RELOCATION ASSISTANCE: Relocation assistance may be availableCLEARANCE REQUIRED FOR START: YesCLEARANCE TYPE: SecretTRAVEL: Yes, 10% of the Time Description At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.Description
Northrop Grumman Defense Systems is seeking a Staff Cyber Systems Engineer - 18383. This position is located in Roy, UT or Huntsville, AL and supports the Sentinel program.
The System Security Engineer Lead serves as the technical authority responsible for defining, governing, and validating the entire security posture of the Digital Ecosystem (DE) across its full lifecycle. This includes enterprise-level security decisions, AT strategy, Cybersecurity architecture, Program Protection, exportability, supply-chain assurance, and survivability against highly capable adversaries.
This individual sets the technical direction for the program, mentors engineering staff, leads major architecture and design reviews, and ensures that the delivered system complies with all relevant regulations, guidance, and DoD policies.
What You'll Get To Do:

Build & Lead the DE MDT - Recruit a balanced mix of software security analysts, platform engineers, and cyber operations specialists; define roles, responsibilities, and career pathways.

• Own the DE Security Architecture

• Design a resilient, modular security framework for mission-engineering applications like the software factory, DaaS, and AI/ML services and collaboration tools; map controls to NIST/DoD standards and ensure they are reflected in SysML models.

• Drive RMF & Compliance

• Lead the end to end RMF process, produce System Security Plans (SSPs), Security Assessment Plans (SAPs), and POA&Ms, and act as the primary liaison with the system ISSM and compliance teams.

• Integrate Security into the Software Lifecycle

• Embed secure coding standards, automated scanning, and continuous monitoring into CI/CD pipelines; champion "security as code" practices. Ensure software architecture and designs have security baked-in.

• Mentor & Upskill

• Conduct threat modeling workshops, secure development bootcamps, and platform hardening sessions; guide junior engineers in applying MBSE security stereotypes and traceability techniques.

• Ensure Supply Chain Integrity

• Oversee provenance checks, open source risk assessments, and exportability reviews for all third party components and AI models.

• Lead Incident Response

• Author and exercise incident response playbooks, coordinate with cyber operations to contain breaches, and drive post incident lessons learned into the development process.

• Collaborate Across Disciplines

• Work closely with product owners, data scientists, platform architects, and other systems engineers to align security requirements with mission objectives, performance, and schedule constraints.

Position Benefits:
As a full-time employee of Northrop Grumman, you are eligible for our robust benefits package including

Medical, Dental & Vision coverage

Educational Assistance

Life Insurance

Employee Assistance Programs & Work/Life Solutions

Paid Time Off:

Health & Wellness Resources:

Employee Discounts

This positions standard work schedule is a 9/80. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off. This role may offer a competitive relocation assistance package.
You'll Bring These Qualifications:Bachelor's Degree with 12 years of relevant experience, or a Masters' Degree with 10 years of relevant experience, or a PhD with 8 years of relevant experience or an additional 4 years of experience may be considered in lieu of degree.

Must have an active U.S. Government DoD Secret security clearance at time of application, current and within scope, with an ability to obtain and maintain Special Access Program (SAP) approval within a reasonable period of time, as determined by the company to meet its business need.

Minimum 5 years in system security engineering, threat modeling, and security architecture for software intensive platforms.

Experience in security design principles, risk assessment, and mitigation strategies at the architecture, system, and design levels.

Experience processing SOW, requirements, architecture, design, implementation, integration, verification & validation, etc.

Secure coding, static/dynamic analysis, container & micro service security, AI/ML model protection.

Experience hardening cloud/on prem infrastructure, CI/CD pipelines, and container orchestration (Kubernetes, Open Shift).

Demonstrated ability to build, mentor, and lead multidisciplinary engineering teams.

These Qualifications Would be Nice to Have:Active Do

D Top Secret clearance:

SysML modeling (Cameo, Enterprise Architect) and application of cybersecurity profile stereotypes.

Experience with cyber test automation tools (e.g., OpenSCAP, Snyk, Burp Suite, Metasploit).

Proven record of implementing Dev Sec Ops pipelines (GitLab CI, Jenkins, Azure DevOps) with automated policy as code.

Experience delivering MOSA based platforms and integrating open source components securely.

Hands on execution of the DoD Risk Management Framework (categorization ? continuous monitoring).

Familiarity with AI/ML model governance (ML Ops security, data provenance, model poisoning detection).

Proficiency with IBM?DOORS/DOORS Next or similar requirements management tools.

Experience authoring Incident Response Playbooks and leading Red Team/Blue Team exercises.

• Certifications: CISSP, ISSAP, CSSLP, OSCP

#Sentinel Software
Primary Level Salary Range: $168,200.00 - $252,200.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.