Northrop Grumman Innovation Systems Careers

Network Engineer- Cybersecurity GBSD Program

Chandler, AZ
Engineering and Sciences

Job Description

Job ID: SS20181306-46152

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history.

Northrop Grumman Innovation Systems designs, builds and delivers space, defense and aviation-related systems to customers around the world. Our main products include launch vehicles and related propulsion systems; missile products, subsystems and defense electronics; precision weapons, armament systems and ammunition; satellites and associated space components and services; and advanced aerospace structures.

Job Summary

  • Perform as Subject Matter Expert (SME) on system certification and accreditation matters
  • Manage RMF Authorization schedule and ensure renewal of annual Authorization to Operate
  • Generate and provide documentation and artifacts in support of new and renewing RMF efforts
  • Work closely with electrical engineering to develop practical security control implementation
  • Work closely with software development team to integrate IA efforts into initial phases of SDLC
  • Perform as SME for NIST, FIPS and CNSSI publications (e.g., SP800-37, SP800-53, CNSSI 1253)
  • Manage IAVMs patching program providing weekly status updates to managing organization
  • Develop, revise and maintain all system information security related policies and procedures
  • Develop, revise and maintain Plan of Action and Milestones documentation (POAMs)
  • Coordinate and align patching and hardening efforts to complement production schedule
  • Develop, revise and maintain continuous monitoring plan – schedule frequency and manning
  • Review and determine acceptability of proposed vulnerability mitigations (e.g., MS Bulletins)
  • Manage system hardening - develop customized STIG signatures using SteelCloud Foundry
  • Coordinate and support all security audit and assessment activities (e.g., annual security audit)
  • Attend joint and internal information security meetings as the Information Assurance POC
  • Act as Information Assurance POC for government and prime contractor inquires and concerns
  • Provide support for system hardening and patching as reported by the Security Administrator
  • Manage procurement efforts support system maintenance and information security needs

Basic Qualifications

  • Minimum 2 year experience performing government related information assurance tasks
  • Minimum 1 year experience in Certification and Accreditation program (e.g., FIPS, CC, PCI, RMF)
  • Functional knowledge of core algorithms (e.g., AES, RSA,MD5, SHA) and cryptographic libraries
  • Functional knowledge of Microsoft and Red Hat OS’s (Windows 7, Windows 10 and RHEL)
  • Functional knowledge of network administration and network protocols (e.g., TCP/IP, SSH)
  • Experience in developing new policy and procedure documentation (e.g., SSP, COOP, BCP)
  • Experience in managing POAMs program – determine and implement vulnerability mitigations
  • Functional knowledge of project management and planning – satisfying multiple deadlines
  • Expert knowledge of compliance related publications (e.g., NIST SP’s, CNSSI, FIPS, DoD 8500.2)
  • Experience in managing & scheduling IAVM patch requirements and DISA STIG hardening efforts
  • Experience and competence in system scanning using tools such as ACAS, SCAP and NMAP
  • Ability to obtain CompTIA Security+ within first year and CISSP within two years.
  • Ability to obtain DoD Secret clearance

Preferred Qualifications

  • 2 year experience in performing government related information assurance tasks
  • 2 year experience in Authorization efforts supporting the NIST Risk Management Framework
  • Functional knowledge of core algorithms (e.g., AES, RSA,MD5, SHA) and cryptographic libraries

Education and Experience

Requires BS in Engineering & 2 years or Masters in Engineering & 0 years.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.

Job Type: Full Time
Desired Travel: less than 25%
Years of Experience: 1-3 Years
Education: Bachelors
Expertise: Engineering
Group: Flight