Cybersecurity SME (17-101)
Northrop Grumman Corporation is a leading global security company providing innovative systems, products, and solutions in unmanned systems, cybersecurity, C4ISR, and logistics and modernization to government and commercial customers worldwide.
Northrop Grumman Mission Systems (NGMS) was selected by the U.S. Missile Defense Agency to participate on the Missile Defense National Team. This team was chartered to develop a Ballistic Missile Defense System for the United States. Missile Defense and Protective Systems (MDPS) serves as Northrop Grumman Mission Systems' focal point for all activities associated with missile defense, including Command, Control, Battle Management and Communications (C2BMC), simulation & modeling, systems engineering, and target discrimination.
This position is responsible for ensuring that the developed system realizes the architecture, requirements and technical baseline. This Cyber SME will represent the program from a Cyber perspective in assorted Senior meetings, Conferences and Program Milestones with both Program and Customer Leadership. This position will be pivotal in providing a forward look at the Cybersecurity strategy across multiple task orders for the C2BMC Program. The Cybersecurity SME will work closely with the Chief Engineer and Chief Architect. Documenting lessons learned, best security engineering practices, and industry standards will be required in daily tasks. Responsible for working with program Operations leadership to mature cyber operations and protection measures.
- Analyze design constraints, trade-offs, and detailed system and security designs to identify necessary lifecycle support.
- Apply security policies to applications that interface with one another. Assess the effectiveness of information protection measures utilized by system(s).
- Assess threats to and vulnerabilities of computer system(s) to develop a security risk profile.
- Build, test, and modify product prototypes using working or theoretical models.
- Conduct assessments of the application's security design for the appropriate security controls, which protect the confidentiality and integrity Information.
- Integrate information assurance (IA) or IA-enabled products.
- Design and develop secure interface specifications between interconnected systems.
- Design, develop, integrate, and update system security measures (including policies and requirements) that provide confidentiality, integrity, availability, authentication, and non-repudiation.
- Design hardware, operating systems, and software applications to adequately address information assurance (IA) security requirements.
- Design or integrate appropriate data backup capabilities into overall system designs, and ensure appropriate technical and procedural processes exist for secure system backups and protected storage of backup data.
- Design to minimum security requirements to ensure requirements are met for all systems and/or applications.
- Develop architectures or system components consistent with technical specifications.
- Develop detailed security design documentation for component and interface specifications to support system design and development.
- Analyze information to determine, recommend, and plan the development of a new application or modification of an existing application.
- Analyze user needs and software requirements to determine feasibility of design within time and cost constraints.
Travel is required between Colorado Springs and Huntsville to support Customer and Program Leadership meetings. Work with distributed functional personnel at both development and operational sites may be required as well.
- Active Secret Clearance
- Bachelor's degree in an engineering discipline
- DoDI 8570 certification IASAE - Level II (e.g., CISSP)
- Strong Cybersecurity background to include knowledge of the following: Identity and Access Management methodologies, encryption algorithms, cryptology, database and enterprise information security architecture
- Proficiency in the implementation of information assurance (IA) principles and requirements relevant to confidentiality, integrity, availability, authentication, and non-repudiation
- Experience in cybersecurity requirements evaluation and validation Knowledge of cybersecurity systems engineering principles
- Familiarity with network protocols (e.g., Transmission Control Protocol and Internet Protocol [TCP/IP], Dynamic Host Configuration Protocol [DHCP]) and directory services (e.g., Domain Name System [DNS])
- Knowledge of STIG application and hardening operating systems
- Knowledge of Cyber technologies (e.g., HBSS, ArcSight, ACAS, etc.) and how they impact a mission system
- Experience in Cyber threat assessment and risk management of a mission system
- Knowledge of cyber operations and operational impacts
- Master's degree in an engineering discipline or equivalent years of experience is preferred.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.
Meet Some of Northrop Grumman's Employees
Jacqueline operates on power electronics for Northrop Grumman’s space application projects. She meets with engineering groups, chats with customers, and works on circuit analysis.
Back to top