RELOCATION ASSISTANCE: Relocation assistance may be available
CLEARANCE REQUIRED FOR START: Yes
CLEARANCE TYPE: Secret
TRAVEL: Yes, 10% of the Time
Description
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.
Northrop Grumman Mission Systems is a trusted provider of mission-enabling solutions for global security. Our Engineering and Sciences (E&S) organization pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills and innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission!
Northrop Grumman Mission Systems Mission Defense Cyber Team has an opening for a** Principal or Sr. Principal Cybersecurity Systems Engineer (CSSE) supporting the Sentinel program based out of Roy UT. **Other operating locations include Annapolis Junction, MD, San Antonio, TX, Redondo Beach, CA, Huntsville, AL, San Diego, CA, and Colorado Springs, CO.
A Cybersecurity Systems Engineer (CSSE) ensures cyber survivability attributes are implemented in system designs as it assesses/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine the system’s cybersecurity requirements at all levels to drive the built-in cybersecurity protections to the architecture and design. The CSSE also guides/supports the security layout / architecture and influences the security tools selection and development. The CSSE evaluates/assesses the proposed and realized implementations to identify security risks, attack surface, and verify the cybersecurity protections from the design are realized and integrated. The CSSE guides/supports the development of verification efforts to ensure the cybersecurity protections / capabilities are functional, effective, and complete. A CSSE supports the definition of security governance, and risk management.
Essential Duties:
- Implement and review cyber requirement decomposition, derivation, and flow down
- Implement and review traceability of cyber requirements throughout a spec tree architecture
- Support the architecture and design of baked in cybersecurity requirements and protections
- Implement and review traceability of cyber requirements to the design & its models
- Implement and review the application of cyber security profile stereotypes to a Model Based System Engineering (MBSE) Architecture
- Provide cybersecurity system engineering implementation guidance and oversight to technical teams/implementers
- Review and Assess stakeholder security objectives, protection needs and concerns, security requirements, and associated verification/validation methods
- Implement, review and assess cybersecurity system requirements verification/validation methods
- Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats
- Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences
- Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions
- Author, support and maintain cybersecurity program documentation & RMF package documentation: Cybersecurity Strategies, System Security Plans, Continuous Monitoring Plans, Risk Assessment Report, Security Control Traceability Matrix, Plan Of Actions & Milestones, etc.
- Perform other duties and directed.
This position can be filled at the Principal or Sr. Principal level.
Basic Qualifications for a Principal Cyber Systems Engineer
- Bachelor’s degree with 5 years, Master’s degree with 3 years, or a PhD with 1 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science, or 9 years’ experience in a cyber systems engineering related fields in lieu of a degree.
- In possession of a current IASAE II certification (CISSP preferred) in accordance with DoDI 8570 or able to obtain within six months of hire.
- Direct Experience utilizing NIST 800-160 system security engineer and the system development life cycle.
- Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation.
- Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37.
- US Citizenship is required
- Active Secret clearance to be considered
- The ability to obtain and maintain Top Secret Clearance with Special Access Program (SAP) approval.
Basic Qualifications for a Sr. Principal Cyber Systems Engineer
- Bachelor’s degree with 8 years, Master’s degree with 6 years, or a PhD with 4 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science, or 14 years’ experience in a cyber systems engineering related fields in lieu of a degree.
- In possession of a current IASAE II certification (CISSP preferred) in accordance with DoDI 8570 or able to obtain within six months of hire.
- Direct Experience utilizing NIST 800-160 system security engineer and the system development life cycle.
- Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation.
- Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37.
- US Citizenship is required
- Active Secret clearance to be considered
- The ability to obtain and maintain Top Secret Clearance with Special Access Program (SAP) approval.
.
Preferred Qualifications
- System security architecture experience
- Experience working systems engineering activities utilizing tools such as IBM DOORS© and No Magic© CAMEO
- Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs)
- Familiarity with Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, Cybersecurity Strategies, Information Support Plans, and NIST SP 800-160 process’.
- DoDI 8570 certification for IASAE III (ISSEP, ISSAP)
- Experience with Agile methodologies
- Active DoD Top Secret Clearance.
Primary Level Salary Range: $108,200.00 - $162,400.00
Secondary Level Salary Range: $135,000.00 - $202,600.00
The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.
Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.
Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.