Northrop Grumman Cyber Systems Engineer 3 in Colorado Springs, Colorado

Northrop Grumman Mission Systems is currently seeking a Cyber Systems Engineer 3 to work as part of a team of multi-discipline engineers to provide engineering solutions for 2-3 individual projects through the product development lifecycle. This position will be located in Colorado Springs, CO.

Northrop Grumman Corporation is a leading global security company providing innovative systems, products, and solutions in unmanned systems, cybersecurity, C4ISR, and logistics and modernization to government and commercial customers worldwide.

Responsibilities include:

  • Performing assessments of systems and networks within the networking environment and identifying where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.

  • Establishing strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.

  • Assisting in the implementation of the required government policy (i.e., NISPOM, NIST), making recommendations on process tailoring, participating in and documenting process activities.

  • Performing analyses to validate established cyber security controls and requirements, and to recommend additional overlays and cyber safeguards.

  • Supporting program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting accreditation.

  • Preparing the artifacts supporting Certification and Accreditation activities and maintaining the Plan of Actions and Milestones (POA&M).

  • Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed.

MSCOMSTR

Basic Qualifications:

  • Bachelor’s degree in science, engineering or related discipline with 5 years of information assurance / cyber security experience; or 3 years’ experience with a Master’s degree in science, engineering or related discipline; or 9 years in lieu of a degree

  • Active Secret clearance

  • Security engineering skills with a working knowledge of Cyber Security technology, NIST standards, DoDI 8500.2 and NIST SP 800-53.

  • Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment.

Preferred Qualifications:

  • Experience creating and updating Python scripts

  • Experience with ClearQuest and ClearCase

  • Desired experience with Windows and Linux servers

  • Implementation and management of GPOs in conjunction with IAVMs and STIGs

  • DoDI 8570 certification (GSEC, Security+, SCNP, SSCP) or higher.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.