Open/Close mobile menu

Lockheed Martin Corporation Home

Cyber Intel Analyst Staff - IAVM

Req ID :
378150BR
Job Code/Title :
E2554:Cyber Intel Analyst Stf
Job Description :
This Vulnerability Assessment Team (VAT) member position will support the DoD Information Assurance Vulnerability Management (IAVM) program for the Defense Cyber Crime Center (DC3). These activities directly support cyber-crime investigations and operations to identify and mitigate cyber threats to the United States Air Force USAF and DoD personnel, interests, and resources worldwide. The VAT is responsible for executing FISMA compliance activities including annual assessments of security control status, vulnerability assessments, annual testing of contingency plans, and incident response plans, configuration management and conduct Privacy Impact Assessments (PIA). The team provides audit and advisory services, helps clients understand the complexity of issues such as performance, privacy, risk, controls, and data analysis.
The Validator is responsible for continuous vulnerability scans across a multitude of networked or standalone systems. Serves at the central coordination point of all network system vulnerability assessments, audits, and related studies conducted in the agency environment. Individual participates in activities traditionally associated with Incident Response, and vulnerability scanning, and is primarily responsible for routine Nessus scanning, network monitoring and intrusion detection, as well as additional Cyber Security analysis. Individual will be responsible for providing associated monthly and ad-hoc scans using ACAS/Nessus as required on the Network Protection Suites (NPS) and owned and managed systems. The Validator is responsible for managing, disseminating, interpreting, and tracking compliance with IAVM associated messages, monitoring the system for Vulnerability Threats, looking at reports for advanced Cyber Security Analysis, and hunting for hidden threats. In addition to assessing compliance based on requirements, and developing Plans of Action and Milestone (POA&M) documentation. Individual will be responsible for vulnerability management related to web applications including periodic vulnerability scanning, web application scanning, and code scanning. In addition to, analyzing results, identifying false positives, identifying remediation plans, directing system developers on remediation plans, and managing remediation through closure.

Basic Qualifications
• Ability to analyze web applications to discover and validate vulnerabilities discovery and an understanding of the vulnerability management lifecycle.
• Experienced in automation and scripting of applications and systems, i.e. Python, Perl, JavaScript, Splunk, and Archer.
• Experienced with vulnerability scanning tools such as Retina and Nessus including all of the OWASP TOP 10
• Advanced experience with testing tools such as Burp Suite Pro, AppSpider, Acunetix
• Experience working with web services technologies such as XML, JSON, SOA, REST, and AJAX
• Knowledge of Network Security Analysis using Intrusion Detection Systems.
• Comprehensive understanding of Security Methodologies, firewalls, proxies, mail servers, and web servers. Advanced experience with vulnerability assessment.
• Comprehensive knowledge of malicious code (worms, viruses, spy-ware, etc)
• Demonstrated manual testing experience including the OWASP TOP 10
• Demonstrated strong interpersonal and organizational skills and ability to serve as central coordination point
• Highly exceptional verbal and written communication skills, including ability to produce as well as provide expert review of accurate and timely technical reports are required of material for release to a larger community
* Top Secret Clearance with ability to obtain SCI

Desired skills
• Understanding of USAF and DoD standards from a FISMA compliance perspective.
• Demonstrated experience developing Plans of Action and Milestone (POA&M) documentation
• Demonstrated experience conducting Privacy Impact Assessments (PIA)
• Demonstrated experienced using Assured Compliance Assessment Solution (ACAS)
• Superior organizational skills to analyze, develop, and deliver detailed reports meeting tight suspense windows.
• Strong attention to detail and ability to prepare documents for customer review with limited direction.
• Ability to work multiple tasks and flexibility to adapt to dynamic work environment to meet organizational requirements.
• Experience authoring and editing standard operating procedures (SOPs), policies, and organizational communications

As a leading technology innovation company, Lockheed Martin’s vast team works with partners around the world to bring proven performance to our customers’ toughest challenges. Lockheed Martin has employees based in many states throughout the U.S., and Internationally, with business locations in many nations and territories.

Join us at Lockheed Martin, where we’re engineering a better tomorrow.

Lockheed Martin is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Job Location(s): Hanover Maryland
Security Clearance :
Top Secret
Business Unit :
ESS6500 RMS
Program :
DC3
Job Class :
Intelligence Analysis
Job Category :
Experienced Professional
City :
Hanover
State :
MD
Virtual :
No
Relocation Available :
No
Work Schedule :
FLEX-Non-Standard 40 hour week
Req Type :
Task Order/IDIQ
Shift :
First
Additional Posting Locations :
Hanover