F-Info Sys Sec Manager Orlando, FL

Basic Qualifications

• Previous leadership experience
• Secret Clearance with the ability to obtain and maintain program access
• IAM Level III Certification (CISM, CISSP, or GSLC)
• Previous ISSM Experience
• Proven knowledge of the DCSA Assessment and Authorization Process Manual (DAAPM), Joint Special Access Program Implementation Guide (JSIG), or Risk Management Framework (RMF)
• Experience in the development of cybersecurity policies, processes, and procedures
• Excellent written and verbal communication skills, with the ability to effectively interface with numerous cognizant security agencies, customers, and senior leadership
• Demonstratable experience with standard cybersecurity and network environment tools and applications, including: SIEM, ESS, DLP, IAM, Vulnerability Scanning, etc.

L9375:
Classified Cyber Security Mgr

This Information System Security Manager (ISSM) position will lead the Classified Cyber Security Team in developing, maintaining and overseeing the cybersecurity of assigned F‑35 systems at Orlando, FL.

Typical responsibilities of the ISSM include:

• Developing all applicable cybersecurity policy, plans and procedures
• Ensuring required cybersecurity controls are implemented and validated, including continuous monitoring actions for assigned systems
• Monitoring and recognizing non‑compliance, suspicious and anomalous activity (e.g., threats) and effectively reporting such activity and associated risks to the appropriate parties
• Ensuring plans of actions and milestones or remediation plans are in place for vulnerabilities identified during monitoring activity, audits, inspections and implementing or overseeing required corrective actions
• Overseeing role‑based cybersecurity training for assigned users
• Creating, collecting and retaining data to meet reporting requirements
• Overseeing the monitoring and correlation of data (e.g., logs, events, activity, etc.) from a variety of sources (e.g., Splunk, ELA, ePO, ESS, ACAS, etc.) to identify and mitigate threats, vulnerabilities and noncompliance
• Investigating, analyzing and responding to cyber events, incidents and non‑compliance, including trend analysis, assembling detailed written reports and briefing the appropriate parties

The candidate must have a thorough understanding of the US Government system accreditation process under Risk Management Framework (RMF). The candidate will be expected to participate in tasks that include, but are not limited to, leading the development and implementation of government‑approved information security procedures and plans (multiple networked systems); coordinating with government agencies for approvals; consulting on the design, development, integration, and analysis of classified computing systems;

leading self‑inspection reviews and comprehensive investigation of computer security incidents; collaborating with other organizations, including Program Security, Engineering, Program Management, and others when necessary.

Assigned systems may vary in classification, capabilities and complexity. Mission requirements may require other than first‑shift work and additional responsibilities as assigned.

MUST BE A US CITIZEN – this position is located at a facility that requires special access.

• Proven expertise in Dev/Sec/Ops concepts and processes, with the ability to apply them in real‑world scenarios, including expertise in Splunk (writing queries, creating dashboards, implementing third‑party apps such as Qmulos Products); experience with network design processes, understanding security objectives, operational objectives, risk mitigation strategies for information systems
• DoD 8140/8570 IAT/M or IASAE Level‑III Certification, such as CCSP, CISSP‑ISSAP, CISSP‑ISSEP
• Demonstrable experience working with complex operating systems and networks, including cloud environments, cross‑domain solutions, NSA Type 1/Commercial Solutions for Classified (CSfC) encryption solutions
• Demonstrable experience conducting internal and external customer assessments, including identifying areas for improvement, providing recommendations for remediation, developing and implementing corrective action plans

City:
Orlando, FL (Zip 32825)

Work schedule:

4 × 10 hour day, 3 days off per week

Shift: First

On‑site full‑time (no telecommuting)

Secret with Investigation or CV date within 5 years; requires US Citizen.

Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics.

The application window will close in 90 days; applicants are encouraged to apply within 5–30 days of the requisition posting date in order to receive optimal consideration.