Lead Cyber Systems Engineer-19038730

Location: Virtual Posting
US Citizenship Required for this Position: Yes
Relocation Assistance: No
Clearance Type: Secret
Number of Openings : 1
Shift : 1st Shift

Transforming the future of technology ... Northrop Grumman Enterprise Services is seeking a Lead Cloud Security Engineer with advanced knowledge, and strong experience, securing, deploying, and migrating cloud systems and environments. The engineer will be part of the Information Security team, serving as the security lead, supporting the companys expanding Enterprise public cloud technologies and services. Demonstrated experience and comprehensive understanding of cloud security systems and policies are key for this role.



  • Lead security efforts for integration of infrastructure and business solutions with cloud environments
  • Identify risks and provide guidance regarding remediation of gaps to facilitate a hardened and sustainable cloud environments
  • Analyze and make recommendations for improvements to the cloud environments and associated services and configurations
  • Engineering and designing solutions that manage risk and meet relevant security regulations, controls and policy
  • Design, planning, and implementation of Security controls, policies, and processes in compliance with NIST 800-171r1, 800-53 and FedRAMP guidelines
  • Implement a variety of Cyber Security/Cloud provider security services and toolsets to secure platforms and customer workloads
  • Lead assessments of system security controls to validate control implementation and identify weaknesses
  • Perform continuous monitoring using the cloud service security tools and services
  • Identifying new and innovative ways to use existing cloud services and toolsets to automate security management, monitoring and related processes to reduce risk and costs
  • Implementation, automation, configuration, and maintenance of security tools, centralized authentication solutions, IDS/IPS, and compliance baselines
  • Utilize background in Systems Administration to assist the team in its efforts to maintain the cloud security environment throughout deployments
  • Take ownership of solutions, assignments, actions items and issues, and remain accountable for their completion
  • Work effectively with other team members, customers and key stakeholders and foster team success
  • Communicate and collaborate with leadership and technical teams to include systems and network administrators, security engineers, and IT Support teams

This position will have the ability to work virtually from a home office, with occasional travel to various Northrop Grumman facilities across the country (up to 10% or 5 weeks per year). Come join us on the edge the cutting edge!




Basic Qualifications: 

  • PhD with 9 years of IT experience; OR a Masters Degree with 12 years of IT experience; OR a Bachelors Degree with 14 years of IT experience; OR an Associates degree with 16 years of IT experience; OR a High School Diploma with 18 years of IT experience is required

  • Must have a minimum of 4 years of experience providing technical security configuration, design, and architecture for AWS and/or Azure cloud environments

  • Must have two (or more) of the following certifications: AWS Certified Security Specialty,  AWS Certified Solutions Architect, Azure Security Engineer, or Azure Solutions Architect

  • Experience with Cloud Based environment deployment and migrations to AWS or Azure Cloud Environments

  • Must have experience with the following Security Frameworks: NIST 800-53rev4, 800-171r1, FedRAMP,  Risk Management Framework

  • Candidates must have the ability to obtain a DOD Secret level security clearance

Preferred Qualifications:


  • STEM Degree preferred
  • Professional/technical certifications: CISSP, CISM, CCSP, Security Plus, AWS Certified Security Specialty, AWS Certified Solutions Architect, Azure Security Engineer, Azure Solutions Architect
  • DoD 8570 IAT/IAM Level II or III certification

Security Skills

  • Senior-level security engineering experience
  • Contributor for architectural/industry changes; especially in the areas of Cloud technologies (AWS and Azure Security Offerings)
  • Advanced knowledge of Amazon Web Services (AWS) and/or Microsoft Azure Services (Azure) Security Services and Cloud Offerings
  • Experience with AWS native security stack (e.g. Cloudtrail) and/or 3rd party solutions (e.g. Palo Alto Panorama)
  • Experience with interpreting and implementing security compliance standards and guidance including Governance, Risk & Compliance (GRC) policies and procedures, NIST 800-53 security control framework.
  • Security control assessor (SCA) and/or ISSO experience with AWS or Azure Cloud based systems
  • Experience in areas such as system security, network, and/or application security
  • Knowledge of current and emerging security threats, vulnerabilities, and controls
  • Knowledge of current architectural/industry changes; especially in the areas of Cloud technologies (AWS and Azure Security Offerings)

Technical Skills

  • Experience with Linux and Windows operating systems
  • Experience with operating in an Agile/DevOps environment
  • Experience with Scripting to include Python
  • Knowledge of application program interface (API) and ability to manipulate APIs to integrate different toolsets
  • Advanced knowledge in cybersecurity principles, networking, architecture, servers, systems design, virtual hosts, configuration management, Identity and Access Management, encryption, intrusion detection systems (IDS) and intrusion prevention systems (IPS)
  • 5+ years technical experience providing technical design and architecture within AWS and/or Azure cloud environments.
  • 5+ years providing operational support to AWS and/or Azure cloud environments and development teams
  • Experience with designing, configuring, implementing and leveraging cloud services models such as SaaS, PaaS, and IaaS
  • Experience in supporting the deployment, configuring, managing, and maintaining any of the below technologies:
  • Directory Services and Centralized Authentication, such as Active Directory or Red Hat Identity Manager
  • Vulnerability scanning and management of databases, operating systems, and/or web applications
  • IDS/IPS and anti-malware tools/technologies

Process Skills

  • Experience with Agile, Scrum and Application Lifecycle Management (ALM)
  • Experience operating in an Agile/DevOps environment

Soft skills

  • Exceptional verbal and written communications.
  • Quickly learn and adapt to new and changing business/technical concepts, requirements, skills, tools
  • Goal-oriented team player committed to quality and detail
  • Proven track record of driving decisions collaboratively, resolving conflicts and ensuring follow-through
  • Innovative and strategic thinker who is positive, proactive and readily embraces change
  • Demonstrated ability to explain technical details to a non-technical audience

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.


Job ID: 19038730

What's great about
Northrop Grumman

  1. Be part of a culture that thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work..
  2. Use your skills to build and deliver innovative tech solutions that protect the world and shape a better future.
  3. Enjoy benefits like flexible work schedules, education assistance and paid time off.
Secret Required
Yes, 10 % of the Time
Yes - May Consider Full Time Teleworking for this position