Staff Cyber Systems Engineer

Northrop Grumman Northrop Grumman · Aerospace · San Antonio, TX +1 · Cyber

Northrop Grumman is seeking a Staff Cyber Systems Engineer to implement weapon system requirements, ensure cyber survivability, assess customer cybersecurity requirements, and guide security architecture and tool selection. The role involves evaluating implementations for security risks, guiding verification efforts, defining security governance, and supporting program milestones within an Agile, DevSecOps environment. Requires a Bachelor's degree with 12 years of experience in Systems Engineering, Computer Engineering, Computer Science, Cybersecurity Engineering, or related fields, experience with NIST 800-160, RMF documentation, an IASAE Level II certification (CISSP), and an active Secret clearance.

What you'd actually do

  1. implement weapon system requirements to ensure cyber survivability attributes are implemented in system designs
  2. assess/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine the system’s cybersecurity requirements at all levels to drive the built-in cybersecurity protections to the architecture and design
  3. guides/supports the security layout / architecture and influences the security tools selection and development
  4. evaluates/assesses the proposed and realized implementations to identify security risks, attack surface, and verify the cybersecurity protections from the design are realized and integrated
  5. guides/supports the development of verification efforts to ensure the cybersecurity protections / capabilities are functional, effective, and complete

Skills

Required

  • Systems Engineering
  • Computer Engineering
  • Computer Science
  • Cybersecurity Engineering
  • NIST 800-160 system security engineer
  • system development life cycle
  • RMF assessment and authorization documentation
  • DoD 8570 certification for IASAE Level II (CISSP)
  • Active Secret clearance

Nice to have

  • System security architecture experience
  • DOORS
  • CAMEO
  • Security related tool suite in DevSecOps pipeline (SonarQube, Fortify etc)
  • Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs))
  • IASAE Level III certification

What the JD emphasized

  • Active Secret clearance
  • IASAE Level II (CISSP)
  • weapon system compliance with all contractually obligated cybersecurity standards and guidance, including but not limited to CNSSI 1253, DoD 8570, DoD 8510, and AFI 17-101