Vacancy expired!
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.
The candidate will perform system security engineering activities supporting all phases of systems development in the areas of Cybersecurity/System Security Engineering, and Security Assessment and Authorization (A&A) as per RMF (Risk Management Framework) for the WISA IBCS program in Huntsville, AL.Specific responsibilities include the following:- Support system security requirements, architecture, design, development, evaluation, certification, and accreditation.
- Work with Product Teams in support of secure operating systems, applications, networks, hardware, databases, etc.
- Perform vulnerability scans and mitigate findings
- Implement Security Technical Implementation Guides (STIGs)
- Work on multiple simultaneous tasks.
- Apply risk management concepts to mitigate vulnerabilities in security architectures.
- Preparation of ATO artifacts to include baselines, SOP, SSP, RAR, POA&M.
- Bachelor's degree in a STEM (Science, Technology, Engineering or Math) discipline and 2 years of experience, Master's degree in a STEM (Science, Technology, Engineering, or Math) discipline with 0 years of experience; or additional years of experience in lieu of degree may be considered
- CompTIA Security+ or similar for IAT Level II DoD 8570 certification
- Candidate must have, and be able to maintain an active Secret Security Clearance
- Experience in the development, monitoring, or enforcement of Cybersecurity/IA procedures.
- Experience with cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
- Assured Compliance Assessment Solution (ACAS) Experience (Nessus / Tenable Security Center)
- STIG/SCAP compliance scanning and implementation
- Experience with the Risk Management Framework
Vacancy expired!