BPP Cybersecurity Lead

Company: Northrop Grumman
Location: Colorado Springs
Posted on: August 6, 2022

Job Description:

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

The Payload and Ground Systems organization within the Northrop Grumman Space Systems pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills, innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission.

As a Cyber Systems Engineer, you will be developing and sustaining systems using current technologies and others yet to come. We are seeking team members who have a thirst for knowledge, approach each day with optimism, and have a relentless drive to solve complex problems. Creativity and innovation are imperative for this role, because at Northrop Grumman, many of the problems we work on are impossible... until they're not.

Northrop Grumman's Space Systems Sector is seeking applicants for a position on the Sustainment and Modernization of Radar Sensors(SMORS) program as a Sr. Principal Cyber Systems Engineer serving as Cybersecurity Lead for the Ballistic Missile Early Warning System (BMEWS) PAVE Phased Array Warning System (PAWS) (BPP). This position will be located in Colorado Springs, CO, and some travel may be required.

What You'll Get to Do:

• Report directly to the BPP Weapon System Chief Engineer/Manager relating to all aspects of cybersecurity to improve the cybersecurity posture of the WS
• Brief the government Program Manager (PM) on progress of cybersecurity and risk/impacts to the WS - Participate within an Agile environment, meeting in regular scrums, and developing stories to move the WS's cyber posture forward.
• Lead/host the bi-weekly WS Cyber Integrated Project Team(IPT) and quarterly Cybersecurity Working Groups (CWG) with the government cyber team.
• Lead WS assigned cyber personnel in performing assessments of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using Security Technical Implementation Guide (STIG) Viewer, Security Content Automation Protocol (SCAP), Xylok, etc and active evaluations such as vulnerability assessments utilizing Assured Compliance Assessment Solution (ACAS).
• Establish/adhere to strict program control processes to ensure mitigation of risks and supports obtaining Assessment and Authorization (A&A) of systems.
• Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization.
• Assist the program test team in identifying where cybersecurity requirements may be inhibiting mission requirements and develop/recommend solutions that balances the overall risk to the system and mission requirements.
• Assist in the implementation of the required government policy (i.e., NISPOM, NIST), making recommendations on process tailoring, participating in and documenting process activities.
• Perform assessments of non-technical Risk Management Framework (RMF) artifacts received as Government Furnished Information (GFI), identify where those artifacts deviate from RMF control requirements, and draft Deficiency Reports (DR).
• Lead the cybersecurity analysis and draft Courses of Action (COA) for government approval. This is achieved through a thorough understanding of routing and switching, firewalls, IP, timing sources, and other cybersecurity technologies. - Manage/Perform "lock-down" of systems to include STIG settings, patch updates, Information Assurance Vulnerability Alerts (IAVA), Information Assurance Vulnerability Bulletins (IAVB), Time Compliance Network Orders (TCNO), and Time Compliance Technical Orders (TCTO).
• Perform analyses to validate established cybersecurity controls and requirements and recommend cybersecurity safeguards.
• Oversee/prepare/update eMASS Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, and Plan of Actions and Milestones (POA&M) supporting regular updates to eMASS packages and Continuous Monitoring activities.Northrop Grumman offers a competitive and robust benefits program. As an employee of Northrop Grumman, you are eligible for our robust benefits package which including: - Medical, Dental & Vision coverage - 401k - Education Assistance - Health & Wellness Resources - Life insurance - Employee Assistance Programs & Work/Life Solutions - Employee Discounts - Flexible schedules on some programs, like the ability to work a 9/80 work schedule. The 9/80 schedule allows an employee to work a nine-hour day Monday through Thursday and take every other Friday off of work. For more details please visit our total rewards site or chat with one of our recruiters to learn more.
  
  Basic Qualifications:
  • Education/Experience: 9 years applicable experience with Bachelors degree from an accredited college; 7 years with Masters, 4 years with PhD. Applicable experience may be substituted for degree.
  • Active DoD Secret clearance required to start.
  • Current CISSP certification (or other DoD Approved 8570 Baseline; IAM Level II) required to start.
  • Security engineering skills with a thorough understanding of routing and switching, firewalls, IP, timing sources, and other cybersecurity technologies - Understanding and application of DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
  • Thorough knowledge and experience working with Enterprise Mission Assurance Support Service (eMASS).
  • Thorough understanding and previous experience working in an Agile frameworkPreferred Qualifications:
    • Experience with Software Assurance (SwA) static and dynamic code analysis
    • Experience with Security Information and Event Management (SIEM) solut ions (e.g. QRadar/LogRhythm)
    • Experience with Host Based Security System (HBSS)
    • Experience with Windows and Linux servers - Familiarity with the Ballistic Missile Early Warning System (BMEWS) PAVE Phased Array Warning System (PAWS) (BPP) or other ground-based radars such as the Perimiter Acquisition Radar Attack Characterization System (PARCS)Senior Principal Cyber Systems Engineer Salary Range: $125,800.00-$188,600.00
      
      Salary Range: $125,800 USD - $188,600 USD
      
      Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
      
      The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 .
      
      Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit . U.S. Citizenship is required for most positions.
      
      

Keywords: Northrop Grumman, Colorado Springs , BPP Cybersecurity Lead, Other , Colorado Springs, Colorado