Lockheed Martin
Cybersecurity Engineer Staff
Lockheed Martin, Denver, Colorado, United States,
Description:What We’re DoingOur Team, the Command and Control, Battle Management and Communications (C2BMC) Global team, is engineering, developing and integrating new capability for the Missile Defense System that currently protects the United States and its allies. The team, as a whole, is very large but is broken down into many smaller agile teams that work together in a fast-paced and dynamic environment. Our team is also responsible for tasks such as Sensor/Weapon Integration, Algorithm Development, User Interface Development, Automated Testing, Cyber Security and enhancing other critical, leading-edge missile defense technologies.
The WorkIn this incredibly important role you will be:
Processing and tracking DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts.Performing assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc and active evaluations such as vulnerability assessments utilizing ACAS.Performing Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS.Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks.Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated.Performing analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards.Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization.Coordinating across the program to address identified deficiencies during RMF assessment activities.
Basic Qualifications:Active Top Secret clearance required to start.IAT Level II/ IAM Level I DoD 8570 certification (Sec+ CE or similar).Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS).Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment.Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g. Fortify).
Desired Skills:Windows and Red Hat Enterprise Linux (RHEL) system administration skills.Previous background working in a virtual environment.Previous background working with dockers and containers.Administer ACAS and ESS (formally HBSS).Previous experience with ConfigOS.
Security Clearance Statement:
This position requires a government security clearance; you must be a US Citizen for consideration.Clearance Level:
Top SecretOther Important Information You Should Know:Expression of Interest:
By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match.Ability to Work Remotely:
Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility.Work Schedules:
Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed.Pay Rate:The annual base salary range for this position in California and New York (excluding most major metropolitan areas), Colorado, Hawaii, Maryland, Washington or Washington DC is $105,000 - $201,100.Benefits offered:
Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays.Experience Level:
Experienced ProfessionalBusiness Unit:
RMSRelocation Available:
PossibleCareer Area:
Cyber Security EngineeringType:
Task Order/IDIQShift:
First#J-18808-Ljbffr
The WorkIn this incredibly important role you will be:
Processing and tracking DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts.Performing assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc and active evaluations such as vulnerability assessments utilizing ACAS.Performing Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS.Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks.Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated.Performing analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards.Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization.Coordinating across the program to address identified deficiencies during RMF assessment activities.
Basic Qualifications:Active Top Secret clearance required to start.IAT Level II/ IAM Level I DoD 8570 certification (Sec+ CE or similar).Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS).Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment.Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g. Fortify).
Desired Skills:Windows and Red Hat Enterprise Linux (RHEL) system administration skills.Previous background working in a virtual environment.Previous background working with dockers and containers.Administer ACAS and ESS (formally HBSS).Previous experience with ConfigOS.
Security Clearance Statement:
This position requires a government security clearance; you must be a US Citizen for consideration.Clearance Level:
Top SecretOther Important Information You Should Know:Expression of Interest:
By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match.Ability to Work Remotely:
Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility.Work Schedules:
Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed.Pay Rate:The annual base salary range for this position in California and New York (excluding most major metropolitan areas), Colorado, Hawaii, Maryland, Washington or Washington DC is $105,000 - $201,100.Benefits offered:
Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays.Experience Level:
Experienced ProfessionalBusiness Unit:
RMSRelocation Available:
PossibleCareer Area:
Cyber Security EngineeringType:
Task Order/IDIQShift:
First#J-18808-Ljbffr