Cyber Systems Security Engineer - Level 4

Cyber Systems Security Engineer - Level 4

Lockheed Martin Aeronautics. Be More Than You Can Imagine. At Lockheed Martin Aeronautics, we're taking innovation to the next level. From designing the most advanced air vehicle to designing aircraft that defies gravity, our engineers live on the cutting edge of technology. Never have the opportunities for a technical career been so limitless. The Cyber System Security Engineer candidate is responsible for ensuring that cyber security requirements are properly defined, decomposed, allocated, implemented, and assessed to produce a cyber-resilient security design solution for the target platform (Air System or Weapon System). This includes participating in working groups, design reviews, and formal artifact reviews alongside other Subject Matter Experts (SMEs) within the overall platform; and providing security expertise to ensure that cyber security is considered early in the product development lifecycle. Applicant is expected to conduct a range of cyber risk analysis and security assessment methods; implement patches and Security Technical Implementation Guides (STIGs) to address cyber vulnerabilities, feature changes, or obsolescence; develop documentation for specific installations and configurations necessary to obtain Authorizations to Operation (ATOs) in support of program schedules; and contribute to and implement Plans of Actions and Milestones (POA&Ms) to mitigate open cyber risks. The ideal candidate will communicate effectively with a range of audiences, technical and non-technical, and will function effectively on an engineering team to create a collaborative environment that allows for the establishment of mission goals, itemized planning of tasks, and prioritization of tasks that drives the efficient execution of objectives. Must be a US Citizen; this position will require a government security clearance. This position is located at a facility that requires special access.

What's In It For You: We offer flexible work schedules to comprehensive benefits investing in your future and security. Do you want to be part of a company culture that empowers employees to think big, lead with a growth mindset, and make the impossible a reality? We provide the resources and give you the flexibility to enable inspiration and focus. If you have the passion and courage to dream big, work hard, and have fun doing what you love then we want to build a better tomorrow with you.

Desired skills:

B.S. degree in a technical discipline such as Computer Science, Computer Engineering, Electrical Engineering, Computer Security, or Information Technology – or equivalent applied experience Experience utilizing Joint Special Access Program (SAP) Implementation Guide (JSIG), Committee on National Security Systems Instruction (CNSSI) 1253, and NIST SP 800-37 Risk Management Framework (RMF) to design and harden information systems commensurate with customer needs Ownership of, or ability to acquire and maintain, a CAC Card is strongly desired Experienced with ACAS software (Nessus and Tenable.SC) Ability to troubleshoot ACAS software (Nessus and Tenable.SC) Experienced with SCC SCAP tool to conduct compliance assessment Ability to troubleshoot SCC SCAP tool Have knowledge of Group Policy Management STIG experience Work alongside software team to find common ground on STIGs Experience analyzing, decomposing, and allocating security controls into executable security requirements at the system, sub-system and component level Experience with secure software development concepts (e.g. static code analysis, dynamic code analysis, STIG/SRG hardening, etc.) as applied to high-level programming languages (C, C++, Java) Experience with engineering change processes and/or configuration control processes Extensive experience developing and maintaining core security documentation artifacts for A&A Packages including Security Control Traceability Matrix (SCTM), System Security Plan (SSP) and/or Information Assurance Standard Operating Procedures (IA SOP), Plan of Action & Milestones (POA&M), and Risk Assessment Report (RAR) Extensive knowledge of DoD Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs) Background/knowledge working with information systems/environments that utilize the Open Mission Systems (OMS) standard and Universal Command and Control Standards Initiative (UCI) message set Expertise/knowledge in both compliance testing and penetration testing methodologies. Experience with Real-Time Embedded Operating Systems (e.g. GreenHills INEGRITY, LynxOS, VxWorks, Yocto) Experience with Agile project management tools (JIRA, VersionOne, etc.) Experience conducting technical trade studies and assessments Must be willing to mentor junior-level team members Experience with creating and presenting technical information to senior-level executives and customers Demonstrated problem-solving and troubleshooting skills Proficient technical writing skills Strong analytical and organizational skills with excellent communication skills (written and verbal communications) and have the ability to work in a dynamic work environment Experience working in an aerospace design environment with exposure to DoD customers and their accrediting authorities.