RELOCATION ASSISTANCE: Relocation assistance may be available
CLEARANCE REQUIRED FOR START: Yes
CLEARANCE TYPE: Secret
TRAVEL: Yes, 10% of the Time
DescriptionNorthrop Grumman Defense Systems is seeking a
SCRM Vulnerability Assessment Engineer to support the Sentinel Program in
Roy, UT. What You'll Get to Do:The Systems Security Engineering (SSE) team is seeking a SCRM Vulnerability Assessment Engineer. In this role, you will be responsible for researching, testing, and documenting the cybersecurity posture of commercial off-the-shelf hardware and software products.
Specific duties to include, but are not limited to the following:- Perform vulnerability assessments against COTs hardware / software
- Review, Interpret, and Communicate vulnerability assessment results
- Participate in a variety of working groups, customer meetings
- Contributes to the ongoing enhancement of assessment capabilities through the development and implementation of improved methodology, processes, infrastructure, tools, and deliverables
Basic Qualifications:- BS in one of the following or equivalent disciplines: Software Engineering, Computer Science, Digital Forensics, Computer Engineering, or Electrical Engineering with 2 years of related experience, or a Master's degree in the above disciplines with 0 years of related experience
- Must be a US Citizen with an active U.S. Government DoD Secret security clearance at time of application with an investigation completed within the last 6 years
- Must have the ability to obtain and maintain Special Access Program (SAP) approval within a reasonable period of time, as determined by the company to meet its business need
- Ability to obtain CompTIA Security+ certification within 6 months of starting in the position.
- Familiarity of developing, documenting, and executing formal test plans and procedures, with a specific focus on vulnerability/penetration testing and counterfeit part assurance.
Preferred Qualifications:- Top Secret Security Clearance
- Any of the following certifications: OSCP, GREM, PenTest+ or comparable industry-recognized certifications
- Experience utilizing penetration testing and vulnerability assessment tools (Kali Linux / Metasploit / NESSUS / ACAS / OpenVAS / Etc.)
- Experience validating software configurations (STIG / OpenSCAP)
- Experience with software forensics activities / processes
- Experience with SCRM chain of custody processes / procedures
- Experience in software or hardware reverse engineering and exploratory reconnaissance
As a full-time employee of Northrop Grumman, you are eligible for our robust benefits package including:
- Medical, Dental & Vision coverage
- 401k
- Educational Assistance
- Life Insurance
- Employee Assistance Programs & Work/Life Solutions
- Paid Time Off
- Health & Wellness Resources
- Employee Discounts
This position's standard work schedule is 9/80. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off.
#Sentinelsystems
Primary Level Salary Range: $79,300.00 - $118,900.00
The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.
Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.
