Principal Cyber Systems Engineer (Space/Satellite Systems)

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

This experienced position for a Principal Cyber Systems Engineer who executes System Security Engineering tasks in support of Space Programs, with responsibilities across all system segments -- Space Segment, Communications Segment, Ground Segment, and in some cases User Segment.  This position is based in our Gilbert, Arizona facility and is initially focused on securing internal space vehicle test laboratories, Integration & Test environments, Research & Development environments.  While this initial work is unclassified, the successful application must have US citizenship along with suitability and interest in obtaining a TS/SCI clearance.  This is an early/mid -career position that is intended to transition into a classified Space Vehicle -focused Cyber/Systems Security Engineering (CSSE) role.  Performing Cyber engineers are responsible for hardening our space systems that are designed, manufactured, and delivered to customers, including the following tasks.

• Documenting FARS/DFARS compliance for off-network development labs in Information System Security Plans (ISSPs) using RSA Archer to demonstrate CMMC alignment per NIST 800-171. 
• Working as part of an integrated product team (IPT) to architect, implement, and deliver solutions that satisfy cybersecurity criteria including NIST 800-37 Risk Management Framework (RMF) and its associated controls catalog NIST 800-53, including variations such as ICD-503 and/or JSIG.  Enhancements to these criteria to demonstrate CyberResilience and/or CyberSurvivability are also commonly required in support of: satellite systems, communications links, and ground command & control (C2) systems.  Applications must demonstrated the ability to secure very complex systems, beyond internal test labs and other development enclaves.
• Allocating system-level requirements (commonly expressed as security controls), which includes working as part of the systems engineering team to decompose system-level security requirements across relevant Segments, Subsystems and down to specific Components.
• This allocation process includes requirements associated with secure program protection requirements across Systems Security Engineering specialty areas, or the following disciplines:  Software Security Assurance, TEMPEST, RED/BLACK Separation, COMSEC Key Management, and cryptographic component integration/development.  (There is limited exposure to these techniques in our internal, unclassified engineering labs.)
• Performing Attack Surface Analysis (ASA) and preparing Systems Security Plan (SSP) documentation for enclaves/environments that support development, integration & test of complex space systems, including Risk Assessment Reports (RAR), Security Control Traceability Matrices (SCTM), and Security Assessment Plans/Reports.
• Contributing to systems development activities, specifically hardening systems to meet secure baseline requirements, such as DISA STIGs or CIS Benchmarks, for Commercial, Off-The-Shelf (COTS) technologies.  And/or supporting, cognizant engineers in the hardening of custom-built hardware/software.
• Preparing and Executing assessment procedures to verify conformance with Commercial, Federal Civilian agency, Department of Defense (DoD), Intelligence Community, IA/Cyber security controls, and or survivability requirements, as required based on the specified customer/system requirements and risk threshold.
• Performing systems engineering, integration, and test activities for security-critical components, such as firewalls, anti-virus, HIDS/NIDS/HIPS, Cross Domain Solutions, cryptographic devices, and controlled interfaces.
• Conducting secure system maintenance activities as a privileged user, specifically but not limited to performing, routine audit log reviews, scanning for vulnerabilities, and confirming patches applied to COTS software.

Basic Qualifications:

• Bachelor's Degree in STEM Science Technology Engineering Math
• 5 years Industry experience can substitute for Bachelor's Degree
• 5 years IT security experience, any federally regulated industry performing:
• Implementing the Risk Management Framework (RMF) NIST 800-37 using NIST 800-53 controls in unclassified environments  (alternatively using the NIST 800-171 for CMMC compliance)
• Securing systems composed of COTS HW/SW
• STEM-focused Masters Degree can substitute for experience.
• Any DoD 8570/8140 IT Security certification
• Must have U.S. Citizenship with the ability to obtain a Top Secret Claearance

Preferred Qualifications:

• Bachelor's Degree in Electrical Engineering, Computer Science, or Aerospace Engineering
• 5 years Cyber Systems Engineering experience in the Defense Aerospace Industry performing:
• Security requirements analysis and decomposition
• Hardening systems composed of both COTS and Custom HW/SW
• Exposure to national security requirements for classified systems.
• CISSP Certification
• Active DoD security clearance, at any level, or USG position of public trust.
• Demonstrated knowledge of Systems Engineering processes, applying security to embedded systems, engineering review milestones and SDLC

# AZSpace

Salary Range: $99,500 USD - $149,300 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.saferfederalworkforce.gov/contractors/.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.