Sr Principal Cybersecurity Analyst - Cybersecurity Engineer (24-373)

$121,000 - $181,400/Yr

Northrop Grumman - Colorado Springs, CO

posted 14 days ago

Full-time - Senior
Colorado Springs, CO
Computer and Electronic Product Manufacturing

About the position

The Sr Principal Cybersecurity Analyst - Cybersecurity Engineer position at Northrop Grumman involves working on the Command and Control, Battle Management, and Communications (C2BMC) program, which integrates the Missile Defense System. This role is critical for enabling high-level defense operations and ensuring the security and compliance of systems and networks. The position requires a strong background in cybersecurity, risk management, and technical implementation, with responsibilities that include system assessments, compliance audits, and the development of security documentation.

Responsibilities

  • Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts; perform annual account validation; and work with the system administrator to create, modify, and remove accounts.
  • Assess systems and networks within a virtual environment and identify deviations from acceptable configurations, enclaves, or local policies.
  • Conduct passive evaluations, such as compliance audits using STIG Viewer and SCAP, and active evaluations, such as vulnerability assessments utilizing ACAS.
  • Perform Security Technical Implementation Guide (STIG) assessments and hardening for Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS.
  • Develop test plans reflecting how STIG checks are implemented and show expected outcomes of those checks.
  • Update the Risk Management Framework (RMF) artifact documentation to track and remediate non-compliant system hardening.
  • Establish strict program control processes to ensure risk mitigation and support obtaining system assessment and authorization.
  • Support process, analysis, coordination, control certification tests, compliance documentation, and investigations.
  • Assist in implementing required government policy (e.g., NISPOM, NIST, DoD), make recommendations on process tailoring, and document process activities.
  • Perform analyses to validate established cybersecurity controls and requirements and recommend cybersecurity safeguards.
  • Support program test milestones through pre-test preparations, participation in tests, analysis of results, and preparation of required artifacts supporting authorization.
  • Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow Diagrams, and Ports, Protocols, and Services Management documentation.
  • Support Assessment and Authorization activities and maintain the Plan of Action and Milestones (POA&M).
  • Review program support and operational system audits and monitor corrective actions until all actions are closed.
  • Coordinate across the program to address identified deficiencies during RMF assessment activities.

Requirements

  • An active Top Secret clearance is required to start.
  • 9 years' experience with a bachelor's degree in engineering, computer science, mathematics or a related field; 7 years' experience with a master's degree in engineering, computer science, mathematics or a related field; or 13 years' experience in lieu of a degree.
  • DoD 8140 certification at IAT Level II / IAM - Level I or higher (Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA) is required at the start.
  • Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
  • Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS).
  • Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle including identifying controls and overlays, generating testable requirements, and conducting verification testing for compliance assessment.

Nice-to-haves

  • Windows and Red Hat Enterprise Linux (RHEL) system administration skills are highly desired.
  • Previous background working in a virtual environment.
  • Previous background working with dockers and containers.
  • Administer ACAS and ESS (formally HBSS).
  • Previous experience with ConfigOS.

Benefits

  • Health Plan
  • Savings Plan
  • Paid Time Off
  • Education Assistance
  • Training and Development
  • Flexible Work Arrangements

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service