At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.
Information Systems Security Professionals, We Want You!
Cyber assets everywhere are under siege from a broad spectrum of threats. Almost daily, these threats grow in sophistication, breadth, and speed.
At Northrop Grumman, we take a holistic approach to cybersecurity. We look at the cyber landscape of people, processes, technology, the security realm of offense, defense, and exploitation. Thought leadership demands nothing less. With 90,000 team members worldwide, the only limit to your growth is your ambition and drive.
We want to empower you to bring your best to support our cybersecurity efforts and develop the processes to keep us defining what's possible.
If you are an expert with classified computers within the Department of Defense (DoD) and Intelligence Community computing environments, Northrop Grumman Corporation has fantastic opportunities for your career growth.
We are seeking experienced Information Systems Security Professionals across the country to support information systems security compliance:
Perform assessments of systems within the enterprise or enclave and identify deviations from acceptable configurations and security compliance.
Establish strict program control processes to mitigate risks and support obtaining certification and accreditation of systems.
Lead a team to ensure support of process, coordination, security certification test, security documentation, investigations, vulnerability research, security impact analysis, inspections, and periodic audits.
Assist in implementing the required government policy, make recommendations on process tailoring, and participate in and document process activities and standard operating procedures.
Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, test participation, analysis of the results, and preparation of required reports.
Document the results of Certification and Accreditation and technical or coordination activities, prepare the system Security Plans, and update the Plan of Actions and Milestones POA&M.
Periodically review each system's audits and monitor corrective actions until all actions are closed.
Monitor and review the systems' key risk indicators (KRIs) and key performance indicators (KPIs) and present findings as required.
Note- Due to the classified nature of the work being performed, this position does not offer any virtual or telework working options. Applicants are encouraged to apply if they are willing to work on-site only.
Master's Degree with seven (7) years of experience; OR a bachelor's Degree with nine (9) years of experience; OR an associate degree with 11 years of experience; OR a High School Diploma/GED with 13 years of experience.
Must have a current DoD 8570 IAM level III security certification (CISM, GSLC, CCISO, CISSP).
For consideration, candidates must have a current DOD Secret security clearance (at a minimum) to include a closed investigation date completed within the last six (6) years.
Must have the ability to obtain and maintain access to Special Programs as a condition of continued employment.
Knowledge of SPLUNK and NESSUS, NIST 800-53, and Risk Management Framework are highly desirable.
The ideal candidate will have a Master's Degree in Cybersecurity, a DoD 8570 IAM level III security certification (CISM, GSLC, CCISO, CISSP), and ten (10) years of experience with Certification and Accreditation of classified systems and Risk Management Framework.
Knowledge of ACAS, NESSUS, SPLUNK, SCAP, STIG, POA&Ms, NIST 800-53, NISPOM, eMASS, system audits, vulnerability scanning, and RMF package development preferred.
Proficiency and experience with SPLUNK, NESSUS, NIST 800-53, and Risk Management Framework are highly desirable.
Current Top Secret with SAP/SAR access level is highly desirable.
Salary Range: $123,800 - $185,800
Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.