Pr. Info Assurance Engineer/Sr. Pr. Info Assurance Engineer - Top Secret

Northrop Grumman Colorado Springs , CO 80928

Posted 3 weeks ago

Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you'll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today.

Job Summary

Northrop Grumman Space Systems has a new opportunity for an Information Assurance Engineer - Information System Security Officer (ISSO) to work on an exciting, fast-paced program. This position will work hand-in-hand with the customer as well as internal and external stakeholders across all program system security functions.

Job Duties/Responsibilities:

  • Work as part of an integrated team to architect, implement, and assess Risk Management Framework (RMF) cybersecurity requirements of networks and systems within the space domain, i.e., across ground, communications, and space segments

  • Utilize a combination of automated tools and manual methods to audit and monitor systems, identify potential vulnerabilities and assist in determining mitigation actions

  • Contribute to the preparation and maintenance of RMF body of evidence documentation

  • Create and track requests for hardware/software components and conduct security impact assessments of planned tech solutions

  • Participate in configuration control boards to assess and communicate potential security impacts of proposed technical, procedural or operational changes

  • Conduct system vulnerability scanning, patch management and flaw remediation activities on Windows and Linux operating systems and various hardware and software components, including those in virtualized environments

  • Work closely with system administrators to validate system patches and security relevant configuration changes are implemented correctly and functioning as intended

  • Perform information system continuous monitoring using established plans and checklists

  • Assist customer staff, program managers, subcontractors, and system operators with identifying resolving technical and non-technical security issues

  • Prepare and execute security control assessment procedures to verify conformance with Department of Defense (DoD), Intelligence Community, Special Access Program, and US Space Force security control requirements

Basic Qualifications:

  • Must have U.S. Citizenship with active or current Top Secret level security clearance

  • BS degree and minimum 5 years of IA or cybersecurity experience

  • DoD 8570 IAM or IASAE Level II certification;

  • Recent hands-on experience using Security Incident and Event Management (SIEM) and audit reduction tools

  • Recent hands-on experience with DISA Host Based Security System (HBSS) or DISA Endpoint Security Suite (ESS) solutions

  • Experience remediating, mitigating, and reporting cybersecurity vulnerabilities discovered through use of SIEM/audit tools and/or DISA Automated Security Compliance Assessment Solution (ACAS)

  • Experience with Security Technical Implementation Guide (STIG) implementation, use of the SCAP Compliance Checker (SCC) tool to conduct compliance scans, and documentation of deviations and mitigations

  • Excellent technical document preparation skills with a demonstrated ability to communicate with a variety of stakeholders ranging from technical staffers up to senior program managers

This position can be filled a level higher with a Bachelors Degree & 9 years IA or cybesecurity experience.

Preferred Qualifications:

Masters Degree & 4 years IA or cybersecurity experience

Prior work within the defense or aerospace industry

CISSP Certification

U.S. Citizenship with active or current Top Secret/SCI level security clearance

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Pr Information Assurance Engineer/Sr Pr Information Assurance Engineer Top Secret

Northrop Grumman

Posted 6 days ago

VIEW JOBS 10/14/2020 12:00:00 AM 2021-01-12T00:00 Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you'll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today. Job Summary Northrop Grumman Space Systems has a new opportunity for an Information Assurance Engineer - Information System Security Officer (ISSO) to work on an exciting, fast-paced program. This position will work hand-in-hand with the customer as well as internal and external stakeholders across all program system security functions. Job Duties/Responsibilities: * Work as part of an integrated team to architect, implement, and assess Risk Management Framework (RMF) cybersecurity requirements of networks and systems within the space domain, i.e., across ground, communications, and space segments * Utilize a combination of automated tools and manual methods to audit and monitor systems, identify potential vulnerabilities and assist in determining mitigation actions * Contribute to the preparation and maintenance of RMF body of evidence documentation * Create and track requests for hardware/software components and conduct security impact assessments of planned tech solutions * Participate in configuration control boards to assess and communicate potential security impacts of proposed technical, procedural or operational changes * Conduct system vulnerability scanning, patch management and flaw remediation activities on Windows and Linux operating systems and various hardware and software components, including those in virtualized environments * Work closely with system administrators to validate system patches and security relevant configuration changes are implemented correctly and functioning as intended * Perform information system continuous monitoring using established plans and checklists * Assist customer staff, program managers, subcontractors, and system operators with identifying resolving technical and non-technical security issues * Prepare and execute security control assessment procedures to verify conformance with Department of Defense (DoD), Intelligence Community, Special Access Program, and US Space Force security control requirements Qualifications: * Must have U.S. citizenship with active or curent Top Secret/SCI level security clearance * Bachelors Degree and minimum 5 years of IA or cybersecurity experience, preferably within the defense or aerospace industry * This position can also be filled a level higher with a Bachelors Degree & 9 years IA or cybersecurity experience. * Recent hands-on experience using Security Incident and Event Management (SIEM) and audit reduction tools * Recent hands-on experience with DISA Host Based Security System (HBSS) or DISA Endpoint Security Suite (ESS) solutions * Experience remediating, mitigating, and reporting cybersecurity vulnerabilities discovered through use of SIEM/audit tools and/or DISA Automated Security Compliance Assessment Solution (ACAS) * Experience with Security Technical Implementation Guide (STIG) implementation, use of the SCAP Compliance Checker (SCC) tool to conduct compliance scans, and documentation of deviations and mitigations * Excellent technical document preparation skills with a demonstrated ability to communicate with a variety of stakeholders ranging from technical staffers up to senior program managers Preferred Qualifications: * IASAE Level II certification (CISSP, CSSLP, or CASP CE) * Risk Management Framework RMF) experience * System auditing experience * DoD 8570 IAM or IASAE Level II certification; CISSP Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions. Northrop Grumman Colorado Springs CO

Pr. Info Assurance Engineer/Sr. Pr. Info Assurance Engineer - Top Secret

Northrop Grumman