Sr Principal Cyber Systems Engineer - NG Space Systems - R10190123

Join to apply for the Sr Principal Cyber Systems Engineer - NG Space Systems - R10190123 role at Northrop Grumman

3 weeks ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

RELOCATION ASSISTANCE: No relocation assistance available

CLEARANCE TYPE: Secret

TRAVEL: Yes, 10% of the Time

Description

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

We are seeking a Senior Principal Cyber Systems Engineer to join our talented team in Redondo Beach, CA. The Cyber Systems Engineer will be responsible for understanding functional system requirements and deriving security controls to provide technical implementation solutions to various engineering teams in order to comply with system requirements; identify system design and operational vulnerabilities and make recommendations to address deficient areas; work with system administrators to securely configure systems per customer security standards, community best practices and benchmarks. The ideal candidate will play a crucial role in planning, designing, implementing, and maintaining the security and integrity of the system.

The Cyber Systems Engineer will be responsible for tasks including, but not limited to:

1. Perform customer requirements elicitation leading to cybersecurity requirements development
2. Review and assess stakeholder security objectives, protection needs and concerns, system security requirements, and associated verification methods per Risk Management Framework (RMF) standards
3. Define, allocate and control Ground Segment cybersecurity requirements to satisfy RMF compliance
4. Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions
5. Coordinate and collaborate with diverse engineering design teams to assist in managing the technical baseline
6. Define, document, build plan, and manage Information Assurance (IA) or Cybersecurity engineering including security controls traceability and decomposition, security architecture and design, analysis of Security Technical Implementation Guidelines (STIG) mapping
7. Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats
8. Implement, review, upgrade, and document STIGs and security controls
9. Create, mature, and present comprehensive and cohesive technical charts representative of the appropriate level of maturation for any given milestone meeting and demonstrate team readiness in relation to achieving the milestone entrance and exit criteria
10. Identify required contractual deliverables and non-contractual documentation and drive corresponding updates to closure
11. Periodically conduct system audit and develop corrective action plans to resolve audit findings
12. Support the design and implementation of automated tools to configure, integrate and test, and deploy hardened environment to meet security controls
13. Assist the program to gain certification of systems, drafting and updating security artifacts

Basic Qualifications

• Senior Principal Cyber Systems Engineer: 8 Years of relevant experience with Bachelors in Science; 6 Years of relevant experience with Masters; 4 Years of relevant experience with PhD
• Active DoD Secret clearance required at the time of application
• System engineering and/or system security engineering experience
• Experience with RMF and NIST800-53 and developing RMF assessment and authorization documentation
• Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs))
• Familiarity with Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, IT/Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views and related documentation IAW DoDI 5000.02, DoDI 5200.39, DODI 5200.44, DODD 5200.47E, DoDI 8500.01, DoDI 8510.01, and NIST SP 800-160
• Experience in conducting system audits, reviewing audit results, and developing corrective action plans
• Experience in executing vulnerability scans and developing and maintaining security documentation, including SSPs, SECONOPS, CONMON, and POA&Ms
• Experience with obtaining and maintaining a system level Authorization to Operate (ATO) and Interim Authorization to Test (IATT)
• Ability to work well with other engineers on a high-pressure, schedule-driven program
• Familiarity with system architectures, networking, and operating systems (e.g., Linux, Windows)
• Excellent communication (written and oral), negotiation and interpersonal skills necessary to support known Information Systems Security Engineering activities working with engineering teams, management, customers, partners, and government
• Active IAT Level II certification (e.g. Security+), or higher
• DoD 8570 certification for IAM-III (e.g. CISSP, CISM, GSLC, CCISO) or IAT-III (e.g. GCIH, CISSP, CASP+, CCNP Security, CISA, GCED)
• Excellent interpersonal skills with the ability to work both independently and within a team environment

Preferred Qualifications

• Experience with Agile development
• Understanding methods for hardening and maintaining secure architectures
• Experience working with eMASS and/or Xacta
• Experience with Ground and Space systems and/or Command and Control systems
• Python and shell scripting ability
• Experience with DevSecOps
• Experience configuring and maintaining VMware vSphere
• Basic understanding of IPv4 networking fundamentals
• Basic understanding of information assurance principles in the DoD environment
• Possesses knowledge of External/Internal System Security Tools
• Basic /Advanced Systems Administration in major COTS SW platforms

Salary Range: $151,100.00 - $226,700.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.