Help us maintain the quality of jobs posted on PowerToFly. Let us know if this job is closed.
Job Details
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Northrop Grumman Aeronautics Systems is currently seeking a Principal Cyber Systems Engineer or Senior Principal Cyber Systems Engineer to join our team of qualified, diverse individuals located in Palmdale , CA . We're looking for a highly motivated, team oriented, individual that understands security and the importance to our mission. The candidate will be responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They will also help develop new designs and security strategies across cloud-based applications and Infrastructure as Code (IaC). The candidate will act as a Cyber Subject Matter Expert (SME) and ensure compliance with the Risk Management Framework. Responsibilities:
- Design, plan, implement, and perform assessment of security controls, polices, and processes compliance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, CNSSI 1253, and DoD RMF Knowledge Service guidance.
- Participate in assessment of systems security controls to validate control implementation and identify weaknesses.
- Document the results of Certification and Accreditation activities, technical or coordination activity, prepare the system Security Plans, and update the POA&M.
- Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed- Implementation, automation, configuration and maintenance of security tools, centralized authentication solutions, IDS/IPS, and compliance baselines.
- Provide advanced technical analyses of cyber infrastructure challenges and problems; develop/identify technical solutions responsive to customer needs.
- Participate in team reviews of technical requirements, design and implementation plans prior to deployment.
- Recommend and implement system enhancements that will improve the performance, reliability, and security of the system including installing, upgrading, monitoring, problem resolution, and configuration.
- Serve as a Cyber Security engineer (ISSE) supporting high-level technical and practical expertise.
- Assures the implementation of Cyber Security disciplines, including COMSEC, COMPUSEC, EMSEC, OPSEC, digital communications systems, network protocols and architectures, and penetration tools and techniques.
- Support the continuous assessment of IA Control compliance for systems within their responsibility.
- Bachelor's of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 4 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR Master's of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 3 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR PhD in a STEM (Science, Technology, Engineering, Math) discipline with 0 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines.
- Must have an Active, In-Scope, DOD Secret Security Clearance or higher that has been granted / renewed within the past 6 years.
- Must have the ability to obtain and maintain Special Program Access
- Must have at minimum a current DoD 8570 IAT Level II Certification (Security+CE).
- Bachelor's of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 8 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR Master's of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 6 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR PhD in a STEM (Science, Technology, Engineering, Math) discipline with 4 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines.
- Must have an Active, In-Scope, DOD Secret Security Clearance or higher that has been granted / renewed within the past 6 years.
- Must have the ability to obtain and maintain Special Program Access
- Must have at minimum a current DoD 8570 IAT Level II Certification (Security+CE).
- DoD 8570 IAM II/III Certification (CAP, GLSC, CISSP, CASP CE).
- DoD 8500-series and 8510.01 IA policy directives, approaches to cyber security, knowledge of security procedures, IATT and ATO requirements.
- Excellent communication (written and oral), negotiation and interpersonal skills necessary to support known ISSE activities/challenges working with engineering teams, management, customers, partners and government.
- Experience with Dell, Cisco, Palo Alto and other next generation switches and firewalls.
- Experience with SDLC and DOORs application.
- Experience with cloud solutions like Azure and AWS.
- Experience translating technical concepts and program information to others.
- Solid understanding of planning, design, and implementation necessary to support a large enterprise system.
- Working knowledge of NIST 800-37 RMF body of evidence artifacts such as SSP, SCTM, PoA&M's, SAR, RAR, RAL, ConOps, ISA, etc.
- Experience with configuring Security Incident Event Monitoring and IDS/IPS tools such as ACAS, ESS (HBSS), and Splunk on Linux RedHat and Windows environments.
- Experience with vulnerability and compliance scanners such as Tenable.SC and SCAP.
- Experience with CDS technology, security, and compliance requirements.
- Experience with cloud environments supporting the configuration design, integration, sustainment, and retirement of systems.
- Experience in preparing and/or reviewing technical and programmatic documentation.
- Working experience deploying and configuring Linux and Windows systems in accordance with DoD STIG requirements.
- Experience scripting security processes in efforts to establish redundant, consistent and automate baselines across multiple systems.
- Experience scripting/automating system installation and configuration to establish redundant, consistent and automate baselines across multiple systems (Ansible, GPO, package files)
About the Company
Northrop Grumman
Falls Church, VA, United States
We are a close-knit community of big thinkers collaborating to keep the world safe. Our passion, creativity and expertise bring next-level... Read more