Job Details

US CYBERCOM Cybersecurity Engineer




Columbia, MD 20588

Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy (i.e., NISPOM, DCID 6-3), make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed. Ensures the rigorous application of cybersecurity policies, principles, and practices in the delivery of all Information Technology (IT) and cybersecurity services
* Develops and designs security solutions to maintain confidentiality, integrity, and availability of information throughout the enterprise
* Identifies, plans, and documents improvements to security controls currently in place
* Develops and documents recommendations and courses of action (COAs) to solve complex cybersecurity problems
* Develops and interprets cybersecurity requirements as part of the IT acquisition development process and assists in the formulation of cybersecurity/IT budgets
* Plans and schedules the installation of new or modified security hardware, operating systems, and software applications
* Ensures the assessment and implementation of identified computer and network environment fixes such as system patches and fixes associated with specific technical vulnerabilities as part of the Cybersecurity Vulnerability Management program
* Guides the implementation of appropriate operational structures and processes to ensure an effective cybersecurity program, including boundary defense, incident detection, and response
* Possesses a thorough understanding and ability to apply intermediate concepts of cyber engineering and cybersecurity
* Maintains thorough knowledge and understanding of the DOD cybersecurity policies and the Risk Management Framework
* Initiates actions to conduct cybersecurity engineering research and analysis and provides recommendations for the implementation of security mechanisms
* Initiates actions to apply advanced concepts of cyber engineering and cybersecurity to development and architecture projects
* Coordinates effort to develop cybersecurity documentation, concept papers, and test plans required by Command policies and the Risk Management Framework
* Analyzes complex information independently and takes appropriate actions, and reviews and implements recommendations from others
* Maintains extensive knowledge and understanding of DOD and/or IC engineering efforts, across multiple engineering disciplines
* Develops and delivers articulate and effective briefings/presentations on complex cybersecurity engineering topics as applicable to assigned projects to any size audience that may include high-level decision makers
* Prioritizes competing requirements and tasks, and manages long-term and short-term obligations
* Coordinates effort to develop all cybersecurity documentation, concept papers, and test plans required by Command policies and the Risk Management Framework
* Initiates actions to evaluate functional operation and performance in light of test results and makes recommendations regarding C&A
* Effectively provides engineering guidance to cybersecurity engineers Level I and II


Basic Qualifications:
Minimum of Bachelor's Degree in a technical or business discipline from an accredited college or university in Computer Science, Cybersecurity, Computer Engineering, or related discipline with 9 years experience Minimum DOD 8140/DOD 8570 IAM Level II Certification Strong attention to detail and organizational skills. Excellent communications skills. TS/SCI with Poly US Citizen Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.

Shift: 1st Shift
Relocation Assistance: Yes
US Citizenship Required for this Position: No relocation assistance available
Business Sector: United States-Maryland-Columbia 

Shift: 1st Shift
Relocation Assistance: Yes
US Citizenship Required for this Position: No relocation assistance available
Business Sector: United States-Maryland-Columbia
Post Date:
Minimum Clearance:
Top Secret/SCI - Polygraph
Job Category:
IT - Security
Unspecified annual salary
Unspecified hourly wage
Compensation Comments:
Group ID: