DevSecOps Security Principal

Job Description:

Description:Building software and infrastructure as code (IaC) fast is great but building it securely is the difference between a spanet leader and tomorrows data breach headline. As the digital world expands, the Information Systems Security Engineer (ISSE) is an essential guardian, embedding security into the DNA of our applications and infrastructure. The Corporate Classified Cyber Transformation & Operations Director is looking for a Principal Development, Security, and Operations (DevSecOps) Security Principal to lead and execute on the mission of shifting security left. As the DevSecOps Security Principal, you will act as a bridge between classified IT systems engineers and Information Systems Security Officers/Managers (ISSO/ISSM) to design, test, and deliver technical security solutions. Areas of focus will include secure multi-tenancy solutions (Protection Level 3/4), DevSecOps continuous integration/delivery (CI/CD), hybrid cloud, software defined networking (SDN), and more.

The DevSecOps Security Principal will provide feedback to the development of Assessment & Authorization (A&A) packages, System Security Plans (SSP), Plan of Action and Milestones (POA&M), Security Controls Traceability Matrix (SCTM), and security control test plans for new system designs. This position requires interfacing with Industrial Security, Classified Cyber Security, Classified IT, Engineering & Technology (E&T), and government customers to help drive security strategy. This is a dynamic, fast-paced environment where quick ramp-up and the ability to effectively manage multiple priorities is critical to success.

Key Responsibilities:
• Security Engineering: defining security requirements, designing secure solutions for both on-premises and cloud IT implementations, developing, and executing test cases and providing general cyber security support in accordance with policies, procedures, standards and best practices.
• Security Architecture: responsible for ensuring that the information security requirements necessary to protect the organization’s core missions and business processes are adequately addressed in all aspects of IT architecture including reference models, and solution architectures.
• Designing and validating security standards, policies, and solutions that align with the dynamic and agile nature of todays IT.
• Support modernization, automation, and technological growth initiatives through the design, implementation, and management of security practices and controls within the DevSecOps pipelines to ensure compliance with industry standards and organizational policies.
• Serve as the technical advisor for the Director.
• Evaluate Commercial off the Shelf (COTS) and Government off the Shelf (GOTS) technologies systems, applications, and services against requirements and needs.
• Act as the primary ISSE for the enterprise operations team, providing guidance on best practices for secure software development and deployment.
• Mentor and provide technical leadership to junior security engineers and team members that enhance their skills and career growth.
• Establish and maintain relationships with internal partners, external partners, and industry groups to share best practices.
• Performing other tasks and special projects as assigned.
Basic Qualifications:
• Bachelor’s degree or equivalent experience / combined education
• Experience as a security engineer and/or highly technical ISSO/ISSM
• Experience in managing security within CI/CD pipelines and integrating security tools such as SAST, DAST, and container security solutions.
• Experience with infrastructure as code (IaC) tools such as Terraform or CloudFormation.
• Familiarity with container orchestration platforms like Kubernetes and security best practices associated with them.
• Familiarity with security frameworks (NIST, OWASP, ISO 27001) and regulatory requirements.
• Strong communication skills, with the ability to convey complex security concepts to technical and non-technical stakeholders
• Extensive knowledge in security tools and technologies, including SIEM, intrusion detection/prevention systems, and threat intelligence platforms
• Excellent analytical, problem-solving, and decision-making skills
• Relevant security certifications (CISSP-ISSEP, CISSP-ISSAP, or CCSP)
• Active TOP SECRET security clearance or recently active TOP SECRET clearance within 24 months with SCI eligibility
• U.S. Citizenship required
Desired Skills:
• Bachelor’s degree in Cybersecurity, Information Technology, or a related field; a Master’s degree is a plus.
• Minimum of 15 years of experience in cybersecurity, with at least 5 years in a leadership role
• Strong knowledge of cloud security (AWS, Azure, GCP) and experience securing cloud-native applications.
• Auditing implementations using Splunk, Elasticsearch, Graylog, etc.
• CI/CD, GitLab, Atlassian, and other agile development tools to implement DevSecOps processes
Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration.
Clearance Level: Top Secret with Investigation or CV date within 5 years
Other Important Information You Should Know
Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings.
Ability to Work Remotely: Part-time Remote Telework: The employee selected for this position will work part of their work schedule remotely and part of their work schedule at a designated Lockheed Martin facility. The specific weekly schedule will be discussed during the hiring process.
Work Schedules: Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.
Schedule for this Position: 4x10 hour day, 3 days off per week
Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics.
The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration.
At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the worlds most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work.

With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility.

If this sounds like a culture you connect with, you’re invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications.
Experience Level: Experienced Professional
Business Unit: CORPORATE HEADQUARTERS
Relocation Available: No
Career Area: Cyber Security
Type: Full-Time
Shift: First

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field; a Master’s degree is a plus.
• Minimum of 15 years of experience in cybersecurity, with at least 5 years in a leadership role
• Strong knowledge of cloud security (AWS, Azure, GCP) and experience securing cloud-native applications.
• Auditing implementations using Splunk, Elasticsearch, Graylog, etc.
• CI/CD, GitLab, Atlassian, and other agile development tools to implement DevSecOps processes

Job Ident #: 88548676880

Company Details

Lockheed Martin

6801 Rockledge Dr
Bethesda, Maryland 20817 USA
www.lockheedmartinjobs.com/

Lockheed Martin Corporation is an American global aerospace, defense, security and advanced technologies company with worldwide interests. It was formed by the merger of Lockheed Corporation with Martin Marietta in March 1995. It is headquartered in North...

Benefits:
TBD

(Job and company information not to be copied, shared, scraped, or otherwise disseminated/distributed without explicit consent of JSfirm, LLC)

Job Info

Location

Orlando, Florida, United States

Type

Permanent

Company Details

Lockheed Martin

6801 Rockledge Dr
Bethesda, Maryland 20817 USA
www.lockheedmartinjobs.com/