Vacancy expired!
Do you want to work at an international company with endless opportunities for growth and advancement? Are you eager to join a trust-based, globally-connected team, where your contributions will define what's possible? The Payload and Ground Systems (PGS) division of Northrop Grumman's Space Systems sector seeks team members who want to solve interesting, complex problems which protect our nation. We are a trusted mission payload and ground system provider with extensive experience providing end-to-end mission solutions from concept through operations and support. The team you will support is located at our Space Park campus in Redondo Beach, CA. What you'll get to do? The Ground Segment Cyber Systems Engineer will plan, define and document the management of information assurance (IA) or cyber security engineering effort including: RMF compliance, security controls traceability and decomposition, security architecture, and design, analysis of Security Technical Implementation Guidelines (STIG) mapping. The Ground Segment Cyber Systems Engineer implements, upgrades, and documents the planned phased approach for STIGs and documents quarterly assessments of security controls. The Ground Segment Cyber Systems Engineer will support the design and implementation of automated tools to configure and deploy hardened environment to meet security controls. The Ground Segment Cyber Systems Engineer will engage in a DevSecOps process for the development, integration & test, and deployment of hardened environments to the customer.
- Lead cybersecurity efforts to define, allocate and control Ground Segment cybersecurity requirements to satisfy Risk Management Framework (RMF) compliance
- Perform customer requirements elicitation leading to cybersecurity requirements development
- Lead ground segment cybersecurity level trade studies
- Define, document, build plan, and manage Information Assurance (IA) or Cyber Security engineering including: security controls traceability and decomposition, security architecture and design, analysis of Security Technical Implementation Guidelines (STIG) mapping
- Implement, upgrade, and document planned phased approach for STIG and security controls
- Monitor, review, and update STIGs and security controls
- Create, mature, and present comprehensive and cohesive technical charts representative of the appropriate level of maturation for any given milestone meeting and demonstrate team readiness in relation to achieving the milestone entrance and exit criteria
- Identify required contractual deliverables and non-contractual documentation and drive corresponding updates to closure
- Monitor, track and work with program personnel to address Program Action and Milestone (POA&M) liens
- Create tools to automate population of security documents to promote reusability - e.g. Controls Implementation List and Compliance Self-Test
- Utilize Enterprise Service tools to prepare System Security Plan (SSP) related documentation for program deliveries and recertification assessments
- Utilize Enterprise Service tools to get program assets in compliance with IA requirements (e.g. Continuous Monitoring, vulnerability scanning)
- 5 years of relevant experience with a Bachelor's degree; 3 years of relevant experience with a Masters' degree; 0 years of relevant experience with a PhD; an additional 4 years of experience may be considered in lieu of degree
- Active DoD Top Secret clearance with the ability to obtain SCI access or active SCI access
- Working knowledge of systems engineering principles and processes
- Excellent communication and organizational skills; strong interpersonal and analytic skills
- Works well in a team environment
- 9 years of relevant experience with a Bachelor's degree; 7 years of relevant experience with a Masters' degree; 4 years of relevant experience with a PhD; an additional 4 years of experience may be considered in lieu of degree
- Active DoD Top Secret clearance with the ability to obtain SCI access or active SCI access
- Working knowledge of systems engineering principles and processes
- Excellent communication and organizational skills; strong interpersonal and analytic skills
- Works well in a team environment
- Experience with Agile development
- Effectively communicate and present to project and program management, other technical managers and customers
- One or more certifications from the following:
- ISC2 Certified Authorization Professional (CAP)
- CompTIA Advanced Security Practitioner (CASP+)
- ISACA Certified Information Security Manager (CISM)
- ISC2 Certified Information Systems Security Professional (CISSP)
- GIAC Security Leadership (GSLC)
Vacancy expired!