Smors Principal Cyber Systems Engineer

Northrop Grumman Colorado Springs , CO 80928

Posted 1 week ago

At Northrop Grumman we develop cutting-edge technology that preserves freedom and advances human discovery. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We continue to innovate with developments from launching the first commercial flight to space, to discovering the early beginnings of the universe. Our employees are not only part of history, they're making history.

No matter the assignment, Northrop Grumman is committed to being a leader in Cyber, Logistics and Modernization, Autonomous Systems, C4ISR, and Strike. For us, it's about more than just performing. It means realizing the values that define us: responsibility, trust, integrity and protecting freedom worldwide. These values inspire and unite our people- who make everything we do possible.

The Engineering & Sciences (E&S) organization pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills, innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission!

The Systems Engineering team at Northrop Grumman Mission Systems (NGMS) is looking for you to join our team as a Sustainment and Modernization of Radar Sensors (SMORS) Principal Cyber Systems Engineer at our Colorado Springs, CO campus. This position would be joining a team of multi-disciplined engineers to provide engineering solutions for 2-3 individual projects through the product development lifecycle.

Responsibilities include:

  • Perform assessment of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.

  • Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.

  • Assist in the implementation of the required government policy (i.e., NISPOM, NIST), making recommendations on process tailoring, participating in and documenting process activities.

  • Perform analyses to validate established cyber security controls and requirements, and to recommend additional overlays and cyber safeguards.

  • Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting accreditation.

  • Prepare artifacts supporting Certification and Accreditation activities and maintain the Plan of Actions and Milestones (POA&M).

  • Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed.

Additional Northrop Grumman Information:

Northrop Grumman has approximately 85,000 employees in all 50 states and in more than 25 countries, we strive to attract and retain the best employees by providing an inclusive work environment wherein employees are receptive to diverse ideas, perspectives and talents to help solve our toughest customer challenges: to develop and maintain some of the most technically sophisticated products, programs and services in the world.

Our Values. The women and men of Northrop Grumman Corporation are guided by Our Values. They describe our company as we want it to be. We want our decisions and actions to demonstrate these Values. We believe that putting Our Values into practice creates long-term benefits for shareholders, customers, employees, suppliers, and the communities we serve.

Our Responsibility. At Northrop Grumman, we are committed to maintaining the highest of ethical standards, embracing diversity and inclusion, protecting the environment, and striving to be an ideal corporate citizen in the community and in the world.

Basic Qualifications:

  • Bachelor's degree with 5 years of information assurance / cyber security experience; or 3 years' experience with a Master's degree; or 9 years in lieu of a degree

  • Active Secret clearance required to start

  • Current Security certification required to start

  • Security engineering skills with a working knowledge of Cyber Security technology, NIST standards, DoDI 8500.2 and NIST SP 800-53.

  • Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment.

Preferred Qualifications:

  • Experience creating and updating Python scripts

What We Can Offer You:

Northrop Grumman provides a comprehensive benefits package and a work environment that encourages your growth and supports the mutual success of our people and our company. Northrop Grumman benefits give you the flexibility and control to choose the benefits that make the most sense for you and your family. Your package will include the following:

  • Health Plan

  • Savings Plan

  • Paid Time Off

  • Additional benefits

  • Education Assistance

  • Training and Development

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Principal Cyber Engineer


Posted 2 days ago

VIEW JOBS 3/23/2019 12:00:00 AM 2019-06-21T00:00 What does it take to make the world a safer place? It takes delivering innovative technology and collaborating with some of the finest talent in the engineering field. Whether you're a software engineer or a mechanical engineer, at Raytheon you'll grow a varied and rewarding career. And you'll be supported with a comprehensive and competitive benefits package that promotes work/life. If you're ready to take on today's big challenges, discover a world of opportunity at Raytheon. * America's Best Large Employers by Forbes * Career & Development Opportunities * Full-time * Entry, Mid, Senior level Back to Job Navigation (Overview) Responsibilities Are you looking for an engineering career that is challenging and satisfying? Then join our Raytheon team of engineers solving problems that make the world a safer place and help to secure our great nation! Come support those who provide us with all the freedoms we enjoy. Join a company that Stands Out among their competitors. At Raytheon, We Stand Out for a lot of reasons – and our employees are behind every one of them. Click here to find out what they have to say about the work we do and who we do it: Raytheon Intelligence, Information and Services (IIS) is seeking an experienced Information Systems Security Engineer (ISSE) to join our team in support of the U.S. Air Force North American Aerospace Defense Command (NORAD) Cheyenne Mountain Complex Integrated Tactical Warning/Attack Assessment (NCMC-ITW/AA) Sustained Support Contract (NISSC). NISSC will provide accurate, timely, and unambiguous warning and attack assessment of Air, Missile, and Space threats with daily visibility of National Command Authority leaders including the President of the United States. As an Information Systems Security Engineer (ISSE), you will perform systems security engineering in support of new systems fielding's and upgrades to legacy space and ITW/AA programs in the Raytheon Consolidated Engineering Laboratory (RCEL) in Raytheon's Colorado Springs, CO facility and/or the Test Development Facility (TDF) located at Peterson AFB CO and NISSC operational locations. Position Responsibilities: * Analysis of cyber requirements and potential design solutions, providing guidance and direction related to security technologies, performing analysis on cybersecurity collected data and test results, identifying and implementing cybersecurity design, and preparing and maintaining engineering and security related documentation. * Performing and providing vulnerability assessment results and recommendations to the NISSC Program Engineer, Program Protection Lead and/or Systems Security and Accreditation section as necessary * Assessing known systems vulnerabilities and verifying system hardening and patching activities to ensure compliance with the most current applicable Security Technical Implementation Guides (STIGs)/Security Requirements Guides (SRGs) and related checklists * Document, implement and prioritize patching requirements across the organizational enterprise * Ensure scripts developed to automate the system installation of required patches and configurations to remediated identified system vulnerabilities meet/exceed governing IA/cyber requirements * Responsible for the identification and testing/assessment of patches to fix vulnerabilities in Windows, RHEL and Solaris operating systems and associated applications * Assist in conducting cybersecurity audits to ensure appropriate implementation and compliance of the security posture * Performing systems security engineering and test efforts associated with implementation of security controls on networking devices, databases, operating systems, hardware and software components * Developing vulnerability reports and investigating impact, resolution and verification of security vulnerabilities and patches as well as performing deep dive and impact analysis into failed patch deployments * Provide regular reporting on patch management program and overall operation status of patch compliance * Ability to support periodic travel (less than 5%) Clearance Requirement: Must be a U.S. CITIZEN with an Active Secret clearance and the ability to obtain a Top Secret clearance Required Experience, Knowledge and/or Skills: * Bachelor degree and at least 6+ years demonstrated engineering experience * Experience with cyber requirements analysis, rendering of cyber solutions/architectures, and associated planning and implementation support * Familiarity with creating, installing, and testing vulnerability fixes to Windows and Unix/Linux platforms * Experience with Linux and Windows system administration including installing and configuring systems from the OS level up * Familiarity with RHEL, Unix Scripting, and Windows PowerShell is required * Experience with scripting languages (developing, debugging and maintaining) * Experience developing secure applications that are compliant with DISA Security and Technical Implementation Guides (STIGs) * DoDI 8570.01-M IAT Level-II Certification or greater (e.g. Security+ CE, CISSP) with at least one supporting CE/OS certificate Desired Experience, Knowledge and/or Skills (not required but a plus): * Knowledge of the following is a plus: * VMWare systems administration and installing and configuring VMware * CISCO and Juniper firewall installation, configuration and administration * Experience with Information Assurance policies and procedures and the ability to apply IA requirements to an existing system * Knowledge of XML * Experience implementing DoD and Federal IA Authorization & Assessment (A&A) Processes, assessing and validating compliance with IA controls and developing and maintaining associated certification and Approval to Operate (ATO) documentation * Familiar with NIST Risk Management Framework as described in NIST Special Publication 800-37, 800-53 and CNSSI 1253 * Experience working U.S. Government contract proposals as an Information Assurance/ Information Security Engineering subject matter expert * Previous experience with design/implementation of Cloud-based solutions (Gov Cloud, AWS, Azure, etc.) and familiarization with application of FEDRAMP Common Control Criteria highly desired * Previous experience with the creation of vulnerability testing processes and security breach mitigation tactics * Previous experience/familiarity with TDM and TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.), and tactics, techniques and procedures for application and parsing of network protocols * Previous experience with the design/implementation, review and assessment of firewall, intrusion detection/intrusion prevention, SIEM, VPN, SSL, application controls, Antivirus, and other network component policies Education Requirements: 8 years with a BS in Science, Technology, Engineering, Mathematics or related technical degree; 6 years with a MS in Science, Technology, Engineering, Mathematics or related technical degree 131917 Business Unit Profile Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.1 billion in 2017 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business. Relocation Eligible No Clearance Type Secret - Current Expertise Cloud Computing Computer Engineering Cyber Jobs Engineering Technology Integration & Test Engineering Reliability Engineer Software Engineering Systems Engineering Test Engineering Type Of Job Full Time Work Location CO - Colorado Springs Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status. Raytheon Colorado Springs CO

Smors Principal Cyber Systems Engineer

Northrop Grumman