Job Description :
Lockheed Martin Corporate Information Security (CIS) is seeking an experienced Information Assurance / Security Engineers who also have experience with Cloud technologies such as Amazon Web Services (AWS).
In this role you will work with individuals from a variety of technical and functional disciplines to provide guidance on cloud-based solutions that meet overall business needs while also embedding necessary security controls from end-to-end.
Duties of this position will include:
- Performing security evaluations of AWS services to understand the capabilities of the services and hence the security controls that may be required and/or recommended for secure use of the service.
- Engaging on cloud deployment or migration projects to ensure end-to-end security of business solutions. - Designing and validating security standards, policies and solutions that align with the dynamic and agile nature of Cloud environments.
- Documenting and communicating the security standards, policies and solutions to allow for quicker and easier adoption.
- Automating security solutions using tools standard in the Cloud / DevOps world.
- Developing governance models for Cloud-based solutions including IaaS, PaaS, SaaS.
Lockheed Martin Corporate Information Security offers a dynamic, fast-paced environment where quick ramp-up and the ability to effectively manage multiple priorities is expected. The ability to work effectively in a virtual team will be required to enable success for the individual in this role and within the team.
Minimum of 12 to 14 years of experience encompassing information technology and cyber security / information assurance:
- Experience with information assurance and cyber security engineering principles including security risk analysis, security testing, communications/network security, computer security and other areas of Information Assurance
- Experience performing threat analysis and threat modeling
- Advanced knowledge of cloud technologies, with Amazon Web Services being preferred.
- Solid understanding of cloud computing design and security principles
- Experience designing and documenting recommended security reference architecture for computing environments.
- Wide range of knowledge across IT disciplines including software, hardware, network engineering
- Ability to juggle the demands of multiple diverse customers while formulating & driving the enterprise-level Cloud security direction
- Proven effective communication skills (written, verbal and presentation)
- Proven effective leadership skills
- Proven effective teaming skills (co-located and virtual)
- ABILITY TO OBTAIN, AT A MINIMUM, A SECRET LEVEL SECURITY CLEARANCE
- Recognized security certification (CISSP, CEH or others)
- Recognized cloud certification (CSSP, AWS CSA, CompTIA Cloud+, CCSK or others)
- Familiarity with FedRamp
- Demonstrated understanding / proficiency in application containerization, APIs, web services
- Knowledge of common DevOps tools such as Chef, Puppet, Jenkins, Git
- Experience with other cloud platforms such as Microsoft Azure, OpenStack and others
- Demonstrated experience utilizing agile frameworks for project lifecycle
- Understanding of regulatory frameworks such as PCI, PII / Privacy Shield, SOX, etc.