Lockheed Martin
Information System Security Manager (ISSM)
Lockheed Martin, Colorado Springs, Colorado, United States, 80509
Overview
Lockheed Martin is a cybersecurity pioneer, partner, innovator and builder. Our employees use their unique skills and experiences to create, design and build solutions to challenging engineering problems. We seek individuals who think big, perform with excellence, and build incredible products. At Lockheed Martin Rotary and Mission Systems (RMS), we apply the highest standards of ethics and visionary thinking to enable our people to achieve great things. This role supports multiple DoD programs in a Colorado Springs, CO location and leads a team of 18 Information System Security Officers (ISSO) within the RMS classified cybersecurity group.
The selected candidate will guide the ISSO team to ensure compliance through mandatory information system security tasks on assigned information systems, utilizing guidance publications such as NISPOM, DoD 8500 series, NIST, CNSSI, and DAAPM in support of development and operations.
Responsibilities
Oversee and direct day-to-day information system security operations, providing expert guidance on all technical security matters as the ISSM.
Attract, retain, and develop top cyber talent to ensure a skilled and effective classified cyber security team.
Coordinate and manage interactions with government authorization authorities to maintain 100% active authorization status of all Authorization to Operate (ATO).
Develop and implement government-approved information security procedures and system security plans for operation of networked and standalone classified computer systems.
Communicate, implement, and manage a formal Information Security / Information Systems Security Program with the Facility Security Officer (FSO) and Program Management.
Oversee and conduct risk assessments on cybersecurity architecture and investigate computer security incidents, collaborating with outside agencies as required.
Ensure configuration management for security-relevant software, hardware, firmware, and system documentation.
Assist in security IS education and training and in investigations of security violations/incidents.
Manage workload and project expectations in a high-paced, evolving security environment with potential unpredictable hours.
Basic Qualifications
Top Secret Security Clearance is required
DoD 8570/8140 IAM Level II certification (e.g., CISSP, CISM)
Ability to motivate, influence and performance manage personnel with classified cyber security skills
Demonstrable SME level experience with authorization package submission tools (eMASS, XACTA) leading to ATO
Ability to analyze policies and procedures to resolve discrepancies
Experience driving the RMF process with government authorities (e.g., DCSA) for approvals and conducting risk/vulnerability assessments aligned with DAAPM and NISPOM
Ability to translate cybersecurity objectives and program requirements to business outcomes with effective communication and stakeholder relationships
Desired Skills
Experience with industry-standard IA tools to achieve DCSA authorization (e.g., vulnerability scanning tools like Tenable, endpoint protection like Trellix, SIEM/auditing tools like Splunk)
Experience with Agile and DevSecOps concepts and tools (e.g., JIRA, Confluence, Docker, Ansible, Git)
Familiarity with NISPOM and DAAPM
Familiarity with JSIG, CNSSI 1253, NIST RMF (SP 800-37) and NIST SP 800-53 controls
Bachelor’s degree in a related discipline with 12 years of professional experience; or 10 years with a related Master’s degree
Security Clearance Statement This position requires a government security clearance; you must be a US Citizen for consideration. Clearance Level: Top Secret
Other Information Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other opportunities with matching skills and requirements. Onsite full-time work at a Lockheed Martin facility. Lockheed Martin offers flexible work schedules, comprehensive benefits, and inclusive, responsible employment practices. This position is eligible for an incentive plan.
Experience Level: Experienced Professional | Business Unit: RMS | Relocation Available: Possible | Career Area: Cyber Security | Type: Full-Time | Shift: First
#J-18808-Ljbffr
The selected candidate will guide the ISSO team to ensure compliance through mandatory information system security tasks on assigned information systems, utilizing guidance publications such as NISPOM, DoD 8500 series, NIST, CNSSI, and DAAPM in support of development and operations.
Responsibilities
Oversee and direct day-to-day information system security operations, providing expert guidance on all technical security matters as the ISSM.
Attract, retain, and develop top cyber talent to ensure a skilled and effective classified cyber security team.
Coordinate and manage interactions with government authorization authorities to maintain 100% active authorization status of all Authorization to Operate (ATO).
Develop and implement government-approved information security procedures and system security plans for operation of networked and standalone classified computer systems.
Communicate, implement, and manage a formal Information Security / Information Systems Security Program with the Facility Security Officer (FSO) and Program Management.
Oversee and conduct risk assessments on cybersecurity architecture and investigate computer security incidents, collaborating with outside agencies as required.
Ensure configuration management for security-relevant software, hardware, firmware, and system documentation.
Assist in security IS education and training and in investigations of security violations/incidents.
Manage workload and project expectations in a high-paced, evolving security environment with potential unpredictable hours.
Basic Qualifications
Top Secret Security Clearance is required
DoD 8570/8140 IAM Level II certification (e.g., CISSP, CISM)
Ability to motivate, influence and performance manage personnel with classified cyber security skills
Demonstrable SME level experience with authorization package submission tools (eMASS, XACTA) leading to ATO
Ability to analyze policies and procedures to resolve discrepancies
Experience driving the RMF process with government authorities (e.g., DCSA) for approvals and conducting risk/vulnerability assessments aligned with DAAPM and NISPOM
Ability to translate cybersecurity objectives and program requirements to business outcomes with effective communication and stakeholder relationships
Desired Skills
Experience with industry-standard IA tools to achieve DCSA authorization (e.g., vulnerability scanning tools like Tenable, endpoint protection like Trellix, SIEM/auditing tools like Splunk)
Experience with Agile and DevSecOps concepts and tools (e.g., JIRA, Confluence, Docker, Ansible, Git)
Familiarity with NISPOM and DAAPM
Familiarity with JSIG, CNSSI 1253, NIST RMF (SP 800-37) and NIST SP 800-53 controls
Bachelor’s degree in a related discipline with 12 years of professional experience; or 10 years with a related Master’s degree
Security Clearance Statement This position requires a government security clearance; you must be a US Citizen for consideration. Clearance Level: Top Secret
Other Information Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other opportunities with matching skills and requirements. Onsite full-time work at a Lockheed Martin facility. Lockheed Martin offers flexible work schedules, comprehensive benefits, and inclusive, responsible employment practices. This position is eligible for an incentive plan.
Experience Level: Experienced Professional | Business Unit: RMS | Relocation Available: Possible | Career Area: Cyber Security | Type: Full-Time | Shift: First
#J-18808-Ljbffr