Principal/Sr. Principal Cybersecurity Analyst

About the position

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. The selected Principal/Sr. Principal Cybersecurity Analyst will be responsible for performing assessments of systems and networks within the networking environment or enclave and identifying where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. The role involves establishing strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. The analyst will support the A&A process for system accreditation, which includes a variety of responsibilities such as security certification testing, documentation, and conducting periodic audits. Responsibilities will include establishing strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems. This includes support of process, analysis, coordination, security certification tests, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits. The analyst will assist in the implementation of the required government policy, make recommendations on process tailoring, and participate in and document process activities. They will perform analyses to validate established security requirements and recommend additional security requirements and safeguards. Furthermore, the analyst will support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports. Documenting the results of Certification and Accreditation activities and preparing the system Security Plans while updating the Plan of Actions and Milestones (POA&M) is also a key responsibility. Periodically, the analyst will conduct a complete review of each system's audits and monitor corrective actions until all actions are closed. Note: Due to the classified nature of the work being performed, this position does not offer any virtual or telecommute working options. Applicants are encouraged to apply only if they are willing to work on-site.