Northrop Grumman is a pioneering company. We design, develop, build and support some of the world's most advanced products, from cutting-edge aircraft and next-generation spacecraft to unrivaled cyber security systems and all-seeing radars.
Whether it's making a 200 ton airplane invisible, predicting cyber-attacks before they happen or solving the mysteries of the universe, wherever the boundaries of possible are being pushed, Northrop Grumman is there.
For 60 years, Northrop Grumman has anticipated the future of military space. From the launch pad to orbit, we deliver everything from missile systems to spacecraft to launch and command and control systems. We are dedicated to providing strategic defense, secure and reliable communications, and robust missile warning and advanced space situational awareness to support our customers.
Northrop Grumman Space Systems is looking for you to join our team as a Sr Principal Cyber Systems Engineer based out of Colorado Springs, CO. This position will serve on the Sustainment and Modernization of Radar Sensors (SMORS) program, focused on the Ballistic Missile Early Warning System (BMEWS) Precision Acquisition Vehicle Entry (PAVE) Phased Array Warning System (PAWS) (BPP) and specifically Agile development activities. What You'll Get to Do:
- Report directly to the Weapon System Cybersecurity Lead
- Lead in the building of security architectures; integrate new architectural features into existing infrastructures; design cyber security architectural artifacts; provide architectural analysis of cyber security features and relates existing system to future needs and trends; provide engineering recommendations, and resolves integration and testing issues
- Provide guidance on all Cyber backlog items and ensure rigor in execution within an Agile Environment
- Develop Features and stories for Cyber backlog
- Perform product owner role in lieu of government participation
- Work with hardware engineers, software engineers, and test teams developing, testing, and deploying cybersecurity solutions
- Assess and mitigate system security threats/risks throughout the program life cycle
- Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations
- Ensure system security needs are established and maintained for operations development, security requirements definition, security risk assessment, systems analysis, systems design, security test and evaluation, assessment and authorization, systems hardening, vulnerability, testing and scanning, and configuration management
- Lead in the development, testing, and deployment of a patch management and Assured Compliance Assessment Solution (ACAS) solutions that covers Windows and Linux systems in a Closed Restricted Network (CRN) environment.
- Contribute to analysis/prioritization of system patches and STIG findings in backlog
- Work with the test team and system administrators, in the quarterly deployment of system patches
Ability to work in a dynamic, fast paced, team oriented environment and be a self-starter, efficient in achieving goals and proactive in pursuing subsequent tasks. Qualifications :Basic Qualifications:
- Bachelors degree from an accredited institution with 9 years of applicable experience, or 5 years with Masters or 4 years with PhD, or 11 years with an associates; or 13 years of applicable experience will be considered in lieu of degree.
- Interim DoD Secret clearance.
- ISC2 CISSP or similar for IAM Level I DoD 8570 certification
- Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
- Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment.
- Familiarity or experience with Agile software development methodologies, i.e. Scrum, Kanban, SAFe
- Familiarity with MS Office suite of tools (i.e. Word, Excel, PowerPoint, Project)
What We Can Offer You:
- Active DoD Secret clearance
- Degree in a STEM discipline
- ACAS Experience
- STIG/SCAP compliance scanning and implementation
- Linux skills
- Familiarity with RMF and eMASS a plus
- Understanding of networking, subnetting, firewalls, NAT, ACL's, etc
- Familiarity with the Ballistic Missile Early Warning System (BMEWS) Precision Acquisition Vehicle Entry (PAVE) Phased Array Warning System (PAWS) (BPP) or other ground-based radars such as the Acquisition Radar Attack Characterization System (PARCS)
Northrop Grumman provides a comprehensive benefits package and a work environment that encourages your growth and supports the mutual success of our people and our company. Northrop Grumman benefits give you the flexibility and control to choose the benefits that make the most sense for you and your family. Your benefits will include the following:
- Health Plan
- Savings Plan
- Paid Time Off
- Education Assistance
- Training and Development
- Flexible Work Arrangements
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.