Sentinel Sr Principal Engineer Devops - 18952

Northrop Grumman Northrop Grumman · Aerospace · Roy, UT +1 · Software

Northrop Grumman Defense Systems is seeking a Sr Principal Engineer DevOps Engineer for the Sentinel program. The role focuses on defining, governing, and validating the security posture of the Digital Ecosystem (DE), including enterprise-level security decisions, AT strategy, Cybersecurity architecture, Program Protection, exportability, supply-chain assurance, and survivability. The engineer will lead the DE MDT, own the DE Security Architecture, drive RMF & Compliance, integrate security into the software lifecycle, mentor engineers, ensure supply chain integrity, lead incident response, and collaborate across disciplines. Experience with AWS, Atlassian tools, automation, and DoD environments is required. Familiarity with AI/ML model governance is preferred.

What you'd actually do

  1. Build & Lead the DE MDT – Recruit a balanced mix of software security analysts, platform engineers, and cyber operations specialists; define roles, responsibilities, and career pathways.
  2. Own the DE Security Architecture – Design a resilient, modular security framework for mission-engineering applications like the software factory, DaaS, and AI/ML services and collaboration tools; map controls to NIST/DoD standards and ensure they are reflected in SysML models.
  3. Drive RMF & Compliance – Lead the end to end RMF process, produce System Security Plans (SSPs), Security Assessment Plans (SAPs), and POA&Ms, and act as the primary liaison with the system ISSM and compliance teams.
  4. Integrate Security into the Software Lifecycle – Embed secure coding standards, automated scanning, and continuous monitoring into CI/CD pipelines; champion “security as code” practices. Ensure software architecture and designs have security baked-in.
  5. Mentor & Upskill – Conduct threat modeling workshops, secure development bootcamps, and platform hardening sessions; guide junior engineers in applying MBSE security stereotypes and traceability techniques.

Skills

Required

  • Bachelor’s Degree with 8 years of relevant experience, or a Masters’ Degree with 6 years of relevant experience, or a PhD with 4 years of relevant experience or 4 additional years in lieu of a degree.
  • Ability to obtain and maintain a U.S. Government DoD Secret security clearance.
  • Experience using Amazon Web Services, including using AWS native services (Cloud Formation, S3, etc.)
  • Experience with multiple Cloud service platforms (Commercial and Government)
  • Experience with the full Atlassian tool suite (Confluence, JIRA, GIT, Crucible, FishEye, Crowd).
  • Experience developing builds in Maven, including MAVEN profiles.
  • Ability to automate software builds and releases via Maven & Nexus.
  • Experience with automation/configuration management using either Ansible, Chef or an equivalent
  • Experience with developing formal builds within the DoD industry.
  • Experience with VMware infrastructure and automation

Nice to have

  • Active DoD Top Secret clearance
  • SysML modeling (Cameo, Enterprise Architect) and application of cybersecurity profile stereotypes.
  • Experience with cyber test automation tools (e.g., OpenSCAP, Snyk, Burp Suite, Metasploit).
  • Proven record of implementing DevSecOps pipelines (GitLab CI, Jenkins, Azure DevOps) with automated policy as code.
  • Experience delivering MOSA based platforms and integrating open source components securely.
  • Hands on execution of the DoD Risk Management Framework (categorization ? continuous monitoring).
  • Familiarity with AI/ML model governance (ML Ops security, data provenance, model poisoning)

What the JD emphasized

  • Must have the ability to obtain and maintain a U.S. Government DoD Secret security clearance at time of application, current and within scope, with an ability to obtain and maintain Special Access Program (SAP) approval within a reasonable period of time, as determined by the company to meet its business need.
  • AI/ML services
  • AI models
  • ML Ops security
  • model provenance
  • model poisoning