Posted:
9/4/2024, 10:22:02 AM
Location(s):
Roy, Utah, United States ⋅ Utah, United States
Experience Level(s):
Expert or higher ⋅ Senior
Field(s):
IT & Security
Northrop Grumman Mission Systems is a trusted provider of mission-enabling solutions for global security. Our Engineering and Sciences (E&S) organization pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills and innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission!
Northrop Grumman Mission Systems Mission Defense Cyber Team has an opening for a Principal Cybersecurity Systems Engineer or Senior Principal Cybersecurity Systems Engineer (CSSE) supporting the Sentinel program based out of our Roy, UT campus. A Cybersecurity Systems Engineer (CSSE) assess/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine with clarity the system’s cybersecurity requirements to drive the built-in cybersecurity protections to the architecture and design. The CSSE also guides/supports the security layout / architecture and influences the security tools selection and development. The CSSE evaluates/assess the proposed and realized implementation to identify security risks and verify the cybersecurity protections from the design are realized and integrated. The CSSE guides/supports the development of verification efforts to ensure the cybersecurity protections / capabilities are functional, effective, and complete. A CSSE supports the definition of security governance, and risk management.
As a Cyber Systems Engineer on this team, you will have the following responsibilities:
Implement and review requirement decomposition, derivation, and flow down
Implement and review traceability of requirements throughout a spec tree architecture
Support the architecture and design of baked in cybersecurity requirements and protections
Implement and review traceability of requirements to the design & its models
Implement and review the application of cybersecurity profile stereotypes to a Model Based System Engineering (MBSE) Architecture
Provide cybersecurity system engineering implementation guidance and oversight to technical teams/implementers
Review and Assess stakeholder security objectives, protection needs and concerns, security requirements, and associated verification/validation methods
Implement, review and assess cybersecurity system requirements verification/validation methods
Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats
Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences
Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions
Author, support and maintain cybersecurity program documentation & RMF package documentation: Cybersecurity Strategies, System Security Plans, Continuous Monitoring Plans, Risk Assessment Report, Security Control Traceability Matrix, Plan Of Actions & Milestones, etc.
Perform other duties and directed.
This requisition may be filled as Principal Cybersecurity Systems Engineer or Senior Principal Cybersecurity Systems Engineer.
Basic Qualifications for a Principal Cyber Systems Engineer
Bachelor’s degree with 5+ years of experience, Master’s degree with 3+ years of experience, or a PhD with 0+ years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science, or 9+ years’ experience in a cyber systems engineering related fields in lieu of a degree.
Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle.
Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation.
Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37.
A current/active DoD Secret clearance.
Must be able to obtain and maintain a Top-Secret clearance.
Must be able to obtain and maintain Special Access (SAP) to the program.
In possession of a current IASAE II certification in accordance with DoDI 8140 or able to obtain within six months of hire.
Basic Qualifications for a Sr. Principal Cyber Systems Engineer
Bachelor’s degree with 8+ years of experience, Master’s degree with 6+ years of experience, or a PhD with 3+ years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science, or 12+ years’ experience in a cyber systems engineering related fields in lieu of a degree.
Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle.
Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation.
Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37.
A current/active DoD Secret clearance.
Must be able to obtain and maintain a Top-Secret clearance.
Must be able to obtain and maintain Special Access (SAP) to the program.
In possession of a current IASAE II certification in accordance with DoDI 8140 or able to obtain within six months of hire.
Preferred Qualifications Principal Cyber Systems Engineer and Sr. Principal Cyber Systems Engineer
System security architecture experience
Active/valid CISSP Certification
Experience working systems engineering activities utilizing tools such as IBM DOORS© and No Magic© CAMEO
Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs)
Familiarity with Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views and NIST SP 800-160
DoDI 8140 certification for IASAE III (ISSEP, ISSAP)
Experience with Agile methodologies
A current/active DoD Top Secret/SCI clearance
Previous experience in Software Assurance and/or Software Quality Assurance.
What We Can Offer You
Northrop Grumman provides a comprehensive benefits package and a work environment which encourages your growth and supports the mutual success of our people and our company. Northrop Grumman benefits give you the flexibility and control to choose the benefits that make the most sense for you and your family. Your benefits will include the following: Health Plan, Savings Plan, Paid Time Off and Additional Benefits including Education Assistance, Training and Development, 9/80 Work Schedule (where available), and much more!
Website: https://northropgrumman.com/
Headquarter Location: Falls Church, Virginia, United States
Employee Count: 10001+
Year Founded: 1994
IPO Status: Public
Last Funding Type: Grant
Industries: Data Integration ⋅ Manufacturing ⋅ Remote Sensing ⋅ Security ⋅ Software