Northrop Grumman Cyber Information Systems Security Manager 2 in Palmdale, California
The Cyber Information Systems Security team is actively looking for a regional Manager of Cyber Information Assurance that will manage a team of Cyber Security Exempt and Non-Exempt employees. The team performs assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy (i.e., JSIG (primarily), NISPOM (DAAPM), ICDs), make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Assessments and Accreditation activities and technical or coordination activity and prepare the Body of Evidence (BoE) and update the Plan of Actions and Milestones (POA&M). Also, periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.
This position will ensure the management/coordination with classified programs on the design, testing, and implementing state-of-the-art secure operating systems, networks, database products, firewalls, and network architectures meet government classified Cyber Information Assurance compliance requirements. The role will ensure compliance with all associated systems/networks achieve and maintain formal accreditation authorizations from government agencies.
The successful candidate will establish an inclusive culture within a geographically diverse environment and will be responsible for the following:
Managing a team of Cyber Information Systems Security (CISS) Professionals.
Establishing a strict program control processes to ensure mitigation of risks and support obtaining formal Assessment & Authorization of systems.
Assisting in the implementation of the required government policy (i.e. DAAPM, JSIG (primary), ICD-503). This may include project management.
Ensuring the team follows Northrop Grumman and the Cyber ISS organization's policies and procedures. That information is accurate and complete in support of those policies and procedures.
Supporting the formal Security Assessment process required by the company or government customer.
Regularly communicating and coordinating with program management teams, the Enterprise Services Program Management Office Team, the Information Technology Organization and Industrial Security.
Bachelor's degree and 10 years Information Systems Security experience in at least two areas: NISP, DoD SAP, and/or SCI or master's degree and 8 years of Information System Security experience in at least two areas, NISP, DoD SAP, and/or SCI.
Current IAM DoD level 3 (CISM, GSLC and CISSP or CISSP Associate).
Candidates must have a current DOD Top Secret level security clearance with an original adjudication, or a periodic reinvestigation, completed within the last 6 years to be considered.
Must have the ability to obtain, and maintain, a Special Access Programs (SAP/SAR) level clearance as a condition of continued employment).
Bachelor's Degree or Master's Degree in Cyber Security or Information Security related disciplines.
Indepth knowledge of the Special Access Program classified system accreditation process (JSIG).
Active Top Secret with SAP/SAR access.
Excellent communication skills. Prior experience communicating with both Program and Division senior leadership.
Prior experience in a leadership / management role.
Diverse classified information systems security / information assurance background.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.