Software Engineer
About The Role
Lockheed Martin is seeking a highly skilled Cyber Software Engineer to join its Rotary and Mission Systems (RMS) division. In this role, you will be instrumental in securing and automating the delivery of mission-critical software for the Program Test Data (PTD) and Training and Logistics Support (TIPS) systems. Your primary focus will be on integrating Infrastructure as Code (IaC), Continuous Integration/Continuous Deployment (CI/CD) pipelines, and comprehensive threat modeling practices into the software development lifecycle. This position offers an exciting opportunity to work on high-stakes defense systems, ensuring their resilience against cyber threats while maintaining compliance with rigorous standards such as DoD Risk Management Framework (RMF), NIST guidelines, and STIG/SRG hardening standards. You will collaborate with multidisciplinary teams, participate in Agile ceremonies, and provide technical briefings to leadership, contributing to the protection and enhancement of critical defense systems.
Qualifications
- Possess a Bachelor’s degree in Computer Science, Software Engineering, or a related STEM field from an accredited institution, with a minimum of five years of professional experience.
- Alternatively, candidates with a Master’s degree and at least three years of relevant experience will also be considered.
- Proficiency in scripting languages such as Python, PowerShell, or Bash is essential for automating compliance checks and remediation tasks.
- Familiarity with CI/CD tools like Jenkins and GitLab CI, along with experience in integrating security testing into development workflows, is required.
- Hands-on experience with Infrastructure as Code tools such as Terraform and Ansible is necessary to build secure, hardened environments.
- Candidates must hold or be able to obtain a Security+ or equivalent DoD 8570 certification and possess an active or eligible DoD Secret security clearance.
- Knowledge of vulnerability scanning frameworks (OpenSCAP, Nessus), RMF processes, hypervisors (VMware vSphere, Hyper-V), and modern AI/ML platforms is highly desirable.
Responsibilities
- Manage the integrity, availability, and cyber compliance of hardware, firmware, and software components across systems.
- Maintain and update RMF documentation, including System Security Plans, Plans of Action & Milestones, and Security Assessment Reports.
- Implement, assess, authorize, and continuously monitor security controls in accordance with RMF guidelines.
- Automate compliance checks and remediation processes through scripting and security tools such as OpenSCAP, Tenable, and Qualys.
- Integrate security gates into CI/CD pipelines using Jenkins and GitLab CI, and perform vulnerability testing through SAST and DAST methodologies.
- Review Software Bill of Materials (SBOMs) and Software Assurance and Engineering Reports (SAER) to ensure software integrity.
- Utilize Infrastructure as Code tools like Terraform and Ansible to create secure, hardened environments across container platforms such as Docker and Kubernetes.
- Collaborate with systems engineering, testing, configuration management, and program management teams to align security objectives with project goals.
- Participate actively in Agile ceremonies, providing technical briefings and updates to leadership and stakeholders.