Principal/Sr Principal Cybersecurity Analyst/ISSO

RELOCATION ASSISTANCE: Relocation assistance may be available

CLEARANCE TYPE: Secret

TRAVEL: Yes, 25% of the Time

Description

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

The Payload and Ground Systems organization within the Northrop Grumman Space Systems pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills, innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission.

As a Principal/Sr Principal Cybersecurity Analyst/ISSO, you will be developing systems using current technologies and others yet to come. We are seeking team members who have a thirst for knowledge, approach each day with optimism, and have a relentless drive to solve complex problems. Creativity and innovation are imperative for this role, because at Northrop Grumman, many of the problems we work on are impossible… until they’re not. This position will be based in our Colorado Springs facility.

The Engineering organization pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills, innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission!

Job responsibilities will include, but not be limited to, the following:

• Perform assessments of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations or policies.

• Developing, maintaining, and overseeing the system security program and policies for their assigned area of responsibility.

• Ensuring compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.

• Maintaining a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.

• Certifying to the AO, in writing, that the requirements and implementation procedures listed within the security plan follow the NISPOM, NIST SP 800-53, and DAAPM.

• Implementing security controls to protect the system, in coordination with system stakeholders.

• Conducting periodic assessments of authorized systems and ensuring corrective actions are taken for all identified findings and vulnerabilities.

• Possessing sufficient experience, commanding adequate resources, and being organizationally aligned to ensure prompt support and successful execution of a robust system security program.

• Coordinate all associated Assessment and Authorization activities, which includes all RMF Body of Evidence (BOE) documentation: System Security Plan (SSP), Security Controls Traceability Matrix (SCTM), Control Family Security Operating Plans (SOPs), Continuous Monitoring (ConMon) Plan, Plan of Actions and Milestones (POA&M), etc.

• Creating, Submitting, Monitoring, and Maintaining: ATC, IATT, ATO, MOU.

This position requires being onsite and does not support remote or hybrid work. 

This requisition may be filled at a higher job grade based on the qualifications listed below.

This requisition may be filled as either a Principal or Sr. Principal Cybersecurity Analyst/ISSO.

Basic Qualifications for a Principal Cybersecurity Analyst/ISSO:

• 5 Years of relevant experience with a completed Bachelor's degree; 3 Years of relevant experience with a completed Masters's degree; 0 Years of relevant experience with a completed PhD; An additional 4 years of relevant work experience may be considered in lieu of a completed degree (High School diploma or equivalent is required with additional experience)

• Must have an Active Secret DoD security clearance at time of application [US Citizenship required]

• Must be able to obtain a Top-Secret DoD clearance as per business need

• Must have a current DoD 8570 IAM Level II (or higher) security certification (examples: CISM, CISSP, GSLC, CCISO)

• Experience with eMASS

• Experience creating, submitting, monitoring and maintaining: ATC, IATT, ATO, MOU

• Knowledge of RMF package development

Basic Qualifications for a Sr. Principal Cybersecurity Analyst/ISSO:

• 8 Years of relevant experience with a completed Bachelor's degree; 6 Years of relevant experience with a completed Masters's degree; 4 Years of relevant experience with a completed PhD; An additional 4 years of relevant work experience may be considered in lieu of a completed degree (High School diploma or equivalent is required with additional experience)

• Must have an Active Secret DoD security clearance at time of application [US Citizenship required]

• Must be able to obtain a Top-Secret DoD clearance as per business need

• Must have a current DoD 8570 IAM Level II (or higher) security certification (examples: CISM, CISSP, GSLC, CCISO)

• Experience with eMASS

• Experience creating, submitting, monitoring and maintaining: ATC, IATT, ATO, MOU

• Knowledge of RMF package development

Preferred Qualifications:

• Current Top-Secret clearance

• Bachelor’s degree in Cybersecurity and 4 years of experience with Certification and Accreditation of classified systems and Risk Management Framework

• Previous ISSM experience

• Knowledge of ACAS, Nessus, SCAP, STIGs, SIEM, system audits, vulnerability scanning

• Experience in an Agile environment

• Linux experience

Salary Range: $100,300.00 - $150,500.00Salary Range 2: $124,900.00 - $187,300.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.