Hello, I'm Peter Yake

Cybersecurity Engineer | Lockheed Martin | IT & Security Infrastructure | Risk Management | CISSP, Security+ Certified | Penn State Alumnus

📦 GitHub 💼 LinkedIn

About Me

Cybersecurity engineer with 9 years of experience in security engineering, risk management, and DevSecOps within high-assurance environments. I specialize in integrating security into system design and development workflows, with a focus on automation, vulnerability management, and scalable security testing. My work centers on building repeatable, measurable security processes that improve visibility, reduce risk, and enable faster delivery. Experienced in RMF (NIST SP 800-53), Kubernetes, containerized infrastructure, and modern DevSecOps practices. Passionate about bridging the gap between security and engineering to deliver secure, resilient systems at scale.

Experience

Senior Cybersecurity Engineer

Lockheed Martin • 2017 - Present

  • Lead cybersecurity engineering, test, and evaluation efforts for mission-critical systems.
  • Drive Risk Management Framework (RMF) compliance aligned to NIST SP 800-53.
  • Develop and execute security test plans, vulnerability assessments, and remediation strategies.
  • Collaborate with developers, system engineers, and stakeholders to integrate security into system design.
  • Implement automation and repeatable processes to improve efficiency in security validation and reporting.
  • Agile practitioner and Scrum Master with experience leading security-focused development workflows.
  • Apply cloud-native and CNCF ecosystem knowledge to support modern and secure system architectures.

DevSecOps Engineer

Lockheed Martin • 2024 - Present

  • Graduate of U.S. Department of Labor DevSecOps Apprenticeship.
  • Design and implement secure infrastructure using RHEL-based KVM and RKE2 Kubernetes.
  • Manage Kubernetes application lifecycle using Helm, including deployments, upgrades.
  • Integrate security into CI/CD pipelines, enabling automated scanning and RMF focused compliance reporting.

Projects

Cyber Test & Evaluation Framework

Developed and executed structured cybersecurity test and evaluation processes aligned with NIST SP 800-53 controls. Created repeatable test cases and validation procedures to assess security control effectiveness across system components, supporting system authorization and continuous monitoring.

RMF Authorization & Continuous Monitoring

Supported multiple systems through the Risk Management Framework (RMF) lifecycle, including control implementation, assessment, and authorization (ATO). Collaborated with stakeholders to document security controls, manage POA&Ms, and maintain ongoing compliance through continuous monitoring activities.

Cyber Test & Evaluation for Space Systems

Contributed to cybersecurity test and evaluation efforts supporting space-based systems, including GPS satellite program.

Explore Lockheed Martin's GPS Legacy →

Vulnerability Management & Risk Reporting Platform

Designed and implemented customized Tenable Security Center dashboards to provide real-time visibility into vulnerability posture, compliance status, and risk prioritization. Enabled data-driven remediation decisions and improved tracking of key security metrics across systems.

Explore Tenable →

Security Control Automation in DevSecOps Pipelines

Integrated automated security checks into CI/CD pipelines, including vulnerability scanning, configuration validation, and compliance enforcement. Reduced manual effort and improved consistency of security validation in containerized and Kubernetes-based environments.

Secure Kubernetes Platform Deployment

Engineered secure container orchestration environments using RKE2 Kubernetes and RHEL-based infrastructure. Implemented role-based access control (RBAC), secure configuration baselines, and Helm-based deployment strategies to support scalable and compliant application hosting.

End-to-End Secure System Lifecycle Implementation

Led security integration across the full system lifecycle, from architecture design through deployment and continuous monitoring. Aligned security controls, testing, and DevSecOps practices to reduce risk while enabling faster system delivery in a high-assurance environment.

Get in Touch

I'm always open to discussing new opportunities and interesting projects.

Message me on LinkedIn →