Lockheed Martin - Huntsville, AL
posted 16 days ago
About the position
Become a part of something IMPACT-ful! Ground Missile Defense (GMD) is the heart of the Missile Defense System and a key element of our nation's defense against ballistic missile attacks. The GMD Weapon System (GWS) processes data from multiple sensors to identify and characterize the inbound ballistic missile threat, plans the best defensive solution, and launches the intercepting missiles to negate the threat. This role is for an ENG03 Cyber Systems Engineer to support the Ground Support Systems (GSS) product team on the Ground-Based Midcourse Defense (GMD) Weapon System (GWS) program. In this role, the candidate will perform Systems Engineering functions with an emphasis in program protection and security (PP&S) and Cyber risk management framework (RMF) analysis, plan development, and implementation. The individual fulfilling this role will work closely with the Program's PP&S / Cyber team to ensure GSS specific considerations are detailed planned and executed in accordance with (IAW) the requirements and timeline. The candidate will be tasked to support the GWS cyber working group and responsible for ensuring GSS inputs and outputs are captured, communicated, implemented, and completed within standard and on schedule. The candidate will work directly with SW development teams to ensure proper implementation and verification of Application Security and Development (ASD) STIGs and General-Purpose Operating System (GPOS) STIGs. Responsibilities include supporting accreditation activities, vulnerability assessments and RMF alignment analysis.
Responsibilities
- Perform Systems Engineering functions with an emphasis in program protection and security (PP&S) and Cyber risk management framework (RMF) analysis.
- Develop and implement plans in accordance with requirements and timeline.
- Support the GWS cyber working group.
- Ensure GSS inputs and outputs are captured, communicated, implemented, and completed within standard and on schedule.
- Work directly with SW development teams to ensure proper implementation and verification of Application Security and Development (ASD) STIGs and General-Purpose Operating System (GPOS) STIGs.
- Support accreditation activities, vulnerability assessments and RMF alignment analysis.
Requirements
- Bachelor's degree in a STEM related field along with 5 years relevant engineering experience.
- Recent GWS program experience.
- Familiarity with National Industrial Security Program Operating Manual (NISPOM) standards.
- Direct risk management framework (RMF) requirements exposure.
- Plan of action and milestone (POAM) development and implementation knowledge.
- Vulnerability analysis and mitigation experience.
- Experience working in an Agile environment.
- Working experience with Linux, preferably Red Hat.
- Experience with or a working understanding of Static/Dynamic Code Analysis.
- Working experience with System Auditing (Linux).
- Understanding of Automation and Containers.
- SIEM, IDS and IPS Understanding.
- Security+ Certification.
- Active Secret clearance. U.S. Citizenship required.
Nice-to-haves
- Management Framework experience.
- Current CISSP or equivalent.
- Experience reviewing Security Technical Implementation Guides (STIGs) and/or utilizing the DISA STIG Viewer/Explorer.
- Knowledge of system audits, vulnerability scanning, and RMF package development.
- Experience with User-based analytics.
- Exposure to Jira/Confluence.
- Red Hat Linux (RHEL) experience.
- Kubernetes familiarity.
- Understanding of and ability to read code in C++, Python or Java.
- Familiarity with Enterprise Mission Assurance Support Service (EMASS).
- Familiarity with Assured Compliance Assessment Solution (ACAS).
- Familiarity with Coverity - Code Analysis tool.
- Possess verbal and written skills to effectively communicate with program personnel.
Benefits
- Flexible schedules.
- Competitive pay.
- Comprehensive benefits package.
