Sr Principal Cyber Info Systems Security Analyst

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Northrop Grumman is actively seeking an experienced Cyber Information Systems Security Analyst to serve as an Information Systems Security Manager (ISSM) to fill a role that requires a broad array of knowledge and skills working with team members to support a Cyber Security program based in Albuquerque, New Mexico. Our team is always looking for highly motivated individuals with impeccable work ethic and a strong ability to work in a collaborative dynamic team environment. This provides an environment to grow your expertise and sharpen your skills & knowledge. The primary team is located in Gilbert, Arizona with distributed team members located throughout the country. Job Responsibilities: In this position you will: Must have a thorough understanding of industrial security guidelines: NISPOM, ICD's, 5205.07 Vol 1-4, RMF process following JSIG and a multitude of various classification guides that provide for protection for movement, transportation, and integration of various types of hardware. Possess exceptional verbal and written skills in addition to coordinating team operations in a geographically distributed dynamic environment. Position will support a variety of programmatic activities addressing all security and program related requirements across the spectrum of security disciplines to include physical security, information security, personnel security, and operations security (OPSEC) Develop, and administers security programs and procedures for classified or proprietary materials, documents, and equipment. Studies and implements federal security regulations that apply to company operations. Obtains rulings, interpretations, and acceptable deviations for compliance with regulations from government agencies. Prepare manuals outlining regulations, and establishes procedures for handling, storing, and keeping records, and for granting personnel and visitors access to restricted records and materials. Conducts security education classes and security audits. Investigates security violations and prepares reports specifying preventive action to be taken. Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy (i.e., NISPOM, DCID 6-3), make recommendations on process tailoring, and participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed. ESCyberInfoSec Basic Qualifications: Master's degree with 7 years of experience; OR a Bachelor's degree with 9 years of experience; OR an Associates degree with 11 years of experience; OR a High School Diploma/GED with 13 years of experience is required Must have a DoD 8570 IAM Level III security certification (examples: CISM, CISSP, GSLC, or CCISO); OR must have the ability to obtain one within 6 months of start date Candidates must have an Active DoD Top Secret security clearance to include SCI access level eligibility, based on a closed investigation date completed within the last 6 years, in order to be considered Must have the ability to obtain, and maintain, access to Special Programs as a condition of continued employment Preferred Qualifications: The ideal candidate will have a Bachelor's degree in Information Technology or Information Security, a CISSP, and 9 years of experience with Certification and Accreditation of classified systems Current DoD 8570 IAM Level III security certification (CISM, CISSP, GSLC, or CCISO) Experience with ACAS, NESSUS, SPLUNK, SCAP, POA&Ms, NIST, NISPOM, system audits, vulnerability scanning, and Risk Management Framework package development Current SCI access is highly preferred Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business. The health and safety of our employees and their families is a top priority. With the continuing impacts of COVID-19 around the world, we are taking action to protect the health and well-being of our colleagues and maintain the safety of the communities where we operate. As a federal contractor, and consistent with Executive Order 14042 (https://www.saferfederalworkforce.gov/contractors/) we will require all newly hired employees in the United States to be fully vaccinated by January 18, 2022 or by your start date if it is after January 18th. Federal guidance allows for disability/medical and religious accommodations with respect to the vaccine requirement. Any requested accommodations must be reviewed and approved (if applicable) in advance of your start date.