CCRI Travel Team Support

The objective of this new and exciting program is to maintain or improve cyber security for the Air Force Air Combat Command in order to protect the missions which depend upon ACC's NIPRNet and SIPRNet and incorporated information systems. The employee will conduct assessments of Main Operation Base/Geographically Separated Unit (MOB/GSU) security posture using National, Federal, DoD and related cyber best practices publications approved by the government. The task will provide the government with contractor on-site support for Defensive Cyber Operations (DCO) of Mission Systems - Cyber Readiness Inspections such as CCRI and Command Cyber Operational Readiness Inspection (CCORI). The employee shall assist ACC to create a sustainable program that enables assigned personnel the ability for continuous monitoring and reporting in support of cyber maturity actions. Mature management processes, including Configuration Management, Vulnerability Management, and Change Management are indicators that a program is in a positive state of cyber readiness. Support for this position will require the employee to travel to all of the following locations at least once a year to assist with CCRI preparedness for each unit: Newport News - VA, Omaha - NE, Marysville - CA, Indian Springs - NV, Tucson - AZ, Grand Forks - ND, Alamlogordo - NM, Valdosta - GA, Mountain Home - ID, Clark County - NV, Goldsboro – NC, Sumter - SC, Panama City - FL, Oklahoma City – OK, Ogden – UT

  • Review previous CCRI and Staff Assist Visit (SAV) results and develop a schedule to assess all locations. The schedule will cover a year and shall be reviewed/updated monthly. Coordinate all changes through ACC/A6 to be approved by the CO/PM and COR. For known USCYBERCOM scheduled CCRIs the team will travel approximately 120 days and 30 days prior to assist the local on-site contractor and unit inspection preparation team
  • Coordinate with on-site contractor to conduct assessments and reviews of ACC MOBs/GSUs. Evaluate the base's current CCRI preparedness and provide daily status report to the contract lead and ACC MAJCOM Cyber Coordination Center (MCCC)
  • Assess, at a minimum, the following areas:
  • Traditional Security: Physical protections, procedures, and implementation
  • Vulnerability Management: Compliance detection, reporting of findings, and inter-organization communication to remediate deficiencies.
  • Configuration Management: Inventory of servers, workstations and infrastructure, software, and key documentation.
  • Change Management/Control: Host Based Security System (HBSS) implementation to detect changes, Change Control Board (CCB) charter, and integration of work centers into a consolidated view of the system lifecycle.
  • Culture: Leadership and personnel engagement, awareness of policy and systems baselines.
  • Program Management Office (PMO): Assist MOB/GSU to identify PMO systems which will be evaluated during a CCRI inspection.
  • Validate accreditations at a level consistent with AF DAA and DoD requirements for all base networks, enclaves, and systems and provide situational awareness.
  • Identify missing or incomplete documentation which could prevent a complete assessment of base networks, enclaves, and systems security posture.
  • Provide updated Cyber Security Posture Score Card with concern indicators for all assessment areas and Risk Assessment report with risk indicators for all assessed risk areas using DISA CCRI Scoring and Risk Assessment tools. Brief to local CS leadership and present a copy to the CS Commander, ACC/A6, and ACC MCCC.
  • Provide guidance, mitigation recommendations, and familiarization to personnel on base networks, enclaves, and systems security posture (e.g. C&A validation and testing, CCRI preparedness, and persistent Cyber readiness) to determine the best course of action to successfully pass or maintain persistent cyber readiness.
  • Provide reach back capability when MOB/GSU contractor requests additional support or expertise.
  • Provide in-brief, daily SITREP, daily/final out-brief, and trip report in order to document a robust cyber maturity depiction which can then be acted upon and remediated by base personnel. Trip Report and SITREP will be published to the ACC/A6 cyber readiness site. Deficiency and remediation actions will be tracked as part of the Monthly Status Report (MSR) until closed.
  • Provide surge support required to respond to emergent situations prioritized by ACC/A6. Surge support will provide temporary increased expertise and will be structured as an assessment team approach with on-site contractor.

Basic Qualifications:

Bachelors Degree in related discipline

2 years of direct experience supporting the system administration and maintenance of DoD systems

Proven success working independently

Proven ability to work with multiple levels of customers

Secret/SSBI Clearance

DoD 8570 IAT Level II - One of the following certifications (CCNA Security, GICSP, GSEC, Security Plus CE, SSCP)

US Citizen

Preferred Qualifications:

Previous experience supporting CCRI processes

TS/SCI Clearance

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.

Meet Some of Northrop Grumman's Employees

Jacqueline T.

Electrical Engineer

Jacqueline operates on power electronics for Northrop Grumman’s space application projects. She meets with engineering groups, chats with customers, and works on circuit analysis.

Jonathan M.

Electronics Engineer

Jonathan works with avionics industry subject matter experts to come up with new feature developments before implementing those ideas in the Northrop Grumman laboratory.

Back to top