Principal Cyber Information Systems Security Analyst

Northrop Grumman Boulder , CO 80301

Posted 5 months ago

Information Systems Security Professionals, We Want You!

Cyber assets everywhere are under siege from a wide spectrum of threats. Almost daily, these threats grow in sophistication, breadth and speed.

At Northrop Grumman, we take a holistic approach to cybersecurity, looking at the whole cyber landscape of people, processes and technology and the whole security realm of offense, defense, and exploitation. Thought leadership demands nothing less.

If you are an expert with classified computers within the Department of Defense (DoD) and Intelligence Community computing environments, Northrop Grumman Corporation has fantastic opportunities for your career growth.

We are seeking Information Systems Security Professionals across the country to support information systems lifecycle activities.

Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.

Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy, make recommendations on process tailoring, participate in and document process activities.

Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.

If you are ready to solve complex problems in a dynamic environment, apply today.

Principal Cyber Information Systems Security Analyst

Basic Qualifications:

  • Active Security Clearance Secret. (Last investigation within the last five years).

  • 5 years of relevant experience with Bachelors or 3 years relevant experience without a Master's degree.

  • Current IAM Level 2 Security Certification (CAP, CASP CE, CISM) or IAM DoD level 3 (CISM, GSLC and CISSP or CISSP Associate) or ability to obtain within 6 months of the start date

Preferred Qualifications:

  • 7 year relevant experience with Bachelor's degree and current IAM DoD level 3 Security certification (CSM, CISSP, GSLC, CCISO).
  • RMF & JSIG knowledge/experience.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.

For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Security Analyst Lll

Zayo Group

Posted 3 weeks ago

VIEW JOBS 11/21/2019 12:00:00 AM 2020-02-19T00:00 Company Description Zayo Group Holdings, Inc. (NYSE: ZAYO) provides communications infrastructure solutions, including fiber and bandwidth connectivity, colocation and cloud infrastructure to the world's leading businesses. Customers include wireless and wireline carriers, media and content companies, cloud providers, finance and professional services and other large enterprises. Zayo provides customers with flexible solutions and self-service through Tranzact, an innovative online platform for managing and purchasing bandwidth. Position Description The Cyber Security Analyst III is responsible for planning and implementing security measures to protect computer systems, networks, and data at Zayo. This role manages the Information Security program, including handling routine information security investigations, reporting, monitoring, and improvement efforts. A Security Analyst IlI at Zayo should be a technical resource for other team members to reference. A Security Analyst IlI should be proactive and a technical lead for the team. This includes, but is not limited to, architecting the plan for the associated areas of ownership, finding technical resources to implement the milestones from the areas of ownership, and ensuring that the vision of the associated area is fulfilled. Zayo expects all team members to be self-starters and to be able to tackle various areas within the corporate security program using their technical expertise and/or available resources in order to manage and mitigate any potential security risks. Responsibilities * Ensure that corporate security policies and controls are complied with and integrated into areas of ownership * Perform scanning, assessments, and risk mitigation of Zayo Corporate networks, systems, and services. * Support, enhance, and create automation for security monitoring and alerting. * Manage and support security applications. * Provide recommendations and standards for securing systems and services using industry standards for governance and risk. * Participate in and provide security awareness training globally Qualifications * 3-5 years' of practical experience in a Security Analyst or Security Administrator role * Experience in network security technologies such as firewalls, IDS/IPS, content filtering, DDoS mitigation, Data Loss Prevention, Network behavior monitoring and SIEM report generation * Experience administering endpoint protection including anti-virus, host IDS, and sandboxing * Experience with technical concepts like regular expressions, data normalization, coding, scripting, and correlation * Experience choosing and administering open source security and network solutions * Working knowledge of security frameworks and governing bodies such as the International Organization for Standardization (ISO) and the National Institute of Standards and Technology (NIST) * Excellent written and oral communications * Excellent problem-solving skills and ability to offer multiple solutions to technical and operational support challenges * Ability to document detailed procedures of the relevant security environment * Ability to execute and define the vision for the areas of ownership assigned within the Security organization * Can understand high-level security risks, governance, and compliance and apply this to the level of effort required to remediate the risk * Can understand the technical aspect and the business aspect of choosing security solutions * Can document and define the high-level architecture for security best practices and can explain security architecture to non-technical users * Willingness to mentor junior staff members Rewards * Competitive compensation * Excellent benefits including health, dental, vision, 401 (k), disability and life insurance * Fitness membership discounts * Generous paid time off policy including paid parental leave Zayo Group Boulder CO

Principal Cyber Information Systems Security Analyst

Northrop Grumman