Northrop Grumman Cyber Systems Engineer 3 - 4 in Aurora, Colorado
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today and for generations to come. Our work preserves freedom and democracy and advances human discovery and our understanding of the universe. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future and have a lot of fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. You will learn, grow, and play in an environment that focuses on results and delivery, all backed by strong corporate values and ethics.
Northrop Grumman Mission Systems (NGMS) is seeking a Cybersecurity Systems Engineer 3/4 who will apply system security engineering principles to provide realistic solutions designed to enhance the security posture. Identify threats and develop appropriate protection measures, review system changes for security implications and recommend improvements, research and draft Cybersecurity white papers, and provide top tier support to the Cybersecurity operations staff for resolving complex Cybersecurity issues. A Cybersecurity Systems Engineer 4 applies extensive technical expertise, and is able to communicate effectively and clearly present technical approaches and findings. Develop technical solutions to complex problems which require the regular use of ingenuity and creativity. Exercises considerable latitude in determining technical objectives of assignment. Completed work is reviewed from a relatively long- term perspective, for desired results.
The Cybersecurity Systems Engineer will develop and maintain a system-level Plan of Actions and Milestones (POA&M). Successful candidate will be able to evaluate different network and enclave configurations with respect to the DODI 8510.01 and NIST 800-53 Security Controls and formulate effective Risk Management Framework (RMF) processes & accreditation packages. Write RMF-based policies and procedures, and develop sound Cybersecurity processes to include implementation. Successful candidate will be accountable for quality work products. Must be able to prioritize and execute tasks and enjoy working in a collaborative team environment, prepare coherent and concise documentation required for security assessment and authorization.
Job responsibilities may include the following:
Develop sound Cybersecurity processes to include implementation of RMF-based policies and procedures.
Conduct assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
Execute vulnerability assessments; ensure mitigation of risks and support obtaining certification and accreditation of systems.
Support the formal security assessment process required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.
Document the results of RMF activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M.
Conduct technical planning, system integration, verification and validation, cost and risk, and supportability and effectiveness analyses for total systems.
Perform analyses at all levels of total system product to include: concept, design, fabrication, test, installation, operation, maintenance and disposal.
Ensure the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledge technical, schedule, and cost constraints. Perform functional analysis, timeline analysis, detail trade studies, requirements allocation and interface definition studies to translate customer requirements into hardware and software specifications.
Level 3: Bachelor's Degree with 5 years of relevant work experience: Master's Degree with 3 years of relevant work experience, or PhD. 4 years of relevant experience in lieu of a degree
Level 4 : Bachelor's Degree with 9 years of relevant work experience: Master's Degree with 7 years of relevant work experience, or PhD with 4 years of relevant experience. 4 years of relevant experience in lieu of a degree
US citizenship required
Active Top Secret/SCI security clearance with a CI Poly
Candidate must hold an active CISSP Certification
Candidates must possess strong interpersonal, organizational, and team skills with demonstrated skills in successfully leading teams.
Understanding of Systems engineering, software, and infrastructure design principles on complex systems
Ability to support up to 25% travel within the United States to customer or other NGC facilities.
Active TS/SCI with a Full Scope Poly
Bachelor of Science degree in engineering or related field, 7+ yrs. of engineering work experience in Cybersecurity Engineering, plus minimum 3 yrs. in development and/or sustainment Systems/Programs or relevant technical leadership experience.
Graduate certificate in Cyber or Information Assurance
Experience in Risk Management Framework (RMF); proposal development to include Basis Of Estimate (BOE) creation.
Previous or current System Administration (SA), Systems Engineering, or test experience with UNIX, AIX, Linux and or Windows systems is highly desired.
Working knowledge of Linux Red Hat and Microsoft operating systems.
Working knowledge and understanding of boundary protection devices, including firewalls and IPS devices.
Understanding of project schedule & planning basics.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.