Information Technology
Qualifications:
Information Systems Security Professionals, We Want You!
Cyber assets everywhere are under siege from a wide spectrum of threats. Almost daily, these threats grow in sophistication, breadth and speed. At Northrop Grumman, we take a holistic approach to Cyber Security (CyberSec), looking at the whole cyber landscape of people, processes and technology and the whole security realm of offense, defense, and exploitation. Thought leadership demands nothing less. If you are a subject matter expert with experience implementing the NIST RMF requirements baseline for National Security Systems (NSS) that form the foundation for Assessment and Authorization (A&A) of classified computers & networks within the Department of Defense (DoD) and Intelligence Community, Northrop Grumman Corporation has fantastic opportunities for your career growth!
Want more jobs like this?
Get jobs in Redondo Beach, CA delivered to your inbox every week.
We have an exciting high level Information Systems Security Officer (ISSO) position located at our Redondo Beach, CA facility. Responsibilities for this individual in our organization include, but are not limited to:
Assist with the implementation of required Government CyberSec policy & guidance (i.e. NISPOM, DAAPM, JSIG, etc.) and partner with the facility ISSM to gather organization performance metrics, document and streamline relevant processes & procedures, train/mentor junior ISSOs and execute strategies that enable business and a continuous process improvement culture in the organization.
The selectee for this position will engage with engineers and senior / executive level program managers to perform assessments of systems and networks within an environment or enclave and identify deviations with DoD / DISA defined acceptable configurations or enclave / local CyberSec policy. Information System (IS) assessments are achieved through passive evaluations such as compliance audits and active evaluations such as Nessus / SCAP vulnerability scans. The senior ISSO will also be accountable to co-lead efforts to establish strict program control processes to ensure mitigation of risks that enable U.S. Government authorization of company or Government owned systems operating at the facility.
Program control processes or content for CyberSec assessment artifacts in scope include 1) application of requirements engineering discipline to document minimal compliance commitment language for the relevant body of RMF controls, 2) coordination with enterprise leadership to enable delivery of CyberSec products / services and effective incident response, 3) Continuous Monitoring (ConMon) test case development / validation testing to enable communication of POA&Ms to the Department of Defense (DoD) for SUSA/MUSA, ISOL or Interconnected WAN architectures, 4) development of customized hard copy audit trail artifacts / Information System (IS) self-assessment checklists, as well as 5) execution of CyberSec investigations and applications software research.
ESCSO
ITS3500
NGFeaturedJobs