Classified Cybersecurity Analyst

Northrop Grumman Northrop Grumman · Aerospace · Linthicum Heights, MD +1 · Cyber

Northrop Grumman is seeking a Classified Cybersecurity Analyst to support information system lifecycle activities, including system audits, continuous monitoring, security control assessments, and Risk Management Framework (RMF) processes. The role requires a strong understanding of cybersecurity principles and compliance, with a focus on maintaining system security posture and supporting A&A activities. A U.S. Government Secret security clearance is mandatory.

What you'd actually do

  1. Conduct system audits and continuous monitoring activities, covering all security controls, configurations, and operational processes to evaluate the security posture of the information systems.
  2. Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
  3. Assist in the implementation of the required government policy, make recommendations on process tailoring, and participate in and document process activities.
  4. Work within strict program control processes to ensure mitigation of risks and support the Assessment and Authorization (A&A) of systems; this will include process support, analysis, coordination, security certification testing, security documentation, investigations, software research, hardware introduction and release, emerging‑technology research, inspections, and periodic audits.
  5. Document the results of A&A activities and technical/coordination activities, and prepare the Risk Management Framework body of evidence.

Skills

Required

  • Master’s degree with 0 years of experience, or a Bachelor's degree with 2 years of experience, or an Associate’s degree with 4 years of experience; a High School Diploma/GED with 6 years of experience may be considered in lieu of a completed degree.
  • U.S. Government 8140 requirements for a Cybersecurity Analyst – Security+, or be able to obtain the required certification within 6 months of hire date
  • current U.S. Government Secret security clearance (at a minimum), to include a closed investigation date completed within the last 6 years OR must be enrolled in the U.S. Government Continuous Evaluation (CE) Program
  • ability to obtain and maintain access to Special Access Programs

Nice to have

  • Bachelor’s degree in Cybersecurity or related field.
  • Current Security+ CE certification.
  • Experience in cybersecurity compliance (ex., Assessment & Authorization under RMF).
  • U.S. Government Top Secret security clearance, SAP/SAR access, SCI access, and/or a Polygraph.
  • Knowledge of security tools such as ACAS, Nessus, Splunk, Trellix, and SCAP.
  • Knowledge of security frameworks and documentation such as NIST, JSIG, DAAG, SSPs, POA&Ms, and SCTMs.
  • Prior system administrator experience.

What the JD emphasized

  • U.S. Government 8140 requirements for a Cybersecurity Analyst – Security+
  • current U.S. Government Secret security clearance
  • Special Access Programs