Job ID: 637288BR
Date posted: May. 01, 2023

Locations: Moorestown, New Jersey

Description:At Lockheed Martin Rotary and Mission Systems (RMS), we are driven by innovation and integrity. We believe that by applying the highest standards of business ethics and visionary thinking, everything is within our reach - and yours as a Lockheed Martin employee. Lockheed Martin values your skills, training, and education. Come and experience your future! We value your unique skills and expertise, and we aim to give back continuously by offering a wide variety of benefits and amenities to help our employees live flexible, healthy, and fulfilling lives at and outside of work. Some of our favorite perks include:

• The promotion of Work Life Balance with every Friday off (Flex 4/10 Schedule), or every other Friday off (Flex 9/80), or a straight 5/8 schedule.
• A competitive 401k match and bonus.
• Comprehensive Benefits including Medical/Dental/Life Insurance.
• A receptive and inclusive culture passionate about career development with tuition assistance and mentoring opportunities.

This position is for a Cyber Security Engineer at our Moorestown, NJ location. This position will support multiple programs in the Integrated Warfare Systems & Sensors (IWSS) Line of Business (LOB). The successful candidate will be responsible for applying an interdisciplinary, collaborative approach to plan, design, develop, validate and verify Cyber solutions across the lifecycle. Conduct cyber risk assessment activities including threat modeling, vulnerability analysis and analysis of mitigation solutions. Coordinates and addresses Supply Chain risk management concerns. Develop, evaluate and analyze design constrains, trade-offs and detailed system and security design as they pertain to the Cyber domain. Coordinate with Cyber and system architects and developers to provide oversight in the development of solutions. Conduct cybersecurity test and evaluation of hardware and/or software designs to verify and validate compliance with defined specifications and requirements. Employs cybersecurity processes, methods, techniques and tools and assure their consistent application. Implements appropriate Assessment and Authorization activities as required by customers

Specific technical responsibilities include:

• Evaluating Linux and Windows computing platform devices, network designs and devices for cyber security vulnerabilities.
• Assesses and drive mitigation efforts of system security threats/risks throughout the program life cycle.
• Validates system security requirements definition and supports secure systems operations and maintenance.
• Implementation of security policies to meet Risk Management Framework (RMF) objectives including monthly operating system (OS) and software patches and quarterly reviews of Security Technical Implementation Guidelines (STIG).
• Significant interaction with other technicians, analysts, and engineers to implement security designs, resolving vulnerabilities, modifying system or software components security settings and mitigating risk.

Detailed documentation responsibilities include:

• Develop and/or support DIACAP/RMF eMASS accreditation packages for site and program systems.
• Identify, document, and maintain test results for DoD 8500.01 DIACAP/DoD 8510.01 RMF IA Controls (IACs)
• Complete and/or support all required eMASS documentation including SIP, Implementation Plan, IAC Inheritance, Risk Assessment Report (RAR), PPSM Registration (if required) and POA&M.
• Complete and/or support development of Contingency Plan, Incident Response, Configuration Management, and all other site plan testing activities.
• Research and coordinate the implementation of vulnerability remediation (identified via ACAS and STIG/SCAP assessments) with subject matter experts, document and update POA&M and generate required reports and artifacts, as required.

Basic Qualifications:

• Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education, with 2 years of professional experience; or no experience required with a related Masters degree.
• Expertise in securing at least one of the following: Linux, Windows, or Cisco.
• Ability to analyze security scan reports and develop/implement a plan to mitigate security vulnerabilities.
• Ability to obtain and maintain DoD Security Clearance
• DOD 8570 IAT II Certification (i.e. Security+)

Desired Skills:

• Experience assessing information systems of varying complexity in accordance with DISA STIG requirements.
• Experience with vulnerability analysis using cyber security tools (e.g., ACAS, Nessus, SCAP, SCC, eMass, STIG Viewer).
• Scripting experience (e.g. Python, Bash, Perl, Powershell).
• Experience with Endpoint Security Solutions (ESS) deployment and management
• Experience with Splunk, network security, and system security supporting event management tools, including SIEMs
• Maintains Security relevant certifications such as: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Administrator (CISA), Security+
• Experience with Cyber Threat Analysis
• Willingness and eagerness to continuously keep up with the latest tools and technologies in cloud security
• Strongly written and verbal communication skills
• Knowledge of RMF Controls.
• Have an understanding of NISPOM/DISA security requirements and know how to implement required security settings.
• Experience with Model Based Engineering, Agile methodologies, Automation techniques, or DevSecOps concepts

Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration.
Clearance Level: Secret
Other Important Information You Should Know
Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings.
Ability to Work Remotely: Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility.
Work Schedules: Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.
Schedule for this Position: 4x10 hour day, 3 days off per week
Lockheed Martin is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work.

With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility.

If this sounds like a culture you connect with, you're invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications.
Experience Level: Experienced Professional
Business Unit: RMS
Relocation Available: No
Career Area: Cyber Security
Type: Full-Time
Shift: First