Requisition ID: R10175773
• Category: Information Technology
• Location: Roy, Utah, United States of America
• Clearance Type: Top Secret
• Telecommute: No - Teleworking not available for this position
• Shift: 1st Shift (United States of America)
• Travel Required: Yes, 10% of the Time
• Relocation Assistance: Relocation assistance may be available
• Positions Available: 1

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history. We look for people who have bold new ideas, courage, and a pioneering spirit to join forces to invent the future. Our culture thrives on intellectual curiosity, cognitive diversity, and bringing your whole self to work.

What You'll Get To Do:

1. Develop, submit, and maintain Authorization to Operate (ATO) packages for DCSA compliance, ensuring adherence to security requirements and regulations.
2. Work within the eMASS system to manage and track ATO packages, coordinating with various stakeholders throughout the approval process.
3. Collaborate with various teams to understand and gather system artifacts for security compliance verification.
4. Establish strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems.
5. Assist in the implementation of the required government policy (i.e., JSIG, DAAPM) and make recommendations on process tailoring.
6. Perform analyses to validate established security requirements and recommend additional security requirements and safeguards.
7. Support the formal Security Test and Evaluation (ST&E) required by each government authority.
8. Document the results of Assessment and Authorization activities and prepare the system Security Plans.
9. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.

Basic Qualifications:

1. 5 years of relevant experience with a Bachelor's degree, 3 years experience with a Master's degree, or 1 year with PhD. An additional 4 years of direct cybersecurity experience may be considered in lieu of a degree.
2. Current DoD Top Secret level security clearance with an original adjudication, or a periodic reinvestigation date, completed within the last 6 years.
3. Current DoD 8570 IAM Level II security certification (i.e. CGRC, CISSP, etc.).
4. Experience developing, submitting, and maintaining ATO packages as well as updating artifacts within eMASS.
5. Experience performing vulnerability scans using Tenable & Splunk.
6. Demonstrated expert knowledge of cybersecurity practices, network technologies, and system development life-cycles.
7. Strong attention to detail and interpersonal skills.
8. Ability to work with minimal supervision, both independently and within a team.
9. Proficient with Microsoft Office Tools (Excel, Word, PowerPoint).

Preferred Qualifications:

1. Working knowledge of ATO packages and the eMASS system.
2. Working knowledge and experience with NIST RMF.
3. Working knowledge and understanding of auditing, vulnerability scanning/remediation, SIEMs, DISA STIGs, configuration/change control, and implementation of Risk Management Framework.
4. Experience managing a POA&M and identifying a handling plan for specific vulnerabilities.
5. Strong verbal and written communication skills to produce coherent and concise documentation required for certification evaluation.

Salary Range: $92,600 - $139,000
Employees may be eligible for a discretionary bonus in addition to base pay.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates. Northrop Grumman is committed to hiring and retaining a diverse workforce.