Northrop Grumman
Principal / Senior Principal Cybersecurity Systems Engineer - R10...
Northrop Grumman - San Antonio, Texas, United States, 78208
Work at Northrop Grumman
Overview
- View job
Overview
Principal / Senior Principal Cybersecurity Systems Engineer
Requisition ID: R10187395
Category:
Information Technology Location:
San Antonio, Texas, United States of America | Redondo Beach, California, United States of America | San Diego, California, United States of America | Annapolis Junction, Maryland, United States of America | Roy, Utah, United States of America + 4 more Clearance Type:
Secret Telecommute:
No- Teleworking not available for this position Travel Required:
Yes, 10% of the Time Relocation Assistance:
Relocation assistance may be available Northrop Grumman Mission Systems Mission Defense Cyber Team has an opening for a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer
(CSSE) supporting the Sentinel program from one of our various Northrop Grumman locations. A Cybersecurity Systems Engineer (CSSE) assesses/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine with clarity the system’s cybersecurity requirements to drive the built-in cybersecurity protections to the architecture and design. The CSSE also guides/supports the security layout/architecture and influences the security tools selection and development. The CSSE evaluates/assesses the proposed and realized implementation to identify security risks and verify the cybersecurity protections from the design are realized and integrated. The CSSE guides/supports the development of verification efforts to ensure the cybersecurity protections/capabilities are functional, effective, and complete. A CSSE supports the definition of security governance and risk management. As a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer
on this team, you will have the following responsibilities: Implement and review requirement decomposition, derivation, and flow down Implement and review traceability of requirements throughout a spec tree architecture Support the architecture and design of baked-in cybersecurity requirements and protections Implement and review traceability of requirements to the design & its models Implement and review the application of cybersecurity profile stereotypes to a Model Based System Engineering (MBSE) Architecture Provide cybersecurity system engineering implementation guidance and oversight to technical teams/implementers Review and assess stakeholder security objectives, protection needs and concerns, security requirements, and associated verification/validation methods Implement, review and assess cybersecurity system requirements verification/validation methods Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions Author, support and maintain cybersecurity program documentation & RMF package documentation: Cybersecurity Strategies, System Security Plans, Continuous Monitoring Plans, Risk Assessment Report, Security Control Traceability Matrix, Plan Of Actions & Milestones, etc. Perform other duties as directed. This requisition may be filled as a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer . Basic Qualifications for a Principal Cyber Systems Engineer Bachelor’s degree with 5 years of experience, Master’s degree with 3 years of experience, or a PhD with 0 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science. Will consider 9 years of applied experience in lieu of degree requirement. Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle. Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation. Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37. The ability to obtain and maintain a DoD Top Secret clearance is required. Must be able to obtain Special Access (SAP) to the program. In possession of a current IASAE II certification (CISSP preferred) in accordance with DoD 8570 or able to obtain within six months of hire. Basic Qualifications for a Senior Principal Cyber Systems Engineer Bachelor’s degree with 8 years of experience, Master’s degree with 6 years of experience, or a PhD with 4 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science. Will consider 12 years of applied experience in lieu of degree requirement. Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle. Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation. Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37. The ability to obtain and maintain a DoD Top Secret clearance is required. Must be able to obtain Special Access (SAP) to the program. In possession of a current IASAE II certification (CISSP preferred) in accordance with DoD 8570 or able to obtain within six months of hire. Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs) Familiarity with Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views and NIST SP 800-160 DoDI 8140 certification for IASAE III (ISSEP, ISSAP) Experience with Agile methodologies Active TS/SCI clearance Previous experience in Software Assurance and/or Software Quality Assurance. Salary Range:
$110,300 - $165,500 Salary Range 2:
$137,400 - $206,000 The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions. Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.
#J-18808-Ljbffr
Requisition ID: R10187395
Category:
Information Technology Location:
San Antonio, Texas, United States of America | Redondo Beach, California, United States of America | San Diego, California, United States of America | Annapolis Junction, Maryland, United States of America | Roy, Utah, United States of America + 4 more Clearance Type:
Secret Telecommute:
No- Teleworking not available for this position Travel Required:
Yes, 10% of the Time Relocation Assistance:
Relocation assistance may be available Northrop Grumman Mission Systems Mission Defense Cyber Team has an opening for a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer
(CSSE) supporting the Sentinel program from one of our various Northrop Grumman locations. A Cybersecurity Systems Engineer (CSSE) assesses/evaluates the customers’/stakeholders’ cybersecurity requirements to decompose, derive, and refine with clarity the system’s cybersecurity requirements to drive the built-in cybersecurity protections to the architecture and design. The CSSE also guides/supports the security layout/architecture and influences the security tools selection and development. The CSSE evaluates/assesses the proposed and realized implementation to identify security risks and verify the cybersecurity protections from the design are realized and integrated. The CSSE guides/supports the development of verification efforts to ensure the cybersecurity protections/capabilities are functional, effective, and complete. A CSSE supports the definition of security governance and risk management. As a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer
on this team, you will have the following responsibilities: Implement and review requirement decomposition, derivation, and flow down Implement and review traceability of requirements throughout a spec tree architecture Support the architecture and design of baked-in cybersecurity requirements and protections Implement and review traceability of requirements to the design & its models Implement and review the application of cybersecurity profile stereotypes to a Model Based System Engineering (MBSE) Architecture Provide cybersecurity system engineering implementation guidance and oversight to technical teams/implementers Review and assess stakeholder security objectives, protection needs and concerns, security requirements, and associated verification/validation methods Implement, review and assess cybersecurity system requirements verification/validation methods Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions Author, support and maintain cybersecurity program documentation & RMF package documentation: Cybersecurity Strategies, System Security Plans, Continuous Monitoring Plans, Risk Assessment Report, Security Control Traceability Matrix, Plan Of Actions & Milestones, etc. Perform other duties as directed. This requisition may be filled as a
Principal Cybersecurity Systems Engineer
or
Senior Principal Cybersecurity Systems Engineer . Basic Qualifications for a Principal Cyber Systems Engineer Bachelor’s degree with 5 years of experience, Master’s degree with 3 years of experience, or a PhD with 0 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science. Will consider 9 years of applied experience in lieu of degree requirement. Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle. Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation. Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37. The ability to obtain and maintain a DoD Top Secret clearance is required. Must be able to obtain Special Access (SAP) to the program. In possession of a current IASAE II certification (CISSP preferred) in accordance with DoD 8570 or able to obtain within six months of hire. Basic Qualifications for a Senior Principal Cyber Systems Engineer Bachelor’s degree with 8 years of experience, Master’s degree with 6 years of experience, or a PhD with 4 years of experience in: Systems Engineering, Cybersecurity Engineering, Computer Engineering, Computer Science. Will consider 12 years of applied experience in lieu of degree requirement. Direct Experience utilizing NIST 800-160 system security engineer and/or the system development life cycle. Direct experience in one or more of the following Systems Engineering activities: system requirements decomposition/derivation/flow down/traceability, architecture, high-level/detail design, implementation, integration and test, and/or verification & validation. Direct experience developing RMF assessment and authorization artifacts in accordance with NIST SP 800-37. The ability to obtain and maintain a DoD Top Secret clearance is required. Must be able to obtain Special Access (SAP) to the program. In possession of a current IASAE II certification (CISSP preferred) in accordance with DoD 8570 or able to obtain within six months of hire. Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs) Familiarity with Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views and NIST SP 800-160 DoDI 8140 certification for IASAE III (ISSEP, ISSAP) Experience with Agile methodologies Active TS/SCI clearance Previous experience in Software Assurance and/or Software Quality Assurance. Salary Range:
$110,300 - $165,500 Salary Range 2:
$137,400 - $206,000 The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions. Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.
#J-18808-Ljbffr