Northrop Grumman Staff Cybersecurity Test Lead in Colorado Springs, Colorado
Discover careers that change the world and further advancements in defense, technology, and engineering today at Northrop Grumman. Use your experience to grow your career and support our global customers with the technology, systems, and solutions they need to enable their missions on the front lines and secure our world every day. With Northrop Grumman, you'll discover a culture built on diversity, respect, and above all teamwork. Together with our group of experts across the technical spectrum, you'll discover opportunities to make a difference in our world and start solving some of the world's most critical problems in the most innovative ways.
This position will report to the Command & Control Ballistic Missile Communications (C2BMC) Program leadership and is responsible for coordinating no less than 20 high-visibility MDA Cyber Events for the C2BMC element of the Ballistic Missile Defense System (BMDS). Primary work location is at Schriever AFB (MDIOC) but will also involve work at other offices in Colorado Springs, CO.
This position will lead the Cybersecurity T&E planning, execution and reporting to include:
Managing multiple T&E projects and MDA Cyber Events, documenting actionable T&E metrics and communicating with various intra/inter Missile Defense Agency (MDA) related organizations.
Frequently brief results and Plan of Action & Milestones (POAMs) to MDA Executive leadership on behalf of C2BMC.
Position will also ensure that team projects are completed on schedule following established program procedures, schedules and work plans.
The Cybersecurity T&E lead will plan for and coordinate across National Team Functional Areas to ensure appropriate resources are represented at each C2BMC T&E Event. This position will conduct post event analysis and ensure results from MDA Cyber events and the solutions to those results are incorporated into the engineering baseline as appropriate.
Position daily tasks include:
Researches, develops, and recommends appropriate Cybersecurity countermeasures for networks, systems, and/or applications based upon test and evaluation information
Supports various Cybersecurity T&E reviews performed by multiple external organizations and identifies gaps in security architecture, resulting in recommendations for inclusion in a risk mitigation strategy
Maintains Cyber T&E Plans and POAMs to ensure compliance with DoD policies and directives, USCYBERCOM guidance, risk mitigation, and minimum-security policies and requirements
Works with other T&E organizations to develop rules of engagement (RoE), tailored test plans, and synchronizes efforts across all T&E efforts
Candidate must be able to be self-initiated and capable of leading large groups of people and data to drive solutions to and increase cyber posture of C2BMC Depending on mission and test event requirements travel to CONUS and/or OCONUS locations will be required.
Candidate must be able to be on-call and work evenings and weekends during scheduled test activities and to resolve system anomalies.
Bachelor's degree and a minimum of 14 years experience OR Masters with a minimum of 12 years. May consider an equivalent experience/combined education (i.e. an additional 4 years of experience in lieu of degree)
IASAE Level I certification required - i.e. CASP+ CE, CISSP (or Associate), CSSLP
Advanced understanding and practical application of DoD policies and directives, USCYBERCOM guidance, NIST standard and RMF controls for a Mission System
Knowledge of Cybersecurity, network attack, computer network defense and exploitation concepts, practices, and tools for the administration and protection of all DoD computer systems
Ability to evaluate effectiveness, suitability, survivability and interoperability of systems, relating to Cybersecurity and provide key feedback to improve the overall Cybersecurity posture of assigned systems
Ability to analyze Cybersecurity architecture, engineering, functionality and interoperability of systems
Experience collaborating with system engineers to ensure Cybersecurity is implemented early in the designing, planning, execution, analysis, and reporting of MDA Test and Evaluation events
Experience conducting internal and external systems security assessments and testing utilizing vulnerability scanning tools and penetration testing tools to identify security vulnerabilities in the system architecture
Ability to analyze security findings/weaknesses and work with system engineers to develop a Plan of Action and Milestones (POAMs) to remediate the findings and revalidate applied fixes
Active Secret security clearance and US citizenship required.
CISSP IASAE Level I certification
Ballistic Missile Defense System (BMDS) knowledge
Command and Control Ballistic Missile Communications (C2BMC) program knowledge
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.
Job Category : Information Technology