Cyber/Systems Security Engineer – Top Secret (Space/Satellite Systems)

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

This early career Cyber/Systems Security Engineering position performs System Security Engineering (SSE) tasks on Space Programs, with responsibilities across all system segments -- Space Segment, Communications Segment, Ground Segment, and in some cases User Segment.  This position requires Top Secret clearance and cybersecurity certifications. 

Duties of the position are working as part of an integrated product team (IPT) to support the following activities:

• Design, engineer, implement, and deliver solutions that satisfy cybersecurity criteria including NIST 800-37 Risk Management Framework (RMF) and its associated controls catalog NIST 800-53, including variations such as ICD-503 and/or JSIG.  Enhancements to these criteria to demonstrate CyberResilience and/or CyberSurvivability are also commonly required in support of: satellite systems, communications links, and ground command & control (C2) systems.  Applicants must demonstrated the aptitude to secure very complex systems, beyond internal test labs and other development enclaves.
• Allocating system-level requirements (commonly expressed as security controls), which includes working as part of the systems engineering team to decompose system-level security requirements across relevant Segments, Subsystems and down to specific Components.
• This allocation process includes requirements associated with secure program protection requirements across Systems Security Engineering specialty areas, or the following disciplines:  Software Security Assurance, TEMPEST, RED/BLACK Separation, COMSEC Key Management, and cryptographic component integration/development.  (There is limited exposure to these techniques in our internal, unclassified engineering labs.)
• Performing Attack Surface Analysis (ASA) and preparing Systems Security Plan (SSP) documentation for enclaves/environments that support development, integration & test of complex space systems, including Risk Assessment Reports (RAR), Security Control Traceability Matrices (SCTM), and Security Assessment Plans/Reports.
• Contributing to systems development activities, specifically hardening systems to meet secure baseline requirements, such as DISA STIGs or CIS Benchmarks, for Commercial, Off-The-Shelf (COTS) technologies.  And/or supporting, cognizant engineers in the hardening of custom-built hardware/software.
• Preparing and Executing assessment procedures to verify conformance with Commercial, Federal Civilian agency, Department of Defense (DoD), Intelligence Community, IA/Cyber security controls, and or survivability requirements, as required based on the specified customer/system requirements and risk threshold.
• Performing systems engineering, integration, and test activities for security-critical components, such as firewalls, anti-virus, HIDS/NIDS/HIPS, Cross Domain Solutions, cryptographic devices, and controlled interfaces.
• Conducting secure system maintenance activities as a privileged user, specifically but not limited to performing, routine audit log reviews, scanning for vulnerabilities, and confirming patches applied to COTS software.

Basic Qualifications:

• Bachelors Degree in any STEM (Science Technology Engineering Math) discipline
• 2 years IT security experience, in any federally regulated industry
• Implementing the Risk Management Framework (RMF) NIST 800-37 with NIST 800-53 controls, or NIST 800-171 for unclassified, corporate environments
• Securing complex systems composed of COTS HW/SW
• STEM-focused Masters Degree can substitute for experience
• Any DoD 8570 IT Security certification
• Must have US Citizenship with current or active Top Secret Clearance

Preferred Qualifications:

• Bachelors Degree in Electrical Engineering, Computer Science, or Aerospace Engineering
• 2 years Cyber Systems Engineering experience in the Defense Aerospace Industry
• Security requirements analysis and decomposition
• Hardening systems composed of both COTS and Custom HW/SW
• Exposure to national security requirements for classified systems
• CISSP Certification
• Demonstrated knowledge of Systems Engineering processes, applying security to embedded systems, engineering review milestones and SDLC

#VASpace

Salary Range: $85,000 USD - $127,400 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.saferfederalworkforce.gov/contractors/.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.