Principal/Senior Principal Cyber Compliance Specialist-15069
Company: Northrop Grumman
Location: Huntsville
Posted on: April 4, 2026
|
|
|
Job Description:
RELOCATION ASSISTANCE: No relocation assistance available
CLEARANCE REQUIRED FOR START: Yes CLEARANCE TYPE: Secret TRAVEL:
Yes, 10% of the Time Description At Northrop Grumman, our employees
have incredible opportunities to work on revolutionary systems that
impact people's lives around the world today, and for generations
to come. Our pioneering and inventive spirit has enabled us to be
at the forefront of many technological advancements in our nation's
history - from the first flight across the Atlantic Ocean, to
stealth bombers, to landing on the moon. We look for people who
have bold new ideas, courage and a pioneering spirit to join forces
to invent the future, and have fun along the way. Our culture
thrives on intellectual curiosity, cognitive diversity and bringing
your whole self to work — and we have an insatiable drive to do
what others think is impossible. Our employees are not only part of
history, they're making history. Northrop Grumman is seeking a
Principal or Senior Principal Cyber Compliance Specialist for its
Huntsville, Alabama location. This role will require candidates to
report into the Huntsville, Alabama location on a full-time basis.
Roles and Responsibilities Include: Perform assessments of systems
and networks within the networking environment or enclave and
identify where those systems and networks deviate from acceptable
configurations, enclave policy, or local policy. This is achieved
through passive evaluations such as compliance audits and active
evaluations such as vulnerability assessments. Establishes strict
program control processes to ensure mitigation of risks and
supports obtaining certification and accreditation of systems.
Includes support of process, analysis, coordination, security
certification test, security documentation, as well as
investigations, software research, hardware introduction and
release, emerging technology research inspections and periodic
audits. Assist in the implementation of the required government
policy (i.e., NISPOM, DCID 6-3), make recommendations on process
tailoring, participate in and document process activities. Perform
analyses to validate established security requirements and to
recommend additional security requirements and safeguards. Support
the formal Security Test and Evaluation (ST&E) required by each
government accrediting authority through pre-test preparations,
participation in the tests, analysis of the results and preparation
of required reports. Document the results of Certification and
Accreditation activities and technical or coordination activity and
prepare the system Security Plans and update the Plan of Actions
and Milestones POA&M. Periodically conduct a complete review of
each system's audits and monitor corrective actions until all
actions are closed. Interface with Government customers and
Northrop Grumman leadership on program initiatives and deliver
status updates. Maintain and lead multiple complex efforts with
multiple stakeholders and drive Cybersecurity requirements in an
effort to further program initiatives. This role may be hired at
the Principal of Senior Principal level, depending on the years of
experience candidates bring to the evaluation process. Basic
Qualifications: • Level 04, Sr Principal: Bachelor’s Degree with 9
years' of relevant experience, Master's degree and 7 years of
relevant experience, or PhD with 4 years of relevant experience. An
additional 4 years of relevant experience may be considered in lieu
of degree. • Level 03, Principal: Bachelor’s Degree with 5 years'
relevant experience, Master's degree and 3 years of relevant
experience, or PhD with 1 years of relevant experience. An
additional 4 years of relevant experience may be considered in lieu
of degree. Remaining Qualifications for Both Levels: • DoD IAT
Level II (Principal) or IAT Level III/IAM Level II (Sr. Principal)
certification • Current DoD Secret level security clearance with an
original adjudication, or a periodic reinvestigation date,
completed within the last 6 years; maintaining the required
security clearance will be a condition of continued employment. •
The ability to obtain a Special Access Programs (SAP/SAR) clearance
within a reasonable period of time as determined by the company,
and also by customer and/or program requirements; maintaining a SAP
clearance will be a condition of continued employment. •
Demonstrated expert knowledge of cybersecurity practices, network
technologies, and system development life-cycles, in addition to an
understanding of information technology infrastructure
management/monitoring and applications. • Experience developing and
submitting JSIG required Body of Evidence for Authority to Operate
consideration. • Experience developing guidelines, monitoring
policies, and enforcing standards for cybersecurity frameworks and
industry best practices supporting National Institute of Standards
and Technology (NIST) Special Publication (SP) 800-53, CNSSI 1253,
and DoD Risk Management Framework (RMF). Preferred Qualifications:
• Familiarity with containerization technologies (Docker,
Kubernetes) and their security implications • Lead security
incident investigations, including triage, containment,
eradication, and recovery phases • Conduct proactive threat hunting
to identify potential security gaps • Perform defensive operations
while leveraging security knowledge to anticipate security gaps •
Plan and execute operations to test security controls and identify
vulnerabilities • Develop and enhance detection rules and
correlation logic to identify threats • Execute Incident Response
activities during security incidents • Create and maintain incident
response playbooks and procedures • Mentor junior engineers and
contribute to the team's professional development • Collaborate
with cross-functional teams to improve security posture and
response capabilities Current DoD Secret level security clearance
with an original adjudication, or a periodic reinvestigation date,
completed within the last 6 years; maintaining the required
security clearance will be a condition of continued employment.
Primary Level Salary Range: $108,800.00 - $163,200.00 Secondary
Level Salary Range: $135,800.00 - $203,600.00 The above salary
range represents a general guideline; however, Northrop Grumman
considers a number of factors when determining base salary offers
such as the scope and responsibilities of the position and the
candidate's experience, education, skills and current market
conditions. Depending on the position, employees may be eligible
for overtime, shift differential, and a discretionary bonus in
addition to base pay. Annual bonuses are designed to reward
individual contributions as well as allow employees to share in
company results. Employees in Vice President or Director positions
may be eligible for Long Term Incentives. In addition, Northrop
Grumman provides a variety of benefits including health insurance
coverage, life and disability insurance, savings plan, Company paid
holidays and paid time off (PTO) for vacation and/or personal
business. The application period for the job is estimated to be 20
days from the job posting date. However, this timeline may be
shortened or extended depending on business needs and the
availability of qualified candidates. Northrop Grumman is an Equal
Opportunity Employer, making decisions without regard to race,
color, religion, creed, sex, sexual orientation, gender identity,
marital status, national origin, age, veteran status, disability,
or any other protected class. For our complete EEO and pay
transparency statement, please visit
http://www.northropgrumman.com/EEO. U.S. Citizenship is required
for all positions with a government clearance and certain other
restricted positions.
Keywords: Northrop Grumman, Huntsville , Principal/Senior Principal Cyber Compliance Specialist-15069, Engineering , Huntsville, Alabama
