Information Systems Security Professionals, We Want You!
Cyber assets everywhere are under siege from a wide spectrum of threats. Almost daily, these threats grow in sophistication, breadth, and speed.
At Northrop Grumman, we take a holistic approach to cybersecurity, looking at the whole cyber landscape of people, processes and technology and the whole security realm of offense, defense, and exploitation. Thought leadership demands nothing less. Join the Northrop Grumman team as we provide legendary program support to advanced, secure, and agile systems and solutions.
We are seeking Cybersecurity Professionals to support information systems security lifecycle activities. Perform assessments of systems within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
Establish strict program control processes to ensure mitigation of risks and support obtaining assessment and authorization of systems. The position includes support of analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and recurring audits. Assist in the implementation of the required government policy (e.g. DAAPM, JSIG, ICD-503, NIST 800-53, etc.), make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports.
Prepare the System Security Plans (SSP), create the Security Controls/Requirements Traceability Matrix (SCTM/SRTM), submit and manage the Plan Of Actions and Milestones (POA&M), and perform Continuous Monitoring (CONMON) activities throughout the lifecycle of the system.
If you are ready to solve complex problems in a dynamic environment, apply today!