Jobs for People with MS: National MS Society

Description: The Command and Control, Battle Management and Communications (C2BMC) GLOBAL team is engineering, developing and integrating new capability for the Missile Defense System that currently protects the United States and its allies. The team, as a whole, is very large but is broken down into many smaller agile teams that work together in a fast-paced and dynamic environment. The GLOBAL team is responsible for tasks such as Sensor/Weapon Integration, Algorithm Development, User Interface Development, Automated Testing, Cyber Security and enhancing other critical, leading-edge missile defense technologies. The team is growing rapidly and we are looking for hardworking, dedicated people that will help us be successful.

The selected candidate is responsible for deployment and maintenance of all directory service types activities, such as active directory domain services/controllers, certificate authorities services, policy tracking/creation, and account management functions in the enterprise.

#RMSC6ISR

Basic Qualifications:

Must have a DoD Top Secret Clearance

Deployment and maintenance of all active directory domain services/controllers. This includes monitoring health and status of all sites and services in the enterprise.

• Deployment and maintenance of all certificate authority (CA) services, including issuing all SSL certificates and building out new CA servers in the enterprise.

• Tracking all CA server expiration dates, working with applicable teams to perform a renewal process for existing CA certs when needed.

• Tracking all issued SSL certs for all enterprise enclaves and working with existing administrators to ensure no certificates expiration, potentially impacting services to C2BMC-G user base.

• Creating and maintenance of system policies, such as Windows group policies, Linux authentication PAM rules/files (in concert with Linux/unix team), and tracking any potential issues as they arise on the system.

• Maintenance of all account matrices, including all applicable permissions cross overs between enclaves when/if needed.

• Work continuously with cyber team to ensure all RBAC controls are compliant with current policies for restriction access between enclaves and systems in enterprise for each applicable user/team.

• Assist cyber team with monitoring all directory services for out of the ordinary logins or accounts behavior metrics to ensure safety of data integrity of C2BMC-G system enterprise.

• Work with other teams to deployment and maintain technologies that include collaborative aspects, such as instant message platforms in enterprise.

• Work with all team to ensure proper distributed authentication services are configured property to ensure non-repudiation to all available sources. This can includes assisting with configuration of LDAP services to network/software solution, to ensure RBAC access to user base. Examples of LDAP/LDAPS connected endpoints configuration could be things like, HPE iLO interfaces, Gitlab, Cisco ISE, FortiManager, Raritan KVM, etc.

Desired Skills:

- Thorough understanding and Active Directory and its replication structure when used in a distributed forest, separated through the use of WAN links

- Experience with a on premise multi domain environment using Role based administrative controls (RBAC) for least privilege

- Experience with DISA STIG compliance remediation using distributed group policy and SCAP compliance scanners

- Ability to integrate automation technologies into daily Active Directory use is a plus

Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration.

Clearance Level: Top Secret

Other Important Information You Should Know

Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings.

Ability to Work Remotely: Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility.

Work Schedules: Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits.

Schedule for this Position: 4x10 hour day, 3 days off per week

Pay Rate:

The annual base salary range for this position in California and New York (excluding most major metropolitan areas), Colorado, or Washington is $95,900 - $183,800 . Please note that the salary information is a general guideline only. Lockheed Martin considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer.

Benefits offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays.

(Washington state applicants only) Non-represented full-time employees: accrue at least 10 hours per month of Paid Time Off (PTO) to be used for incidental absences and other reasons; receive at least 90 hours for holidays. Represented full time employees accrue 6.67 hours of Vacation per month; accrue up to 52 hours of sick leave annually; receive at least 96 hours for holidays. PTO, Vacation, sick leave, and holiday hours are prorated based on start date during the calendar year.

This position is incentive plan eligible.

Lockheed Martin is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration.

At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work.

With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility.

If this sounds like a culture you connect with, you’re invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs , and apply for roles that align with your qualifications.

Experience Level: Experienced Professional

Business Unit: RMS

Relocation Available: Possible

Career Area: Systems Engineering: Information Assurance

Type: Task Order/IDIQ

Shift: First