Vacancy expired!
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.
Northrop Grumman's Enterprise Services Division has an immediate opening for an Information Systems Security Manager (ISSM) for the Bellevue site. The ISSM is primarily responsible for maintaining the overall security posture of the systems. This will be accomplished through the use of Risk Managed Framework (RMF). The ISSM serves as the principal advisor on all matters, technical and otherwise, involving the security of systems under their purview and handles day-to-day operations and responding to security instances. Responsibilities include, but are not limited to:- Developing, maintaining, and overseeing the system security program and policies for their assigned area of responsibility.
- Ensuring compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.
- Developing and implementing an effective system security education, training, and awareness program.
- Maintaining a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
- Developing, documenting, and monitoring compliance with and reporting of the cleared contractor facility's system security program in accordance with Cognizant Security Activity (CSA) guidelines for management, operational, and technical controls.
- Submitting the security plan and supporting artifacts to the ISSP for AO review and consideration.
- Ensuring all system security documentation is current and accessible to properly authorized individuals.
- Implementing security controls to protect the system, in coordination with system stakeholders.
- Maintaining the system in accordance with the security plan and Authorization to Operate (ATO).
- Conducting periodic assessments of authorized systems and ensuring corrective actions are taken for all identified findings and vulnerabilities.
- Must have, at minimum, a Master's degree with 3 years of relevant experience; OR a Bachelor's degree with 5 years of relevant experience; OR an Associate's degree with 7 years of relevant experience
- Must have a DoD 8570 IAM level II or above security certification (examples: CAP, CASP CE, CISM, GSLC, CISSP Associate, or CISSP) OR the ability to obtain this certification within 6 months of starting.
- Must have a current DoD Top Secret clearance completed within the last 6 years in order to be considered
- DoD 8570 IAM III compliant certification
- Relevant experience will be aligned to the Assessment and Authorization of classified information systems and Risk Management Framework
- Knowledge of ACAS, NESSUS, SPLUNK, SCAP, POA&Ms, NIST, EMASS, NISPOM, system auditing and vulnerability scanning,
Vacancy expired!