Northrop Grumman Information Assurance Engineer in Colorado Springs, Colorado
Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you'll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today.
Northrop Grumman Space Systems has a new opportunity for an Information Assurance Engineer - Information System Security Officer (ISSO) to work on an exciting, fast-paced program. This position will work hand-in-hand with the customer as well as internal and external stakeholders across all program system security functions.
Work as part of an integrated team to architect, implement, and assess Risk Management Framework (RMF) cybersecurity requirements of networks and systems within the space domain, i.e., across ground, communications, and space segments
Utilize a combination of automated tools and manual methods to audit and monitor systems, identify potential vulnerabilities and assist in determining mitigation actions
Contribute to the preparation and maintenance of RMF body of evidence documentation
Create and track requests for hardware/software components and conduct security impact assessments of planned tech solutions
Participate in configuration control boards to assess and communicate potential security impacts of proposed technical, procedural or operational changes
Conduct system vulnerability scanning, patch management and flaw remediation activities on Windows and Linux operating systems and various hardware and software components, including those in virtualized environments
Work closely with system administrators to validate system patches and security relevant configuration changes are implemented correctly and functioning as intended
Perform information system continuous monitoring using established plans and checklists
Assist customer staff, program managers, subcontractors, and system operators with identifying resolving technical and non-technical security issues
Prepare and execute security control assessment procedures to verify conformance with Department of Defense (DoD), Intelligence Community, Special Access Program, and US Space Force security control requirements
Must have U.S. Citizenship with active or current Top Secret level security clearance
Bachelor's Degree or equivalent and 2 years of IA or cybersecurity experience
Recent hands-on experience using Security Incident and Event Management (SIEM) and audit reduction tools
Recent hands-on experience with DISA Host Based Security System (HBSS) or DISA Endpoint Security Suite (ESS) solutions
Experience remediating, mitigating, and reporting cybersecurity vulnerabilities discovered through use of SIEM/audit tools and/or DISA Automated Security Compliance Assessment Solution (ACAS)
Experience with Security Technical Implementation Guide (STIG) implementation, use of the SCAP Compliance Checker (SCC) tool to conduct compliance scans, and documentation of deviations and mitigations
DoD 8570 IAM or IASAE Level II certification; CISSP
Top Secret level clearance with SCI
Prior experience working in the defense or aerospace industry
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.
Job Category : Engineering