Principal Classified Cybersecurity Analyst - Top Secret

Northrop Grumman Northrop Grumman · Aerospace · Colorado Springs, CO +1 · Cyber

This role is for a Principal Classified Cybersecurity Analyst at Northrop Grumman, focusing on conducting system audits, continuous monitoring, and assessments to evaluate and improve the security posture of information systems. Responsibilities include implementing government policy, managing program control processes for Assessment and Authorization (A&A), supporting Security Test and Evaluation (ST&E), and documenting results for the Risk Management Framework.

What you'd actually do

  1. Conduct system audits and continuous monitoring activities, covering all security controls, configurations, and operational processes to evaluate the security posture of the information systems.
  2. Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
  3. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
  4. Assist in the implementation of the required government policy, make recommendations on process tailoring, participate in and document process activities.
  5. Establish strict program control processes to ensure mitigation of risks and support the Assessment and Authorization (A&A) of systems. This includes process support, analysis, coordination, security certification testing, security documentation, investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.

Skills

Required

  • Master’s degree with 3 years of relevant technical experience; OR a Bachelor's degree with 5 years of relevant technical experience; OR an Associates degree with 7 years of relevant technical experience; OR a High School Diploma/GED with 9 years of relevant technical experience
  • US Government 8140 (8570 equivalent) IAM level II (or higher) certification requirements (examples: CAP / CGRC, CASP+/SecurityX, CCISO, HCISPP, CISM, GSLC, CISSP-Associate, or CISSP)
  • Current US Government Top Secret level security clearance
  • Ability to obtain, and maintain, SCI access

Nice to have

  • Bachelor’s degree in Cybersecurity or related field and 6 years of ISSO experience supporting SCI or JSIG environments
  • Security+ CE
  • Experience in cybersecurity compliance (ex. Assessment & Authorization under RMF)
  • Current SCI access, and/or a Polygraph
  • Knowledge of security tools such as ACAS, Nessus, Splunk, Trellix, and SCAP
  • Knowledge of security frameworks and documentation such as NIST, JSIG, DAAG, SSPs, POA&Ms, and SCTMs

What the JD emphasized

  • Top Secret
  • SCI access
  • 8140 (8570 equivalent) IAM level II (or higher) certification requirements