Sr/Pr Cyber Engineer: Cryptographic Module Validation
| Company | Northrop Grumman |
|---|---|
| Location | Dulles, VA, USA |
| Salary | $118000 – $177000 |
| Type | Full-Time |
| Degrees | Bachelor’s, Master’s, PhD |
| Experience Level | Senior |
Requirements
- BS degree in engineering (Electrical Engineering preferred) with 5 years of experience (or Masters degree with 3 years, or PhD). Experience can be considered in lieu of degree
- US Citizen with active Top Secret security clearance and SCI/DCID 6/4 eligibility required at time of application
- Current DoD 8570 IASAE Level II certification (CISSP preferred)
- Experience preparing Key and Certificate Management Plans for complex national security systems
- Working knowledge of COMSEC and TRANSEC applications, ideally within space systems
- Experience executing the RMF process from system categorization through continuous monitoring.
Responsibilities
- Providing Cryptographic module certification/approval guidance to program engineering leadership, based on expertise with FIPS-140 validation labs (and governing processes) and/or NSA approval processes for national security crypto implementations.
- Preparing Key Management specifications and plans leveraging NSA key management infrastructure (KMI) with approved approaches towards implementing over the air rekeying or over the network rekeying (OTAR/OTNK).
- Preparing System TRANSEC Plan (STP) in accordance with CNNSP-31 and CNSSI-1031.
- Working as part of an integrated product team (IPT) to architect, implement, and satisfy Risk Management Framework (RMF) CyberSecurity, CyberResilience, and/or CyberSurvivability requirements of satellite communications links and related ground stations (aka teleports).
- System Security Engineering requirements management in support of program protection (PP) requirements, working with systems engineers to decompose system-level security controls into technical performance requirements across the segments and down to specific components, across disciplines Anti-Tamper, TEMPEST, Cybersecurity (RMF), and cryptographic component integration/development.
- Robust understanding of RED/BLACK segregation and TEMPEST requirements for complex systems.
- Architecting Cross Domain Solutions for systems requiring multiple security classification levels.
- Performing Attack Surface Analysis (ASA) and preparing Systems Security Plan (SSP) documentation for complex space systems, including Risk Assessment Reports (RAR), Security Control Traceability Matrices (SCTM), Security Assessment Procedures, and POA&Ms.
- For space segments, the Principal Cyber SSE supports design and implementation of space vehicle hardening, for embedded processors and flight software. Experience with real-time operating systems, secure coding best practices, or other mission critical operational systems is required.
- Preparing and Executing assessment procedures to verify conformance with Commercial, Federal Civilian agency, Department of Defense (DoD), Intelligence Community, and/or Special Access Program, Cyber/SSE security controls, and or survivability requirements, as required based on the specified customer/system requirements.
- Leverage excellent technical document preparation skills to communicate with a variety of stakeholders ranging from technical staffers up to senior program managers.
Preferred Qualifications
- MS degree in Electrical, Systems, or Aerospace Engineering
- Current CISSP-ISSEP or CISSP-ISSAP
- Experience executing any crypto certification/approval/validation process for federal applications
- 7 years of IA/cybersecurity experience, with at least 3 of those within the SAP community in the defense aerospace industry
- Experience with NSA crypto certification for national security applications is a plus.