Northrop Grumman Principal Cyber Protection in Kearneysville, West Virginia

Are you interested in expanding your career through experience and exposure, all the while supporting a mission that seeks to ensure the security of our nation and its allies? If so, then Northrop Grumman may be the place for you. As a leading global security company providing innovative systems, products and solutions to customers worldwide, Northrop Grumman offers an extraordinary portfolio of capabilities and technologies. Here at Northrop Grumman we are comprised of professionals that bring different perspectives, are curious about the world, accepting of each other, and understand that the more ideas, backgrounds, and experiences we bring to our work then the more innovative we can be. As we continue to build our talented workforce we look for professionals that exemplify our core values, leadership characteristics, and approach to innovation.

Roles and Responsibilities:

Senior Cyber Security Specialist well-versed in security operations, cyber security tools, and Open Source information gathering from public and private sources.

Provide operational support on expert level analysis regarding Advanced Persistent Threats (APTs), Indicators of Compromise (IOC), Intelligence Gathering and sharing this information with other formalized partners.

Gather, extract, and disseminate open source intelligence (OSINT) on threat actors targeting the VA, health care industry, government agencies in general, as well as public sector

Work with industry partners to gather and share intelligence. Apply intelligence to the VA network and systems to proactively identify potential cyber threats

Provide proactive event monitoring/event management/configuration of the following security tools for targeted threats and malicious activity including but not limited to: Splunk, Palo Alto Networks, McAfee EPO, Cisco Ironport, Netscout, Sourcefire Defense Center and Bigfix

Determine if an event meets the criteria for additional cyber hunt investigation and/or constitutes a security incident subject to investigation

Review audit logs and identify any unusual or suspect behavior'- Provide targeted attack detection and analysis, including the development of custom signatures and log queries and analytics for the identification of targeted attacks

Develop and execute custom scripts to identify host-based indicators of compromise

Provide advanced technical capabilities to senior leadership, including Big Data Analytics, and Predictive Intelligence

Provide proactive APT hunting, incident response support, and advanced analytic capabilities

Profile and track APT actors that pose a threat to the organization in coordination with threat intelligence support teams

Support the incident response process by providing advanced analysis services when requested to include recommending containment and remediation processes, independent analysis of security events, and reporting of identified incidents to Incident Handling (IH)

Provide all VA cyber task areas with actionable intelligence and serve as the threat dissemination hub

Basic Qualifications:

To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:

Bachelor's degree Computer Science, Information Systems Management, Engineer or related field with a minimum of 5 years of experience. 4years additional experience may be substituted for degree requirement.

Certification in one of the following (Security+, Network+, VA CSP, CISSP, C|EH) or 5 years of experience overrides certification requirement.

Must be able to obtain a Veterans Affairs High Security Investigation (VA BI)

Experience briefing C-level executives on current threat landscapes with future analytic predictions

Experience in cyber investigations and information gathering techniques

In depth understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards

Experience interpreting and implementing cyber security regulations

Excellent analytical and problem-solving skills

Preferred Qualifications:

Candidates with these desired skills will be given preferential consideration:

Knowledge in a public health environment.

Knowledge of VA culture, mission, and IT environment

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.