Job Description

Description

Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you rsquo;ll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today.

This early career Cyber Systems Engineering position performs System Security Engineering tasks on Space Programs, with responsibilities across Space Segments, Communications Segments, Ground Segments, and in some cases User Segments:

* Working as part of an integrated product team (IPT) to architect, implement, and satisfy Risk Management Framework (RMF) CyberSecurity, CyberResilience, and/or CyberSurvivability requirements of: satellite systems, communications links, and ground command amp; control (C2) systems.
* Allocating system-level requirements (commonly expressed as security controls), which includes working as part of the systems engineering team to decompose system-level security requirements across relevant Segments, Subsystems and down to specific Components.
* This allocation process includes requirements associated with secure program protection requirements across Systems Security Engineering specialty areas, or the following disciplines: Anti-Tamper, TEMPEST, Key Management, and cryptographic component integration/development.
* Performing Attack Surface Analysis (ASA) and preparing Systems Security Plan (SSP) documentation for complex space systems, including Risk Assessment Reports (RAR), Security Control Traceability Matrices (SCTM), and Security Assessment Plans/Reports.
* Contributing to systems development activities, specifically hardening systems to meet secure baseline requirements, such as DISA STIGs or CIS Benchmarks, for Commercial, Off-The-Shelf (COTS) technologies. And/or supporting, cognizant engineers in the hardening of custom-built hardware/software.
* Preparing and Executing assessment procedures to verify conformance with Commercial, Federal Civilian agency, Department of Defense (DoD), Intelligence Community, IA/Cyber security controls, and or survivability requirements, as required based on the specified customer/system requirements and risk threshold.
* Performing systems engineering, integration, and test activities for security-critical components, such as Cross Domain Solutions, cryptographic devices, and controlled interfaces.
* Conducting secure system maintenance activities as a privileged user, specifically but not limited to performing, routine audit log reviews, scanning for vulnerabilities, and patching COTS software.
* Supporting Cyber Test amp; Evaluation (cyber vulnerability assessment, penetration testing, adversarial assessment) of systems to meet critical program milestones.

NoVASpace

Qualification

Basic Qualifications:

Bachelors Degree in STEM Science, Technology Engineering or Math.

2 years IT security experience, any federally regulated industry performing:

* Implementing the Risk Management Framework (RMF) NIST 800-171 and/or NIST 800-53 controls in unclassified environments
* Securing complex systems composed of COTS HW/SW
* STEM-focused Masters Degree can substitute for experience.

Any DoD 8570 IT Security certification

Ability to obtain TS/SCI Clearance

Preferred Qualifications:

Bachelors Degree in Electrical Engineering, Computer Science, or Aerospace Engineering

2 years Cyber Systems Engineering experience in the Defense Aerospace Industry performing:

* Security requirements analysis and decomposition
* Hardening systems composed of both COTS and Custom HW/SW
* Exposure to national security requirements for classified systems.

CISSP Certification

Demonstrated knowledge of Systems Engineering processes, applying security to embedded systems, engineering review milestones and SDLC.