Sr Principal Cyber Software Security Engineer Top Secret/SCI Required (Satellite/Space Systems)

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

The Senior Principal Cyber Software Security Engineer position is for a Cyber/Software Security Engineer for a Space Segment -focused program where the CSSA provides technical excellence for a new mission.  The core goal is delivering Cyber hardened software within space segment subsystems, components, and flight software.  Prior knowledge and experience applying Secure Coding Best Practices for complex systems in the early system development phase of the lifecycle is essential.  The qualified candidate will be responsible for Static and Dynamic security scanning of flight software.  Strong technical qualifications are required with demonstrated ability to work across functional organizations to improve software security on complex development efforts.

Additional Responsibilities:

• Working independently in a structured engineering environment, where to deploy Static and Dynamic security scanning tools within the software development environment and/or build stack.
• Execute processes to include ensuring Static Code Analysis (SCA) tool(s) (e.g. Fortify) findings are triaged and remediation activities prioritized; including allocating low risk/priority findings as technical debt in the SwDLC backlog.
• Defining programmatic Cyber guidance to shepherd software development scrum teams on secure coding practices, security-focused engineering trade studies, and other security best practices for our mission unique software development efforts.
• Ensuring the multi-disciplinary team are remediating security tool findings by working with software developers, systems engineers, and other engineering disciplines to resolve technical and programmatic cyber security concerns.  A demonstrated ability to work collaboratively and productively with others is an essential skill, as well as distilling and communicating technical cyber backlog (POA&Ms) to internal & external leaders.
• Supporting Cyber/SSE element technical presentations during engineering milestone reviews – SRR, PDR, CDR, and PSR in accordance with our internal Cyber Systems Engineering Standards document.  Emphasis is on providing Software Flaw Remediation statistics and status at these milestones.
• Working with cross-functional teams including developers, software quality assurance, program managers and other personnel to optimize technical risk against programmatic cost & schedule constraints.
• Championing automation efforts across all DevSecOps disciplines to routinely accomplish SCAP SCANs, developing and running mission unique software Verification Procedures and automating manual STIG check lists, where possible.

Basic Qualifications:

• Bachelors Degree in STEM field and 9 years IT security (Cybersecurity) experience in support of USG
• 9 years technical leadership experience
• Must have U.S. Citizenship with active or current TS/SCI Clearance
• CISSP or CLSSP Certification
• Familiarity with Systems Engineering processes and milestones; understanding of the requirements analysis, decomposition, and allocation process

Preferred Qualifications:

• 9 years Cyber/SSE experience in the Defense Aerospace Industry
• 5 years experience working within restricted program areas
• Demonstrated engineering leadership experience participating in Systems Engineering milestone reviews, as the software security assurance focal

#NOVASpace

Salary Range: $142,800 USD - $214,200 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.saferfederalworkforce.gov/contractors/.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.