18957 - Sr Principal Cybersecurity Analyst

Northrop Grumman Northrop Grumman · Aerospace · Roy, UT +1 · Cyber

This role is for a Sr. Principal Cybersecurity Analyst at Northrop Grumman, focusing on managing cybersecurity programs for information systems, conducting audits, performing assessments, and driving compliance with government policies. The position requires a Top Secret clearance and involves managing the Assessment and Authorization (A&A) process, including Security Test and Evaluation (ST&E).

What you'd actually do

  1. Manage the cybersecurity program of all assigned information systems and execute all cybersecurity-related tasks.
  2. Conduct and lead regular reviews of system audits and continuous monitoring activities, covering all security controls and configurations, to enhance operational efficiencies of the information system security posture.
  3. Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
  4. Establish and oversee strict program control processes that mitigate risk and support system Assessment and Authorization (A&A).
  5. Lead the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.

Skills

Required

  • Master's degree with 6 years of relevant experience; OR a Bachelor's degree with 8 years of relevant experience; OR an Associate's degree with 10 years of relevant experience; OR a High School Diploma/GED with 12 years of relevant experience
  • U.S. Government 8140 requirements for a Senior Principal Cybersecurity Analyst
  • Current U.S. Government Top Secret Security clearance
  • Ability to obtain and maintain access to Special Access Programs

Nice to have

  • Bachelor’s degree in Cybersecurity or related field
  • Security+ CE
  • Experience in cybersecurity compliance (ex. Assessment & Authorization under RMF)
  • Top Secret, SAP/SAR access, SCI access, and/or a Polygraph
  • Knowledge of security tools such as ACAS, Nessus, Splunk, Trellix, and SCAP
  • Knowledge of security frameworks and documentation such as NIST, JSIG, DAAG, SSPs, POA&Ms, and SCTMs

What the JD emphasized

  • Top Secret Security clearance
  • U.S. Government 8140 requirements
  • Special Access Programs