Sr Principal Cyber Systems Engineer (ISSE) bei Northrop Grumman
Northrop Grumman · Melbourne, Vereinigte Staaten Von Amerika · Onsite
- Senior
- Optionales Büro in Melbourne
Description
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.Northrop Grumman Aeronautics Systems has an opening for Sr. Cyber Information Systems Security Engineer to join our team of qualified, diverse individuals within our Aircraft Solutions organization. This role is located in Melbourne, FL.
We're looking for a highly motivated, team oriented, individual that understands cybersecurity and the importance to our mission. The candidate will be responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They will also help develop new designs and security strategies across cloud-based applications and Infrastructure as Code (IaC). The candidate will have hands-on deployment, integration, and configuration experience, and will act as a Cyber Subject Matter Expert (SME) to ensure compliance with the Risk Management Framework.
Responsibilities:
• Design, plan, and implement security tooling configurations to ensure compliance with NIST Special Publication (SP) 800-53, CNSSI 1253, and DoD RMF Knowledge Service guidance.
• Assess system security controls, validate the effective implementation of controls, identify vulnerabilities, and propose corrective measures.
• Document the results of Authorization and Accreditation (A&A) activities, prepare System Security Plans (SSPs), and maintain updated Plans of Action and Milestones (POA&Ms).
• Manage the implementation, automation, configuration, and maintenance of security tools, including centralized authentication solutions, IDS/IPS systems, and compliance baselines.
• Provide expert technical analysis of cybersecurity infrastructure challenges, developing innovative technical solutions tailored to customer requirements.
• Collaborate on technical reviews of requirements, as well as design and implementation plans prior to system deployment.
• Recommend and implement enhancements to security systems aimed at improving performance, reliability, and overall security posture, encompassing installation, upgrades, monitoring, troubleshooting, and configuration.
• Serve as an Information System Security Engineer (ISSE), leveraging advanced technical expertise to inform cyber engineering practices and ensuring adherence to cybersecurity disciplines such as COMSEC, COMPUSEC, EMSEC, OPSEC, and effective use of penetration tools and techniques.
Basic Qualifications:
• Must have a Bachelor’s degree with 9 years of relevant experience; or Master’s degree with 7 years of experience.
- Must have an active DoD Secret clearance or higher (with a background investigation completed within the last 6 years or currently enrolled into Continuous Evaluation)
Must have the ability to obtain and maintain Special Access Program (SAP) clearance within a reasonable amount of time as determined by business needs.
• Current DoD 8570 IAT Level II Certification (e.g., Security+ CE).
• Ability to clearly translate complex technical concepts and information for a variety of stakeholders.
• Strong understanding of the planning, design, and implementation processes necessary to support large enterprise systems.
• Working knowledge of NIST 800-37 RMF artifacts, including SSPs, Security Control Traceability Matrices (SCTMs), SARs, RARs, and other documentation.
• Hands-on experience deploying and configuring Linux and Windows systems per DoD STIG requirements.
• Expertise in configuring Security Incident Event Monitoring (SIEM) and IDS/IPS tools such as ACAS, HBSS, and Splunk within Linux RedHat and Windows environments.
• Familiarity with vulnerability and compliance scanning tools such as Tenable.SC and SCAP.
• Knowledge of Cross-Domain Solution (CDS) technology and compliance requirements.
• Experience designing, integrating, maintaining, and retiring systems within cloud environments.
• Proficiency in scripting security processes to establish consistent, automated baselines across multiple systems for redundancy and efficiency.
Preferred Qualifications:
• DoD 8570 IAT Level III Certification (e.g., CASP CE, CCNP, CISA, CISSP).
• Familiarity with DoD 8500-series and 8510.01 IA policy directives, including IATT and ATO requirements, and general approaches to cybersecurity.
• Exceptional communication (written and oral), negotiation, and interpersonal skills to effectively support ISSE initiatives and collaborate with engineering teams, management, clients, partners, and government stakeholders.
• Experience with next-generation security technologies including Dell, Cisco, Palo Alto, and other advanced networking equipment.
• Knowledge of Software Development Life Cycle (SDLC) processes and tools such as DOORS.
• Experience with cloud service providers like Azure and AWS, focusing on configuration, integration, and sustainability of cloud-based systems.
