Classified Cybersecurity Stf / Lvl 4 / ISSM / Orlando, FL
Job highlights
Qualifications
- The candidate must have a working knowledge of the Risk Management Framework (RMF)
- Secret Clearance required with the ability to obtain a Top Secret Clearance
- Experience with IS auditing and investigations
- Knowledgeable of operating system security requirements
- Hands on experience with industry standard Information Assurance tools
- Experience with developing, reviewing and maintaining RMF artifacts
- Sec+ or equivalent DoD Directive 8570 / 8140 Information Assurance Management Level II
- Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration
- Clearance Level: Top Secret with Investigation or CV date within 5 years
- Experience Level: Experienced Professional
- Business Unit: MISSILES AND FIRE CONTROL
Benefits
- Schedules range from standard 40 hours over a five day work week while others may be condensed
- These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits
- Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work
- Relocation Available: Possible
Responsibilities
- Oversee day-to-day information system security operations including assisting the ISSM on all technical security matters
- Carry out technical administration of IS in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF)
- Participating in auditing and continuous monitoring of the IS
- Review and oversee RMF Package authorizations
- Upkeep, monitor, analyze, and respond to security events
- Document compliance actions within the approved automated compliance tracking system or develop a plan of actions and milestones (POA&M)
- Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices
- Ensure configuration management (CM) for security-relevant IS software, hardware, firmware, and system documentation
- Ensure all information systems lifecycle management documentation are maintained
- Evaluate proposed changes or additions to the information system, and advise the ISSM of their security relevance
- Assist and conduct security IS education and training
- Participate in internal/external security audits/inspections; performs risk assessments
- Assist in conducting investigations of computer security violations and incidents
- Ensure proper protection and corrective measures are taken when an incident or vulnerability has been discovered
- Implement and enforce Information Security Policies and Procedures together with ISSM and CPSO
Job description
Description:Lockheed Martin’s Missiles and Fire Control (MFC) business is seeking a Classified Cyber Security Staff to join the Classified Cyber Security Special Programs team in Orlando, FL. The candidate must have a working knowledge of the Risk Management Framework (RMF).
What You Will Be Doing
Responsibilities include, but are not limited to:
• Oversee day-to-day information system security operations including assisting the ISSM on all technical security matters.
• Carry out technical administration of IS in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF).
• Participating in auditing and continuous monitoring of the IS.
• Review and oversee RMF Package authorizations.
• Upkeep, monitor, analyze, and respond to security events.
• Document compliance actions within the approved automated compliance tracking system or develop a plan of actions and milestones (POA&M).
• Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices.
• Ensure configuration management (CM) for security-relevant IS software, hardware, firmware, and system documentation.
• Ensure all information systems lifecycle management documentation are maintained.
• Evaluate proposed changes or additions to the information system, and advise the ISSM of their security relevance.
• Assist and conduct security IS education and training.
• Participate in internal/external security audits/inspections; performs risk assessments.
• Assist in conducting investigations of computer security violations and incidents.
• Ensure proper protection and corrective measures are taken when an incident or vulnerability has been discovered.
• Implement and enforce Information Security Policies and Procedures together with ISSM and CPSO.
Why Join Us
We offer flexible work schedules to comprehensive benefits investing in your future and security, Learn more about Lockheed Martin’s comprehensive benefits package here.
This position is in Orlando. Discover more about our Orlando, Florida location.
#mfccyberhotjobs
Basic Qualifications:
• Secret Clearance required with the ability to obtain a Top Secret Clearance
• Experience with IS auditing and investigations
• Knowledgeable of operating system security requirements
• Hands on experience with industry standard Information Assurance tools
• Experience with developing, reviewing and maintaining RMF artifacts
• Sec+ or equivalent DoD Directive 8570 / 8140 Information Assurance Management Level II.
Desired Skills:
• DoD Directive 8570 / 8140 Information Assurance Management Level III.
• Currently working in environment supporting IC customers
• Proved ability to obtain and maintain system ATOs
• Hands-on experience with ICD 503/JSIG and DAAPAM
• Experience implementing new and complex technologies at multiple classification levels within large environments and at an Enterprise level
• Bachelor’s degree from an accredited college in a related discipline, or equivalent experience/combined education, with 9 years of professional experience; or 7 years of professional experience with a related Master’s degree
Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration.
Clearance Level: Top Secret with Investigation or CV date within 5 years
Other Important Information You Should Know
Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings.
Ability to Work Remotely: Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility.
Work Schedules: Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.
Schedule for this Position: 4×10 hour day, 3 days off per week
Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics.
The application window will close in 90 days; applicants are encouraged to apply within 5 – 30 days of the requisition posting date in order to receive optimal consideration.
At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world’s most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work.
With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility.
If this sounds like a culture you connect with, you’re invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications.
Experience Level: Experienced Professional
Business Unit: MISSILES AND FIRE CONTROL
Relocation Available: Possible
Career Area: Cyber Security
Type: Full-Time
Shift: First
IT Cyber Security Analyst REMOTE
Job highlights
Qualifications
- 5+ years managing small teams in an IT environment
- Experience remediating and patching server OS and software security vulnerabilities in an enterprise environment
- Experience utilizing VA systems and software to track, update and remediate vulnerabilities
- Experience using System Center Configuration Manager (SCCM)/Microsoft Endpoint Configuration Manager (MEMCM)
- Experience analyzing baseline security reports
- Experience with Active Directory
- Proficient with Microsoft Excel
- Bachelor’s degree in computer science, Electronics Engineering, or other engineering or technical discipline is required and 10 years of experience or a total of 8 years of IT experience in lieu of education
- Experience with providing desktop or server remediation services in VA environment
- Knowledge of Nessus scanning and IBM BigFix
- Knowledge of PowerShell
- Public Trust
Benefits
- Full Benefit Package to include:
- Paid PTO and sick leave (15 days initially)
- Paid Federal Government Holidays
- 100% Medical premium for employee
- 100% Dental and Vision
- 100% Medical premium for employee
- 100% Dental and Vision
- 100% paid Life, short and long-term disability insurance for employee
- 401(k)
Responsibilities
- As an IT Cyber Security Analyst on the vulnerability remediation server team, you will continuously identify and remediate Windows servers’ security deficiencies on VA’s network infrastructure and install patches to address security deficiencies as well as provide direction to other team members
- Oversee workload, conduct audits, and provide reporting to the leadership team
- Use Nessus, SCCM, IBM BigFix, and SQL reports and product logs to locate servers, and deploy MS patches or other software updates
- Use provided scripts, tools, and vendor products to troubleshoot, resolve issues, and verify resolution
- Will work with on-site VA staff and other contractors to perform audit readiness remediation for OIG and other security-focused audits and provide technical expertise as required by each VA location
- Adhere to standardized system development and change management controls for mission-critical systems
Job description
IT Cyber Security Analyst
Labor Category: Application Analyst, Senior
ISCI is looking for an IT Security Analyst to work on our contract supporting the US Department of Veteran’s Affairs. This position is 100% remote.
As an IT Cyber Security Analyst on the vulnerability remediation server team, you will continuously identify and remediate Windows servers’ security deficiencies on VA’s network infrastructure and install patches to address security deficiencies as well as provide direction to other team members. Oversee workload, conduct audits, and provide reporting to the leadership team. Use Nessus, SCCM, IBM BigFix, and SQL reports and product logs to locate servers, and deploy MS patches or other software updates. Use provided scripts, tools, and vendor products to troubleshoot, resolve issues, and verify resolution. Will work with on-site VA staff and other contractors to perform audit readiness remediation for OIG and other security-focused audits and provide technical expertise as required by each VA location. Adhere to standardized system development and change management controls for mission-critical systems. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.
You have:
• 5+ years managing small teams in an IT environment
• Experience remediating and patching server OS and software security vulnerabilities in an enterprise environment
• Experience utilizing VA systems and software to track, update and remediate vulnerabilities
• Experience using System Center Configuration Manager (SCCM)/Microsoft Endpoint Configuration Manager (MEMCM)
• Experience analyzing baseline security reports
• Experience with Active Directory
• Proficient with Microsoft Excel
• Bachelor’s degree in computer science, Electronics Engineering, or other engineering or technical discipline is required and 10 years of experience or a total of 8 years of IT experience in lieu of education
Nice if you have:
• Experience with providing desktop or server remediation services in VA environment
• Knowledge of Nessus scanning and IBM BigFix
• Knowledge of PowerShell
• Public Trust
Full Benefit Package to include:
• Paid PTO and sick leave (15 days initially)
• Paid Federal Government Holidays
• 100% Medical premium for employee
• 100% Dental and Vision
• 100% Medical premium for employee
• 100% Dental and Vision
• 100% paid Life, short and long-term disability insurance for employee
401(k)
We are an Equal Opportunity Employer:
We do not discriminate in employment opportunities or practices on the basis of race, color, religion, sex, national origin, age, disability, genetic information, veteran status or any other characteristics protected by law.
IT – Cyber Security Analyst
job highlights
Qualifications
- BS in Information Systems or Information Security
- 5 plus years in IT/Information security risk assessment, IT controls security assessor, or cybersec governance and compliance roles
- ISO 27001 Lead Implementor or Auditor certification
- CRISC or other related risk certification
- Demonstrated hands-on experience with Service Now GRC or Service Now TPRM
- Strong understanding of NIST security family, ISO 27001/2, and other relevant security standards
- Problem Solving
- Analytical skills and ability to formulate and articulate roadmaps and recommendations
- Ability to interact with personnel at all levels of an organization to resolve issues and provide solutions in a timely manner
- Ability to maintain a detail-oriented approach while multitasking in a fast-paced environment
- Strong technical, analytical and problem-solving skills
- Experience in successfully working remotely
- Excellent written and oral communication skills
- Experience working with customers in sensitive environments
- Ability to interface with all levels within an organization and provide input to facilitate cybersecurity compliance decisions
- Highly organized, self-motivated and accountable
- Remote position, but preference is for individual to be in Chicagoland area
- All candidates must have valid authorization to work in the U.S
Benefits
- Panasonic prioritizes total wellbeing
- We offer a wide variety of benefits and programs to support your physical, emotional, financial, social, and environmental health
- Competitive compensation package
- Comprehensive benefits
- Pet Insurance
- Paid Parental Care Leave
- Employee Referral Program
- Educational Assistance
- Flexible Work Program
- Volunteer time Off
- Casual Dress Code
- Total Well Being Program
- The wage range of $90,000 – $110,000 is just one component of Panasonic’s total package
- Actual compensation varies depending on the individual’s knowledge, skills, experience, and location
- This role may be eligible for discretionary bonuses and incentives
Responsibilities
- Operate within the Cybersecurity Governance team and support the cybersecurity compliance management strategy
- This role will support development, assessment, and maintenance of policies, standards, processes and procedures, to a level compliant with ISO27001/2, PCI DSS, JSOX, NIST 800-xx, CCPA, GDPR, CMMC and other relevant standards
- The role will work collaboratively with various business and IT teams in the design and implementation of cybersecurity assessment and compliance programs; manage the Information Security Management (ISM) program, manage compliance efforts related to industry standards, support/facilitate audit requests, manage and conduct cybersecurity risk assessments, identify risk themes, manage cybersecurity risk register, and promote cybersecurity awareness and training across the appropriate teams
- Manage and maintain ISMS in support of ISO 27001 program and CMMC requirements
- Manage tactical execution of cybersecurity compliance program
- This includes execution, support, follow up, monitoring and reporting for areas including –
- ISM reports, Privacy Impact Assessment, Personal Information Registration, ISM Audit
- Security Education Training and Awareness (SETA) promotion, delivery and reporting
- Risk Management, Third Party Risk Management, and related GRC activities
- Manage, promote, monitor and report on regional IT Security conformity activities
- Manage compliance and response to parent (Japan) Operating Companies
- Develop and maintain Infosec policies, guidelines and standards in support of Panasonic North America and Global requirements
- Manage and support the data governance program
- Interface with task leaders, subcontractors and support personnel, customers and Panasonic management to drive action and ensure data governance aligned to regulatory standards
- Manage and execute the regional ISM promotional activities, coordinating and following up with regional ISM Managers and reporting to parent companies
- Conduct training activities annually
- Conduct ISM audits for Enterprise IT annually
- Manage ISM incident intake and reporting
- Manage risk register maintenance
- Follow up on outstanding remediation with related stakeholders
- Liaise and support the Internal Audit department, IT departments, external audit firms, and business units in support of regulatory and management audits
- Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes
- Raise concerns to senior management with clearly defined impact statements and recommendations
- Able to scope out projects and manage day to day processes of a program
- Planning and Collaboration
- Support the departmental management activities for cybersecurity compliance
- Develops schedules to ensure timely completion of tactical activities for cybersecurity compliance
- Summarizes and reports cybersecurity compliance risks to the senior management and/or its working group overseeing compliance initiatives
- Collaborate with other North America regional cybersecurity teams
- Support response to internal and external consumers, regulatory bodies, and auditors about cybersecurity governance, risk, and compliance affairs and inquiries
- Ability to multi-task and prioritize individual and team work in fast changing environment
Job description
Overview:
Every moment of every day, people all over the world turn to Panasonic to make their lives simpler, more enjoyable, more productive and more secure. Since our founding almost a century ago, we’ve been committed to improving peoples’ lives and making the world a better place–one customer, one business, one innovative leap at a time. Come join our journey!
Responsibilities:
Panasonic IT – Cyber Security Analyst
Click here to learn more about how Panasonic is creating a better life, a better world.
Watch this video to see how our employees are shaping the technologies that move us.
What You’ll Get To Do:
Operate within the Cybersecurity Governance team and support the cybersecurity compliance management strategy. This role will support development, assessment, and maintenance of policies, standards, processes and procedures, to a level compliant with ISO27001/2, PCI DSS, JSOX, NIST 800-xx, CCPA, GDPR, CMMC and other relevant standards.
The role will work collaboratively with various business and IT teams in the design and implementation of cybersecurity assessment and compliance programs; manage the Information Security Management (ISM) program, manage compliance efforts related to industry standards, support/facilitate audit requests, manage and conduct cybersecurity risk assessments, identify risk themes, manage cybersecurity risk register, and promote cybersecurity awareness and training across the appropriate teams.
Program
• Manage and maintain ISMS in support of ISO 27001 program and CMMC requirements.
• Manage tactical execution of cybersecurity compliance program. This includes execution, support, follow up, monitoring and reporting for areas including –
• ISM reports, Privacy Impact Assessment, Personal Information Registration, ISM Audit
• Security Education Training and Awareness (SETA) promotion, delivery and reporting
• Risk Management, Third Party Risk Management, and related GRC activities
• Manage, promote, monitor and report on regional IT Security conformity activities.
• Manage compliance and response to parent (Japan) Operating Companies.
• Develop and maintain Infosec policies, guidelines and standards in support of Panasonic North America and Global requirements.
• Manage and support the data governance program. Interface with task leaders, subcontractors and support personnel, customers and Panasonic management to drive action and ensure data governance aligned to regulatory standards.
• Manage and execute the regional ISM promotional activities, coordinating and following up with regional ISM Managers and reporting to parent companies.
• Conduct training activities annually.
• Conduct ISM audits for Enterprise IT annually.
• Manage ISM incident intake and reporting.
• Manage risk register maintenance.
• Follow up on outstanding remediation with related stakeholders.
• Liaise and support the Internal Audit department, IT departments, external audit firms, and business units in support of regulatory and management audits.
• Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.
• Raise concerns to senior management with clearly defined impact statements and recommendations.
• Able to scope out projects and manage day to day processes of a program.
Planning and Collaboration
• Support the departmental management activities for cybersecurity compliance.
• Develops schedules to ensure timely completion of tactical activities for cybersecurity compliance.
• Summarizes and reports cybersecurity compliance risks to the senior management and/or its working group overseeing compliance initiatives.
• Collaborate with other North America regional cybersecurity teams.
• Support response to internal and external consumers, regulatory bodies, and auditors about cybersecurity governance, risk, and compliance affairs and inquiries.
Qualifications:
What You’ll Bring:
Education and Experience
• BS in Information Systems or Information Security
• 5 plus years in IT/Information security risk assessment, IT controls security assessor, or cybersec governance and compliance roles
• ISO 27001 Lead Implementor or Auditor certification
• CRISC or other related risk certification
• Demonstrated hands-on experience with Service Now GRC or Service Now TPRM
• Strong understanding of NIST security family, ISO 27001/2, and other relevant security standards
Preferred (all of the above, plus)
• Demonstrated hands-on experience with KnowBe4
• CMMC certified professional
Problem Solving
• Analytical skills and ability to formulate and articulate roadmaps and recommendations.
• Ability to multi-task and prioritize individual and team work in fast changing environment.
• Ability to interact with personnel at all levels of an organization to resolve issues and provide solutions in a timely manner.
• Ability to maintain a detail-oriented approach while multitasking in a fast-paced environment.
• Strong technical, analytical and problem-solving skills.
Communications
• Experience in successfully working remotely
• Excellent written and oral communication skills.
• Experience working with customers in sensitive environments
• Ability to interface with all levels within an organization and provide input to facilitate cybersecurity compliance decisions.
Other Requirements
• Highly organized, self-motivated and accountable
• Remote position, but preference is for individual to be in Chicagoland area
Benefits & Perks – What’s In It For You:
Panasonic prioritizes total wellbeing. We offer a wide variety of benefits and programs to support your physical, emotional, financial, social, and environmental health.
• Competitive compensation package
• Comprehensive benefits
• Pet Insurance
• Paid Parental Care Leave
• Employee Referral Program
• Educational Assistance
• Flexible Work Program
• Volunteer time Off
• Casual Dress Code
• Total Well Being Program
We Take Opportunity Seriously:
At Panasonic, we are committed to a workplace that genuinely fosters inclusion and belonging. Fairness and Honesty have been part of our core values for more than 100 years and we are proud of our diverse culture as an equal opportunity employer.
The wage range of $90,000 – $110,000 is just one component of Panasonic’s total package. Actual compensation varies depending on the individual’s knowledge, skills, experience, and location. This role may be eligible for discretionary bonuses and incentives. *The minimum hourly wage for this role will be the greater of the posted range, or minimum wage for the location where the employee will be working, subject to local minimum wage requirements.
We understand that your career search may look different than others and embrace the professional, personal, educational, and volunteer opportunities through which people gain experience. If you are actively looking or starting to explore new opportunities, send us your application!
Panasonic is an Equal Opportunity/Affirmative Action employer, and all qualified applicants will receive consideration for employment without regard to: race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, disability status, protected veteran status, or any other characteristic protected by law. All qualified individuals are required to perform the essential functions of the job with or without reasonable accommodation.
Due to the high volume of responses, we will only be able to respond to candidates of interest. All candidates must have valid authorization to work in the U.S.