Information Systems Security Risk Analyst

LOCKHEED MARTIN CORPORATION - Sunnyvale, CA (30+ days ago)4.1


  • Champion Cybersecurity in support of state of the art space based technologies
  • Manage program SIPRNET node security and documentation compliance
  • Assist in implementing cyber security programs in accordance with the Risk Management Framework (RMF), which requires System Categorization, Security Control Selection, Implementation, Assessment, Authorization and Continuous Monitoring
  • Develop, assess, and monitor required RMF documentation (SSP, SCTM, RAR, POA&M, IA SOP, etc.), policy, and procedures in accordance with DOD Manual 5207.5, NISPOM, DAAPM, ICD, JSIG and other security directives as required
  • Maintain records of required IS auditing, patching, maintenance, software/hardware changes based on federal regulations and customer compliance requirements
  • Build, configure, and maintain Microsoft Windows systems in compliance with DoD cyber security requirements, (i.e. DISA Security Technical Implementation Guides or STIGs), using SCAP Compliance Checker and DISA STIG Viewer
  • Perform Continuous Monitoring of the Information Security program to ensure that systems are operating as authorized and that conditions have not changed. Ensure remedial actions are taken for identified findings and vulnerabilities
  • Remain current on Information Assurance (IA) regulations and contract security requirements
Desired Skills: - Familiar with NISPOM requirements for system hardening, and the ODAA certification & accreditation processes
  • Experience managing a SIPRNET system
  • Understanding of Risk Management Framework methodologies and System Security Plan Development
  • System Administration experience
  • Experience collaborating on technical projects
  • Experience with information systems Incident Response Teams
  • Experience with auditing of large network environments with multiple operating systems
  • Excellent organizational skills
  • Works well independently and in group settings
  • Professional presentations skills and written communication
BASIC QUALIFICATIONS:
  • Experience in Computer Engineering, System Administration, or Information Assurance
  • Familiar with methods to apply system security settings to domains and standalone workstations
  • Solid technical familiarization with at least one major OS (Windows, LINUX, UNIX)
  • Hold or capable of obtaining within 6 months a certification as directed in DoD Directive 8570.01M (e.g. Security+, CISSP)
  • Willingness to work flexible hours when required
  • Must hold a DoD SECRET or higher government security clearance
Lockheed Martin is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
As a leading technology innovation company, Lockheed Martin’s vast team works with partners around the world to bring proven performance to our customers’ toughest challenges. Lockheed Martin has employees based in many states throughout the U.S., and Internationally, with business locations in many nations and territories.

Join us at Lockheed Martin, where we’re engineering a better tomorrow.