Sr Principal Classified Cybersecurity Analyst - Secret

At the heart of Defining Possible is our commitment to missions. In rapidly changing global security environments, Northrop Grumman brings informed insights and secure technological solutions to enable strategic objectives. We’re looking for innovators who can help us keep building on our wide portfolio of secure, affordable, integrated, and multi-domain systems and technologies that fuel those missions. By joining in our shared mission, we will support yours by expanding your personal network and developing skills, whether you are new to the field or an industry thought leader. At Northrop Grumman, you will have the resources, support, and team to do some of the best work of your career. 

The Northrop Grumman Classified CIDO Solutions team is seeking a Sr. Principal Classified Cybersecurity Analyst to support information systems lifecycle activities. The selected candidate will be required to work on-site, full-time at our Colorado Springs, CO location.  

The responsibilities of this role include, but are not limited to, the following: 

• Manage the cybersecurity program of all assigned information systems and execute all cybersecurity-related tasks. 

• Conduct and lead regular reviews of system audits and continuous monitoring activities, covering all security controls and configurations, to enhance operational efficiencies of the information system security posture. 

• Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.  

• Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.   

• Drive the implementation of the required government policy, make recommendations on process tailoring, participate in and document process activities.   

• Establish and oversee strict program control processes that mitigate risk and support system Assessment and Authorization (A&A). This includes process support, analysis, coordination, security certification testing, security documentation, investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.  

• Lead the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.   

• Document the results of A&A activities, and inspection activities, along with any technical or corrective actions and work collectively with the security team to submit responses to the appropriate cognizant authority. 

• Prepare, review, and submit A&A documentation (System Security Plan, Risk Acceptance Report, Security Controls Traceability Matrix, Plan of Action and Milestones, etc.) for review and approval. 

Note: Due to the classified nature of the work being performed, this position does not offer any virtual or telecommute working options. Applicants are encouraged to apply only if they are willing to work on-site. 

• Master's degree with 6 years of relevant technical experience; OR a Bachelor's degree with 8 years of relevant technical experience; OR an Associate's degree with 10 years of relevant technical experience; OR a High School Diploma/GED with 12 years of relevant technical experience is required 
• Candidates must have experience with Linux (RHEL), eMass, SIEM tools, and Compliance Scanning
• Candidates must meet the U.S. Government 8140 requirements (8570 equivalent) for a Sr Principal Classified Cybersecurity Analyst – IAM Level III (examples: CISM, CISSP, CCISO)
• Candidates must have a current Secret level security clearance (at a minimum) in order to be considered