Posted:
8/28/2024, 8:23:44 AM
Location(s):
Bethpage, New York, United States ⋅ New York, United States
Experience Level(s):
Mid Level ⋅ Senior
Field(s):
IT & Security
At the heart of Defining Possible is our commitment to missions. In rapidly changing global security environments, Northrop Grumman brings informed insights and software-secure technology to enable strategic planning. We’re looking for innovators, who can help us keep building on our wide portfolio of secure, affordable, integrated, and multi-domain systems and technologies that fuel those missions. By joining in our shared mission, we will support yours of expanding your personal network and developing skills, whether you are new to the field or an industry thought-leader. At Northrop Grumman, you will have the resources, support, and team to do some of the best work of your career.
As an Information Systems Security Officer (ISSO) you will perform assessments of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
Supports obtaining certification and accreditation of systems. Includes support of security certification test, security documentation, as well as investigations, software research, hardware introduction and release. Assist in the implementation of the required government policy (i.e., NISPOM, DAAPM) and perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.
Responsibilities of the ISSO include, but are not limited to:
Ensuring systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security plan.
Verifying the implementation of delegated aspects of the system security program.
Ensuring all proper account management documentation is completed prior to adding and deleting system accounts.
Verifying all system security documentation is current and accessible to properly authorized individuals.
Conducting periodic assessments of authorized systems and providing the Information Systems Security Manager (ISSM) with corrective actions for all identified findings and vulnerabilities.
Ensuring audit records are collected and analyzed in accordance with the security plan.
Reporting all security-related incidents to the ISSM.
Execute the Continuous Monitoring Strategy
Basic Qualifications:
Master’s degree with 0 years of experience; OR a Bachelor's degree with 2 years of experience; OR an Associate’s degree with 4 years of experience; OR a High School Diploma/GED with 6 years of experience is required
Current DoD 8570 IAM level I (or higher) security certification (Examples: CND, Cloud+, Security+ CE)
Candidates must have a current DOD Secret level security clearance (at a minimum), to include a closed investigation date completed with the last 6 years in order to be considered
Must have the ability to obtain, and maintain, access to Special Programs as condition of continued employment
Preferred Qualifications:
The ideal candidate will have a Bachelor’s degree in Cyber Security, a Security+ CE, and 3 years of experience with Certification & Accreditation of classified systems under RMF (Risk Management Frameworks)
Knowledge of ACAS, NESSUS, SPLUNK, SCAP, POA&Ms, NIST, JSIG, system audits, vulnerability scanning, and/or RMF package development preferred
Current SAP/SAR access is preferred
We offer flexible work arrangements, phenomenal learning opportunities, exposure to a wide variety of projects and customers, and a very friendly team environment. Our Employee Resource Groups (ERGs) offer opportunities to be a friend, be active, be a volunteer, be a leader, be recognized, and to be yourself. At Northrop Grumman, we are on the cutting edge of innovation. Our diverse portfolio of programs means there are endless paths to cultivate your career. We also offer exceptional benefits/healthcare, a 9/80 work schedule, and a great 401k matching program. Come join us!
Website: https://northropgrumman.com/
Headquarter Location: Falls Church, Virginia, United States
Employee Count: 10001+
Year Founded: 1994
IPO Status: Public
Last Funding Type: Grant
Industries: Data Integration ⋅ Manufacturing ⋅ Remote Sensing ⋅ Security ⋅ Software