Principal Cyber Systems Engineer / Senior Principal Cyber Systems Engineer

RELOCATION ASSISTANCE: Relocation assistance may be available

CLEARANCE TYPE: Secret

TRAVEL: Yes, 25% of the Time

Description

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Northrop Grumman Aeronautics Systems is currently seeking a Principal Cyber Systems Engineer or Senior Principal Cyber Systems Engineer to join our team of qualified, diverse individuals located in Palmdale, CA.

We're looking for a highly motivated, team oriented, individual that understands security and the importance to our mission. The candidate will be responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They will also help develop new designs and security strategies across cloud-based applications and Infrastructure as Code (IaC). The candidate will act as a Cyber Subject Matter Expert (SME) and ensure compliance with the Risk Management Framework.

Responsibilities:

• Design, plan, implement, and perform assessment of security controls, polices, and processes compliance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, CNSSI 1253, and DoD RMF Knowledge Service guidance.

• Participate in assessment of systems security controls to validate control implementation and identify weaknesses.

• Document the results of Certification and Accreditation activities, technical or coordination activity, prepare the system Security Plans, and update the POA&M.

• Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed- Implementation, automation, configuration and maintenance of security tools, centralized authentication solutions, IDS/IPS, and compliance baselines. 

• Provide advanced technical analyses of cyber infrastructure challenges and problems; develop/identify technical solutions responsive to customer needs. 

• Participate in team reviews of technical requirements, design and implementation plans prior to deployment.

• Recommend and implement system enhancements that will improve the performance, reliability, and security of the system including installing, upgrading, monitoring, problem resolution, and configuration.

• Serve as a Cyber Security engineer (ISSE) supporting high-level technical and practical expertise.

• Assures the implementation of Cyber Security disciplines, including COMSEC, COMPUSEC, EMSEC, OPSEC, digital communications systems, network protocols and architectures, and penetration tools and techniques.

• Support the continuous assessment of IA Control compliance for systems within their responsibility.  

Basic Qualifications (Level 3):  

• Bachelor’s of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 4 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR Master’s of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 3 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR PhD in a STEM (Science, Technology, Engineering, Math) discipline with 0 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines. 

• Must have an Active, In-Scope, DOD Secret Security Clearance or higher that has been granted / renewed within the past 6 years.

• Must have the ability to obtain and maintain Special Program Access

• Must have at minimum a current DoD 8570 IAT Level II Certification (Security+CE).

Basic Qualifications (Level 4):  

• Bachelor’s of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 8 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR Master’s of Science degree in a STEM (Science, Technology, Engineering, Math) discipline with 6 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines; OR PhD in a STEM (Science, Technology, Engineering, Math) discipline with 4 or more years of technical experience in any combination of Cyber, Systems, Software, or Hardware engineering disciplines. 

• Must have an Active, In-Scope, DOD Secret Security Clearance or higher that has been granted / renewed within the past 6 years.

• Must have the ability to obtain and maintain Special Program Access

• Must have at minimum a current DoD 8570 IAT Level II Certification (Security+CE).

Preferred Qualifications:

• DoD 8570 IAM II/III Certification (CAP, GLSC, CISSP, CASP CE).

• DoD 8500-series and 8510.01 IA policy directives, approaches to cyber security, knowledge of security procedures, IATT and ATO requirements.

• Excellent communication (written and oral), negotiation and interpersonal skills necessary to support known ISSE activities/challenges working with engineering teams, management, customers, partners and government.

• Experience with Dell, Cisco, Palo Alto and other next generation switches and firewalls.

• Experience with SDLC and DOORs application.

• Experience with cloud solutions like Azure and AWS.

• Experience translating technical concepts and program information to others.

• Solid understanding of planning, design, and implementation necessary to support a large enterprise system.

• Working knowledge of NIST 800-37 RMF body of evidence artifacts such as SSP, SCTM, PoA&M’s, SAR, RAR, RAL, ConOps, ISA, etc.

• Experience with configuring Security Incident Event Monitoring and IDS/IPS tools such as ACAS, ESS (HBSS), and Splunk on Linux RedHat and Windows environments.  

• Experience with vulnerability and compliance scanners such as Tenable.SC and SCAP.

• Experience with CDS technology, security, and compliance requirements.

• Experience with cloud environments supporting the configuration design, integration, sustainment, and retirement of systems.

• Experience in preparing and/or reviewing technical and programmatic documentation.

• Working experience deploying and configuring Linux and Windows systems in accordance with DoD STIG requirements.

• Experience scripting security processes in efforts to establish redundant, consistent and automate baselines across multiple systems.

• Experience scripting/automating system installation and configuration to establish redundant, consistent and automate baselines across multiple systems (Ansible, GPO, package files)

Salary Range: $118,000.00 - $177,000.00Salary Range 2: $146,300.00 - $219,500.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.