Cyber Information Sys Security 1
Northrop Grumman Mission Systems is seeking a Cyber Information Sys Security team member to join our team of qualified, diverse individuals and to assist in implementing and enforcing security requirements on restricted programs.
Responsibilities will include, but are not limited to:
Weekly Information Systems Security Audits – Collect and review audit logs/reports, evaluate for any errors in the collected logs, identify any security threats that occurred during the week, document the review, report to management if any anomalies were discovered. Identification of security threats requires the individual to understand the system being reviewed and to perform analysis of the data being audited. – Approximately 20% of overall time
Security Configuration Management - Evaluate all inbound and outbound hardware to their respective restricted security boundaries. Coordinate with vendors to obtain Letters of Volatility (LOV) for each specific hardware make and model. Obtaining an LOV requires the individual to identify and evaluate many different types of memory. The individual must analyze the information provided by the vendor and confirm that the information provided relevant for the memory component and meets government compliance requirements. Coordinate with requesting Engineers/IT the completion of required entry/exit forms. Coordinate with IT appropriate sanitization steps have been completed prior to exit. Maintain System Security Plan documentation to accurately reflect approved changes. – Approximately 20% of overall time
Security Account Administration - Internal NGC customers will routinely request general user and privileged user accounts for various information system environments. The employee will have to communicate the process to the customer and walk them through the steps of how to complete the appropriate security request form, where to route the form for approval for each environment, validate the users initial/refresher security training. If the user does not have the requisite training then coordinate scheduling of the training and provide the training themselves, update training records in the requisite security database. After the user account is created by IT, validate the appropriate technical security permissions and security groups have been implemented. – Approximately 20% of overall time
System Security Plan Documentation - The employee is asked to evaluate vulnerabilities, mitigation techniques, and document residual risk. Additional problems include using Visio software to accurately represent floor layouts, network diagrams, and elevation diagrams. The employee also has to ensure existing processes and procedures they are following are accurately depicted in the documentation, identify any deltas and coordinate changes as necessary. – Approximately 20% of overall time
Continuous Security Monitoring / Self Inspections - The employee will have to learn unique security software (e.g. LogParser, Newt, DISA SCC, DISA STIG viewer, Solar Winds, Purifile, EnCase, SPLUNK, NESSUS, etc…) in order to perform contractually required Continuous Security Monitoring. Each restricted area may have unique customer requirements therefore the required software knowledge may vary between program areas. Learning each of these software tools requires the employee to have a strong technical foundation. – Approximately 20% of overall time
- Bachelor's degree.
- Secret clearance.
- Proficiency in MS Windows 7 and 10, MS Server 2008R2, 2012R2 and 2016, some experience in Linux, i.e. Red Hat.
- Must obtain CompTia Security certification within six months.
- Top Secret/SCI clearance.
- Proficiency in MS Office Suite programs.
- Ability to learn quickly and adapt to a dynamic work environment.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.
Meet Some of Northrop Grumman's Employees
Jacqueline operates on power electronics for Northrop Grumman’s space application projects. She meets with engineering groups, chats with customers, and works on circuit analysis.
Back to top