Senior Principal Engineer Systems - Cyber; Oklahoma Security Clearance

Position: Senior Principal Engineer Systems - Cyber (Oklahoma City) with Security Clearance
RELOCATION ASSISTANCE:
Relocation assistance may be available CLEARANCE REQUIRED FOR START:
Yes CLEARANCE TYPE:
Secret TRAVEL:
Yes, 10% of the Time Description At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon.

We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Please note that this opportunity is contingent on program funding. Start dates are determined after funding confirmation. Northrop Grumman Aeronautics Systems is currently seeking a Senior Principal Engineer Systems - Cyber for a new and exciting effort located in Oklahoma City, OK. We're looking for a highly motivated, team oriented, individual that understands cybersecurity and the importance to our mission.

The candidate will be responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They will also help develop new designs and security strategies across cloud-based applications and Infrastructure as Code (IaC). The candidate will have hands-on deployment, integration, and configuration experience, and will act as a Cyber Subject Matter Expert (SME) to ensure compliance with the Risk Management Framework.

Responsibilities:
* Design, plan, and implement security tooling configurations to ensure compliance with NIST Special Publication (SP) 800-53, CNSSI 1253, and DoD RMF Knowledge Service guidance.

* Assess system security controls, validate the effective implementation of controls, identify vulnerabilities, and propose corrective measures.

* Document the results of Authorization and Accreditation (A&A) activities, prepare System Security Plans (SSPs), and maintain updated Plans of Action and Milestones (POA&Ms).

* Manage the implementation, automation, configuration, and maintenance of security tools, including centralized authentication solutions, IDS/IPS systems, and compliance baselines.

* Provide expert technical analysis of cybersecurity infrastructure challenges, developing innovative technical solutions tailored to customer requirements.

* Collaborate on technical reviews of requirements, as well as design and implementation plans prior to system deployment.

* Recommend and implement enhancements to security systems aimed at improving performance, reliability, and overall security posture, encompassing installation, upgrades, monitoring, troubleshooting, and configuration.

* Serve as an Information System Security Engineer (ISSE), leveraging advanced technical expertise to inform cyber engineering practices and ensuring adherence to cybersecurity disciplines such as COMSEC, COMPUSEC, EMSEC, OPSEC, and effective use of penetration tools and techniques.

Basic Qualifications:

* Bachelor's Degree in a STEM (Science, Technology, Engineering or Mathematics) discipline and 8 years of related engineering experience; OR a Master's degree in a STEM discipline and 6 years of related engineering experience; OR a PhD in a STEM discipline and 4 years of related engineering experience.

* Current DoD 8570 IAT Level II Certification (e.g., Security+ CE).

* Working knowledge of NIST 800-37 RMF artifacts, including SSPs, Security Control Traceability Matrices (SCTMs), SARs, RARs, and other documentation.

* Hands-on experience deploying and configuring Linux and Windows systems per DoD STIG requirements.

* Expertise in configuring Security Incident Event Monitoring (SIEM) and IDS/IPS tools such as ACAS, HBSS, and Splunk within Linux Red Hat and Windows environments.

* Familiarity with vulnerability and compliance scanning tools such as Tenable.

SC and SCAP.

* Knowledge of Cross-Domain Solution (CDS) technology and compliance requirements.

* Experience designing, integrating, maintaining, and retiring systems within cloud environments.

* Proficiency in scripting security processes to establish consistent, automated baselines across multiple systems for redundancy and efficiency.

* Your ability to transfer and maintain the final adjudicated U.S. Government Secret Clearance (must be in-scope or enrolled in Continuous Evaluation) and any program access(es) required for the position within a reasonable period of time, as determined by the Company.
* Candidate must have and be able to maintain Special Program Access (SAP) within a timeframe reasonable to the company.

Preferred…