Senior/Principal Cyber Systems Engineer
| Company | Northrop Grumman |
|---|---|
| Location | El Segundo, CA, USA |
| Salary | $121400 – $226700 |
| Type | Full-Time |
| Degrees | Bachelor’s, Master’s, PhD |
| Experience Level | Senior, Expert or higher |
Requirements
- Bachelor’s in STEM with 5 years of relevant experience, or Master’s in STEM with 3 years of relevant experience, or PhD with 0 years of relevant experience for Principal Cyber Systems Engineer
- Bachelor’s in STEM with 8 years of relevant experience, or Master’s in STEM with 6 years of relevant experience, or PhD with 3 years of relevant experience for Sr. Principal Cyber Systems Engineer
- Active TS/SCI required at the time of application
- Experience developing RMF assessment and authorization documentation
- Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs))
- Familiarity with Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, IT/Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views and related documentation IAW DoDI 5000.02, DoDI 5200.39, DODI 5200.44, DODD 5200.47E, DoDI 8500.01, DoDI 8510.01, and NIST SP 800-160
- DoD 8570 certification for IAM-III (CISSP, CISM, GSLC, CCISO) or IAT-III (GCIH, CISSP, CASP+, CCNP Security, CISA, GCED) requested to be earned within a 6 month period from start date
Responsibilities
- Propose and design systems architecture changes with traceability to requirements
- Provide implementation guidance and oversight to technical teams/implementer
- Review and Assess stakeholder security objectives, protection needs and concerns, security requirements, and associated validation methods
- Review and Assess system security requirements and associated verification methods per RMF standards
- Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats
- Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences
- Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions
- Author and maintain critical program documents such as Cybersecurity Strategies, System Security Plans, Continuous Monitoring Plans, Security Assessment Plans, etc
- Customization for customer needs and explaining in layman terms
Preferred Qualifications
- DoD 8570 certification for IAM-III (CISSP, CISM, GSLC, CCISO) or IAT-III (GCIH, CISSP, CASP+, CCNP Security, CISA, GCED)
- Experience working with eMASS and/or Xacta
- Familiarity with supplemental security control guidance, such as JSIG and/or ICD 503
- 5+ years of system engineering and/or system security engineering experience
- Hosted payload and satellite integration experience, including ground-system security architecture preferred