RELOCATION ASSISTANCE: Relocation assistance may be available
CLEARANCE REQUIRED FOR START: Yes
CLEARANCE TYPE: Secret
TRAVEL: Yes, 10% of the Time
DescriptionPlease note that this opportunity is contingent on program funding. Start dates are determined after funding confirmation.
Northrop Grumman Aeronautics Systems is currently seeking a Cyber Systems Engineer or Principal Cyber Systems Engineer to join our team of qualified, diverse individuals in our Systems Engineering organization. This role is located in Oklahoma City, OK.
In this role, you will be responsible for System Security Engineering across all phases of a system’s acquisition / development lifecycle. Success in this position requires a strong background in Program Protection, Supply Chain Risk Management, and Counterfeit Parts Prevention. You will need experience with Cybersecurity engineering and implementations based on US Government standards, National Institute of Standards and Technology (NIST), Committee on National Security Systems Instruction (CNSSI), and Risk Management Framework (RMF) processes, policies and guidelines.
Essential Functions:
- Support Program Protection, Supply Chain Risk Management, and supply chain vulnerability and risk assessment activities
- Develop/update Program Protection Implementation Plan(s), Supply Chain Risk Management (SCRM) plans, and Counterfeit Prevention Plan(s)
- Perform supply chain vulnerability and risk assessments, document findings and recommend mitigations/countermeasures
- Develop/refine Hardware/Software Bill of Materials and conduct Criticality Analysis of system components
- Monitor system changes impacted through the supply chain
- Review system vulnerability scans and mitigation reports
- Support inquiries into, and auditing of, suppliers
- Leverage knowledge and experience using systems security engineering methodologies and techniques
- Prepare technical documents, provide briefings, attend security-related working groups, support ongoing authorization efforts including development of supporting documentation, develop procedures, and work in a fast-changing dynamic environment with minimal direction
- Perform other System Security Engineering (SSE) duties as assigned
- Comfortable working in an Agile Development environment
- Interface with internal management, other cyber functional areas, and other internal and external stakeholders as a technical liaison
This role can be filled at either the Engineer or Principal Engineer Level based on the qualifications below.
Basic Qualifications:
At an Engineer Level:
- Must have a Bachelors of Science degree in a STEM field and at least 2 years of relevant military / professional experience, OR a Master's Degree in a STEM field and at least some of relevant military / professional / academic experience
At a Principal Engineer Level:
- Must have a Bachelors of Science degree in a STEM field and at least 5 years of relevant military / professional experience, OR a Master's Degree in a STEM field and at least 3 years of relevant military / professional experience, OR a PhD and at least 1 year of relevant military / professional / academic experience
At Both Levels:
- Must have experience with US Government System Security Engineering activities (security requirements engineering, risk assessment and management, secure architecture design, implementation and verification activities)
- Must have an active US Government Secret or higher clearance (with a background investigation completed within the last 6 years or currently enrolled into Continuous Evaluation).
- Must have the ability to obtain and maintain Special Access Program (SAP) clearance within a reasonable amount of time as determined by business needs.
- Must have a DODD 8140.01 qualifying certification, such as CompTIA Security+, CISSP, or similar network/security certifications
Preferred Qualifications:
- Experience working with, and providing oversight and guidance to, different IPTs and Suppliers/Subcontractors in support of design development, implementation, and test/verification activities
- Experience with developing, executing, and managing Program Protection, Supply Chain Risk, and Counterfeit Parts Prevention plans as well as performing Criticality Analysis of system components
- Risk Management Framework (RMF), development of System Security Plans, Assessment Reports, attack path modeling, and mitigation strategies
- Experience with embedded computing environments and technologies
- Experience with cloud computing environments and technologies
- Experience with Model Based Systems Engineering tools such as Cameo or other similar system modeling tools
- Familiarity with DoDI 5000.02 (Operation of the Adaptive Acquisition Framework), DoDI 5200.44 (Protection of Mission Critical Functions to Achieve Trusted Systems and Networks), DoDI 5000.83 (Technology and Program Protection to Maintain Technological Advantage), NIST SP 800-161 (Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations), US Government Program Protection Plan and Guidance
- Experience applying agile methodologies to the development of cybersecurity capabilities for embedded systems.
- Experience working on a multidisciplinary team and writing technical proposals
- Excellent communication, interpersonal skills, and the ability to interface with all levels of employees and management
- Familiarity with U.S Government Anti-Tamper (AT) processes and implementations
- Ability to obtain a US Government Top Secret security clearance to include a Single Scope Background Investigation (SSBI)
Primary Level Salary Range: $75,100.00 - $112,700.00
Secondary Level Salary Range: $93,300.00 - $139,900.00
The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.
Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.