Job Requirements
Co Spgs, CO
Secret Polygraph not specified
Mid Level Career (5+ yrs experience)
$120,000 - $160,000
Job Description
• Company: Northrop Grumman
• Position: Cyber Systems Security Test Engineer
• Location: 9975 Federal Drive
• Duration: long term, ongoing contract – we are a direct sub to the C2BMC program
• Clearance: Secret, will hold TS if you already have it
• Program – C2BMC
"The candidate will work directly with the Cyber Engineering team to integrate and verify cybersecurity solutions on the C2BMC platform at COS HWY-83, ensuring all security controls are properly implemented and thoroughly tested. They will act as the main liaison with the Cyber Test Facility (CTF) at MIDOC, coordinating test events, reviewing test plans submitted by cyber teams, and briefing program leadership on their analysis of the test plans. They will also assist teams in identifying the specific cyber requirements for successful execution. Additionally, the role involves supporting cyber teams by facilitating the prompt delivery of capabilities and solutions, with a strong focus on vulnerability management.
Essential Functions:
• Responsibilities include managing the full lifecycle of Information Assurance Vulnerability Management (IAVM) tickets, executing Cyber Tasking Orders (CTO), addressing Common Vulnerabilities and Exposures (CVE), integrating vendor-issued patches, and applying and verifying DISA STIG configurations
Basic Qualifications:
Please list your current security clearance and IAT or relevant certifications on your resume, if applicable.
• A Bachelor’s Degree in Computer Science, Computer Engineering, Cybersecurity Engineering, Electrical Engineering, Information Technology, Mathematics, Physics, or a related field from an accredited university, along with 5 years of experience; or a Master’s degree in a related field with 3 years of relevant work experience; or 9 years of relevant work experience may be considered as an alternative to a degree
• Applicants must have a current, active DoD 8140 certification at IAT Level II or higher (such as Security+ CE, CCNA-Security, CySA+, CND, etc.) at the time of application, which is required to start. The candidate is responsible for maintaining their DoD 8140 certification throughout the entire contract period
• Applicants must have a current, active in-scope DoD-issued Secret security clearance at the time of application, which is required to start
• Strong working knowledge of cyber capabilities—including patch management, multi-factor authentication, host-based security, intrusion detection, security event management, active/passive system scanning, and defense-in-depth
• Must possess a strong working knowledge of core cyber capabilities—including patch management, Group Policy Object (GPO) management, and proven remediation techniques for cybersecurity vulnerabilities and threats—as well as security engineering expertise in Information Assurance (IA) technologies, NIST standards, DoDI8500.2, and Risk Management Framework (RMF) security controls
• Must have hands-on experience throughout the Agile development lifecycle, specifically using the Scrum framework—identifying requirements, defining user stories, and participating in sprint planning, daily stand-ups, and sprint reviews
• Will review test plans and test cases provided by development teams, verify their proper implementation, execute the tests, and give clear, actionable feedback to ensure cybersecurity compliance
• Experience in configuring cyber audit tools, conducting cyber vulnerability assessments, and managing configuration activities is also necessary
• A solid understanding of Software Development Life Cycle (SDLC) models and testing processes, along with proficiency in cyber-tool software applications is essential
• Leadership experience, solid interpersonal skills, and the ability to manage complex organizational relationships are essential
• Strong technical writing and verbal communication skills are crucial for presenting technical cyber issues and reports to government stakeholders, program management, and other C2BMC functional areas
Preferred Qualifications:
• An individual who extensively applies principles, theories, and concepts in their field and offers creative, comprehensive solutions to a wide range of complex problems
• Works under general direction, and results are reviewed upon completion to ensure they meet objectives. Failure to achieve results typically causes serious program delays and significant resource expenditure
• Maintains regular contact with internal and external customers and represents the organization in providing solutions to challenging technical issues related to specific projects"
• Position: Cyber Systems Security Test Engineer
• Location: 9975 Federal Drive
• Duration: long term, ongoing contract – we are a direct sub to the C2BMC program
• Clearance: Secret, will hold TS if you already have it
• Program – C2BMC
"The candidate will work directly with the Cyber Engineering team to integrate and verify cybersecurity solutions on the C2BMC platform at COS HWY-83, ensuring all security controls are properly implemented and thoroughly tested. They will act as the main liaison with the Cyber Test Facility (CTF) at MIDOC, coordinating test events, reviewing test plans submitted by cyber teams, and briefing program leadership on their analysis of the test plans. They will also assist teams in identifying the specific cyber requirements for successful execution. Additionally, the role involves supporting cyber teams by facilitating the prompt delivery of capabilities and solutions, with a strong focus on vulnerability management.
Essential Functions:
• Responsibilities include managing the full lifecycle of Information Assurance Vulnerability Management (IAVM) tickets, executing Cyber Tasking Orders (CTO), addressing Common Vulnerabilities and Exposures (CVE), integrating vendor-issued patches, and applying and verifying DISA STIG configurations
Basic Qualifications:
Please list your current security clearance and IAT or relevant certifications on your resume, if applicable.
• A Bachelor’s Degree in Computer Science, Computer Engineering, Cybersecurity Engineering, Electrical Engineering, Information Technology, Mathematics, Physics, or a related field from an accredited university, along with 5 years of experience; or a Master’s degree in a related field with 3 years of relevant work experience; or 9 years of relevant work experience may be considered as an alternative to a degree
• Applicants must have a current, active DoD 8140 certification at IAT Level II or higher (such as Security+ CE, CCNA-Security, CySA+, CND, etc.) at the time of application, which is required to start. The candidate is responsible for maintaining their DoD 8140 certification throughout the entire contract period
• Applicants must have a current, active in-scope DoD-issued Secret security clearance at the time of application, which is required to start
• Strong working knowledge of cyber capabilities—including patch management, multi-factor authentication, host-based security, intrusion detection, security event management, active/passive system scanning, and defense-in-depth
• Must possess a strong working knowledge of core cyber capabilities—including patch management, Group Policy Object (GPO) management, and proven remediation techniques for cybersecurity vulnerabilities and threats—as well as security engineering expertise in Information Assurance (IA) technologies, NIST standards, DoDI8500.2, and Risk Management Framework (RMF) security controls
• Must have hands-on experience throughout the Agile development lifecycle, specifically using the Scrum framework—identifying requirements, defining user stories, and participating in sprint planning, daily stand-ups, and sprint reviews
• Will review test plans and test cases provided by development teams, verify their proper implementation, execute the tests, and give clear, actionable feedback to ensure cybersecurity compliance
• Experience in configuring cyber audit tools, conducting cyber vulnerability assessments, and managing configuration activities is also necessary
• A solid understanding of Software Development Life Cycle (SDLC) models and testing processes, along with proficiency in cyber-tool software applications is essential
• Leadership experience, solid interpersonal skills, and the ability to manage complex organizational relationships are essential
• Strong technical writing and verbal communication skills are crucial for presenting technical cyber issues and reports to government stakeholders, program management, and other C2BMC functional areas
Preferred Qualifications:
• An individual who extensively applies principles, theories, and concepts in their field and offers creative, comprehensive solutions to a wide range of complex problems
• Works under general direction, and results are reviewed upon completion to ensure they meet objectives. Failure to achieve results typically causes serious program delays and significant resource expenditure
• Maintains regular contact with internal and external customers and represents the organization in providing solutions to challenging technical issues related to specific projects"
group id: 10112344
Defining Company Culture
