F-35 Information System Security Manager (ISSM) - ANG

Lockheed Martin is a Cyber Security pioneer, partner, innovator and builder. Our amazing employees are on a mission to make a difference in the world and every single day we use our unique skills and experiences to create, design and build solutions to some of the worlds’ hardest engineering problems.

Do you want to be part of a culture that encourages employees to think big, perform with excellence and build incredible products? We provide the resources, inspiration and focus - if you have the passion and courage to dream big, then we want to build a better tomorrow with you.

At Lockheed Martin Rotary and Mission Systems, we are driven by innovation and integrity. We believe that by applying the highest standards of business ethics and visionary thinking, everything is within our reach – and yours as a Lockheed Martin employee. Lockheed Martin values your skills, training and education. Come and experience your future!

The Information System Security Manager (ISSM) is responsible for the F-35 cybersecurity program at multiple ANG locations, to include:

• Burlington ANGB, VT
• Dannelly Field ANGB, AL
• Truax Field ANGB, WI
  
  

The selected candidate will operate from an existing F-35 site, to include but not limited to the above locations.

Responsibilities

The ISSM leads the Information System Security Officer(s) (ISSO) in developing, maintaining and overseeing the cybersecurity of assigned F-35 systems. Typical responsibilities of the ISSM include:

• Developing and maintaining the site’s F-35 cybersecurity program for assigned systems.
• Leading and managing assigned ISSO(s) in successful execution of the site’s F-35 cybersecurity program, to include assuming responsibilities of the ISSO(s) in their absence.
• Ensuring all applicable cybersecurity policy, plans and procedures are followed.
• Ensuring required cybersecurity controls are implemented and validated, to include continuous monitoring actions for assigned systems.
• Developing and maintaining cybersecurity related plans, procedures and guidance.
• Monitoring and recognizing non-compliance, suspicious and anomalous activity (i.e., threats), and effectively reporting such activity and associated risks to the appropriate parties.
• Ensuring plans of actions and milestones or remediation plans are in place for vulnerabilities identified during monitoring activity, audits, inspections, etc. and implementing, or overseeing, required corrective actions.
• Conducting role-based cybersecurity training for assigned users.
• Creating, collecting and retaining data to meet reporting requirements.
• Monitoring and correlating data (e.g., logs, events, activity, etc.) from a variety of sources (e.g., Splunk, ELA, ePO, ESS, ACAS, etc.) to identify and mitigate threats, vulnerabilities and non-compliance.
• Investigating, analyzing and responding to cyber events, incidents and non-compliance, to include trend analysis, assembling detailed written reports and briefing the appropriate parties.
• Assigned systems may vary in classification, capabilities and complexity. Mission requirements may require other than first-shift work and additional responsibilities as assigned.