Sr. Principal Cyber/Software Security Architect - Top Secret Clearance

Company: Northrop Grumman
Location: Sterling
Posted on: January 26, 2023

Job Description:

Requisition ID: R10089816Category: EngineeringLocation: Dulles, VA, USACitizenship Required: United States CitizenshipClearance Type: Top SecretTelecommute: No Teleworking not available for this positionShift: Days (United States of America)Travel Required: Yes, 10% of the TimePositions Available: 1At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.This is a DevSecOps position is in a 100% Agile development environment focused on the cyber security attributes for ground segment and mission application software development. Cyber Software Security Architect is focused on software security assurance activities, such as enabling security tools within CI/CD pipeline; leading automation plans for repeatable cyber assessment of software; leading Static and Dynamic security scanning of application software; other application layerhardening; and oversight of environment/infrastructure hardening per CM Standards (STIGs); defining goals and leading a team to develop infrastructure as code (Ansible scripting, deployment automation).Additional Responsibilities for Sr. Principal Cyber/Software Security Architect:Working as senior technical team lead in an Agile engineering environment, where the Cyber Software Architect leads others in identifying and prioritizing security requirements; triage of Static Code Analysis (SCA) tool findings (e.G. Fortify) and prioritizing the findings as technical debt in the SwDLC backlog. As an architect and team lead, this position requires technical depth, personnel leadership, and management skills to coordinate conflicting resources and communicate recommended courses of action with internal and external stakeholders.Leading the development of secure coding practices for cyber software engineers embedded in software development scrum teams, leading and approving security-focused engineering trade studies, and adjudicating major issues and concerns.Leading teams that perform system vulnerability scanning, remediation and patch management activities on Windows and Red Hat operating systems and various COTS/GOTS applications, including those within virtualized and/or cloud environments.Adjudicating security tool findings by working with software developers, systems engineers, and other engineering disciplines to resolve technical and programmatic cyber security concerns. A demonstrated ability to negotiate with senior leaders, customer stakeholders, and program leadership is an essential skill.Documenting Standard Operating Procedures (SOPs), and when needed, performing software patch installation, other flaw remediation, antivirus updates, and continuous monitoring (ConMon) activities.Ensuring systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the system security authorization package (SSP, SCTM, ConMon Plan, RAR).Overseeing procedures and personnel to ensure SCAP (configuration compliance) Scans, developing and running NIST 800-53a Verification Procedures and running through manual STIG check lists.Basic Qualifications:Bachelors Degree in STEM field with 9 years IT security experience in any industry or Masters Degree in STEM field with 7 years IT security ( cyber ) experienceMust have U.S. Citizenship with active or current Top Secret Clearance with SCI eligibilityCISSP CertificationFamiliarity with Systems Engineering processes and milestones; understanding of the requirements analysis, decomposition, and allocation processPreferred Qualifications:5+ years experience in the Defense Aerospace cyber security IndustryAWS or other cloud CertificationExperience working in restricted facilities and using highly sensitive IT systems.Demonstrated knowledge and experience participating in Systems Engineering milestone reviews, as the cyber security focal.Salary Range: $129,700 USD $194,500 USDEmployees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.Saferfederalworkforce.Gov/contractors/.Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.Northropgrumman.Com/EEO. U.S. Citizenship is required for most positions.

Keywords: Northrop Grumman, Sterling , Sr. Principal Cyber/Software Security Architect - Top Secret Clearance, IT / Software / Systems , Sterling, Virginia