Principal or Sr. Principal Cybersecurity Systems Engineer

Northrop Grumman Northrop Grumman · Aerospace · Roy, UT +4 · Cyber

Northrop Grumman is seeking a Cybersecurity Systems Engineer to implement weapon system requirements, ensure cyber survivability, and assess customer cybersecurity requirements. The role involves decomposing and refining system cybersecurity requirements, guiding security architecture and tool selection, evaluating implementations for security risks, and guiding verification efforts. The engineer will also support security governance and risk management, and ensure compliance with cybersecurity standards.

What you'd actually do

  1. Implement weapon system requirements to ensure cyber survivability attributes are implemented in system designs as it assesses/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine the system’s cybersecurity requirements at all levels to drive the built-in cybersecurity protections to the architecture and design.
  2. The CSSE also guides/supports the security layout / architecture and influences the security tools selection and development.
  3. The CSSE evaluates/assesses the proposed and realized implementations to identify security risks, attack surface, and verify the cybersecurity protections from the design are realized and integrated.
  4. The CSSE guides/supports the development of verification efforts to ensure the cybersecurity protections / capabilities are functional, effective, and complete.
  5. A CSSE supports the definition of security governance, and risk management.

Skills

Required

  • Systems Engineering principles
  • NIST 800-160 system security engineer
  • system development life cycle
  • system requirements decomposition/derivation/flow down/traceability
  • architecture
  • high-level/detail design
  • implementation
  • integration and test
  • verification & validation
  • RMF assessment authorization artifacts

Nice to have

  • Cybersecurity Engineering
  • Computer Engineering
  • Computer Science

What the JD emphasized

  • weapon system compliance with all contractually obligated cybersecurity standards and guidance, including but not limited to CNSSI 1253, DoD 8570, DoD 8510, and AFI 17-101
  • cyber-attack surface analysis
  • RMF assessment authorization artifacts