Search All Jobs

Staff Cyber Systems Security Engineer RMF-Ops – Top Secret (Space/ Satellite Systems)

Requisition ID: R10083437

  • CategoryCategory: Engineering
  • LocationLocation: Colorado Springs, CO, USA
  • Citizenship RequirementsCitizenship Required: United States Citizenship
  • Security Clearance TypeClearance Type: SCI
  • TelecommuteTelecommute: No- Teleworking not available for this position
  • ShiftShift: Days (United States of America)
  • Travel RequirementsTravel Required: Yes, 10% of the Time
  • Number of Positions AvailablePositions Available: 1

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Northrop Grumman has an exciting opportunity for a Staff-level Cyber Systems Security Engineering (SSE) position is an experienced position that requires exceptional technical knowledge, advanced cybersecurity certification(s), and published cybersecurity accomplishments that are specific to securing Space Systems. Space Systems are comprised of multiple segments and this position has responsibilities across Space Segments, Communications Segments, and Ground Segments. Candidate must have demonstrated technical talents with a passion for sharing cybersecurity knowledge for securing national security space missions with junior staff.  This is a funded requisition for multiple National Security Space programs and requires personnel with fully vetted backgrounds (TS/SCI).  This leadership position is primarily responsible for the security architecture changes required during the Operations & Sustainment phase; however, knowledge of the complete Systems Development LifeCycle (SDLC) is essential for mission success.  This position requires a broad range of skillsets and interests, including defensive cyber operations, Cybersecurity Systems Engineering, and mentoring RMF ISSO through process improvement tasks.

 

Job Responsibilities:

  • Work as a staff-level Subject Matter Expert across multiple programs representing the Cyber domain within an integrated product team (IPT) to architect, implement, and execute Risk Management Framework (RMF) CyberSecurity, CyberResilience, and/or CyberSurvivability requirements of: satellite systems, communications links, and ground command & control (C2) systems.
  • Analyze decomposing, allocating, and implementing System Security Engineering requirements in support of satisfying program protection requirements, working with systems engineers, IPT leads, and others to decompose system-level security requirements across the segments and down to specific components, across disparate, SSE disciplines Anti-Tamper, TEMPEST, Cybersecurity (RMF), and cryptographic component integration/development.
  • Perform Attack Surface Analysis (ASA) and preparing Systems Security Plans (SSPs) documentation for complex space systems, including Risk Assessment Reports (RAR), Security Control Traceability Matrices (SCTM), and Security Assessment Reports.
  • Lead others in the exceptional execution of traditional ISSO responsibilities for complex mission systems, by maintaining all RMF deliverables and related artifacts.
  • Prepare and Execute assessment procedures to verify conformance with Commercial, Federal Civilian agency, Department of Defense (DoD), Intelligence Community, and/or Special Access Program, IA/Cyber security controls, and or survivability requirements, as required based on the specified customer/system requirements (or security controls).
  • Guide early career staff who maintain assessment procedures, leading the System Administrator and others required to execute both ConMon and re-authorization assessment events.
  • Design elegant security solutions, deployment approaches for efficient implementation, and assured verification of specific security components by performing systems engineering, integration, and test (SEIT) activities for security-critical components, such as Cross Domain Solutions, cryptographic devices, and controlled interfaces. Integrating legacy, stove-piped space mission ground systems and coordinating their migration to modern, enterprise-scalable, cloud-like ground environments.
  • Champion an Agile/KanBan engineering environment, where the Cybersecurity Engineers may assist in triage of Static Code Analysis (SCA) tool findings (e.g. Fortify) and assist in prioritizing the findings as technical debt in the SwDLC backlog.
  • Deploy security infrastructure and services for Mission Unique Software (MUS) in computing clouds and/or highly virtualized environments.
  • Oversee Certification To Field (CTF) assessment events for MUS deployments in clouds.
  • Execute CTF test cases for observation by customer cybersecurity representatives.
  • Coordinate the integration of Defensive Cyber Operations activities, including vulnerability scanning, remediation and patch management activities on Windows and RedHat Linux operating systems and various COTS/GOTS applications, including those within virtualized and/or cloud environments.
  • Oversee system security audit log reviews to identify suspicious and/or malicious activity.
  • Execute appropriate Incident Response procedure, as needed.
  • Document Standard Operating Procedures (SOPs), and when needed, performing (or contributing to) software patch installation, other flaw remediation, antivirus updates, and continuous monitoring (ConMon) activities. - Ensuring systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the system security plan (SSP), the authorization package, and/or customer-specific guidance.

 

Basic Qualifications:

  • Must have active Top Secret Security Clearance, with SCI, and DCID 6/4 eligibility.
  • MS Degree with 14 years of experience in IA/Cyber in the Defense-Aerospace industry or BS degree in STEM Science Technology Engineering Math with 16 years of IA/cybersecurity experience, in Defense-Aerospace industry.
  • Current DoD 8570 IASAE Level II certification.
  • Experience overseeing complex security infrastructure deployments on Space systems that leverage DISA Host Based Security System (HBSS) or Endpoint Security Suite (ESS) solutions.
  • Experience designing or operating systems/networks to use, or leadership experience with industry platform hardening practices, such as DISA Security Technical Implementation Guide (STIG) implementation, as well as documentation of deviations and mitigations.
  • Experience designing or operating systems/networks to use, or scanning, remediating, mitigating, and reporting cybersecurity vulnerabilities discovered through use of audit reduction tools and/or the DISA Automated Security Compliance Assessment Solution (ACAS) tool or Tenable NESSUS.
  • Technical leadership experience for staff conducting security log reviews.
  • Technical leadership experience implementing the RMF Assessment & Authorization (A&A) process from system categorization through continuous monitoring.
  • Excellent technical document preparation skills (SSP, SCTM, RAR, ASA, SOPs, POAMs) and related artifacts as required to satisfy security controls across all families.
  • Demonstrated ability to communicate with senior stakeholders ranging from technical staffers (CTO, CISO, and Engineering Directors) up to senior program managers (BU Director, VP, PM, O-6).

 

Preferred Qualifications:

  • Current CISSP-ISSAP, CISSP-ISSEP or equivalent IASAE level III certification.
  • Extensive experience applying the JSIG version of RMF to space systems.

 

# COSpace


Salary Range: $146,300 USD - $219,500 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.saferfederalworkforce.gov/contractors/.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.



Apply Now

Search All Jobs

What's great about
Northrop Grumman

  1. Be part of a culture that thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work.
  2. Use your skills to build and deliver innovative tech solutions that protect the world and shape a better future.
  3. Enjoy benefits like work-life balance, education assistance and paid time off.


Did you know?

Northrop Grumman leads the industry team for NASA’s James Webb Space Telescope, the largest, most complex and powerful space telescope ever built. Launched in December 2021, the telescope incorporates innovative design, advanced technology, and groundbreaking engineering, and will fundamentally alter our understanding of the universe.