minimum of 3+ years of related experience in cybersecurity
• Plan, implement, test, and monitor classified cybersecurity measures to ensure the security and integrity of our systems.
• Assess and mitigate classified system security threats and risks throughout the program life cycle.
• Coordinate activities with the Information System Security Manager (ISSM) to ensure systems are secure and technically ready for inspection.
• Validate system security requirements and establish technical system security documentation.
• Assist with the implementation of security procedures and verify system security requirements.

Technical Requirements

• Be well-versed in information system security architectural documentation standards.
• Apply information assurance and cybersecurity standards, directives, guidance, and policies to an architectural/risk-based framework.
• Understand and implement relevant frameworks, such as NIST, ISO, or other industry-recognized standards.
• Provide a structured approach to information system security, ensuring that all aspects of the system are properly secured and aligned with organizational and regulatory requirements.

Compliance and Regulatory Requirements

• Ensure compliance with governing documents and security policies.
• Assist in regulatory periodic assessments to ensure adherence to government regulations and information assurance/cybersecurity guidelines.
• Provide recommendations for secure implementation and compliance.
• Support the development of information system security documents and reports to regulatory agencies.

Please Note

• This position requires a government security clearance; you must be a US Citizen for consideration.
• This position is full-time onsite at Deer Creek Facility in Littleton, CO.

Basic Qualifications

• Final Secret clearance
• Ability to obtain and maintain TS clearance
• Demonstratable experience with standard cybersecurity and network environment tools and applications, including: SIEM, ESS, DLP, IAM, Vulnerability Scanning, etc.
• Proven experience in executing security hardening on Windows and RHEL operating systems, utilizing approved DISA STIGs and SRGs, and implementing NIST SP 800-53 security controls to ensure compliance with industry standards.
• Proven knowledge of the DCSA Assessment and Authorization Process Manual (DAAPM), Joint Special Access Program Implementation Guide (JSIG), or Risk Management Framework (RMF).
• DoD 8140/8570 IAT/M or IASAE Level-II Certification, such as: CASP CE, CISSP, CISSP Associate, or CSSLP.

Desired Skills

• Proven expertise in Dev/Sec/Ops concepts and processes, with the ability to apply them in real-world scenarios, including:
• Expertise in Splunk, including:
  Writing queries, Creating dashboards, Implementing third-party apps (e.g., Qmulos Products)
• Experience with network design processes, including:
  Understanding security objectives, Operational objectives, Risk mitigation strategies for information systems
• Demonstratable experience working with complex operating systems and networks, including:
• Data centers
• Cloud environments
• Cross-domain solutions
• NSA Type 1/Commercial Solutions for Classified (CSfC) encryption solutions
• Demonstratable experience conducting internal and external customer assessments, including:
• Identifying areas for improvement
• Providing recommendations for remediation
• Developing and implementing corrective action plans
• Proven…