Forgotten Password

Roy, Utah Northrop Grumman
Category: Engineering
Location: Roy, Utah
US Citizenship Required for this Position: Yes
Clearance Type: Secret
Telecommute: No -Teleworking not available for this position
Shift: 1st Shift
Travel Required: Yes, 10 % of the Time
Positions Available: 2

Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you'll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today. Northrop Grumman Space Systems is seeking a Principal/Sr. Principal Supply Chain Risk Mangement Systems Engineer. This position will be located in Roy, UT and will support the Ground Based Strategic Deterrent (GBSD) program. Learn more about the GBSD program here. Supply Chain Risk Management Engineer will be responsible for assessing and analyzing vulnerabilities in the supply chain. The engineer will be part of the team performing annual penetration testing and vulnerability assessments for supply chain elements, processes, and actors and provide results. This position may be filled at a higher level based on qualifications below. A vulnerability is any weakness in system design, development, production, or operation that can be exploited by a threat to defeat the system's mission objectives or significantly degrade its performance. Decisions about which vulnerabilities need to be addressed and which protection measures or mitigation approaches are applied are based on an overall understanding of risks and program priorities. Potential malicious activities that could interfere with a system's operation are considered throughout a system's design, development testing, production, and maintenance. What you'll get to do:
Research and identify vulnerabilities on suppliers systems and networks
Perform vulnerability analysis of applications and operating systems
Evaluate system security configurations
Conduct penetration tests on networks and applications
Prepare and present technical reports and briefings
Coordinate and schedule activities with key stakeholders
As a full-time employee of Northrop Grumman Space Systems, you are eligible for our robust benefits package including:
Medical, Dental & Vision coverage
Educational Assistance
Life Insurance
Employee Assistance Programs & Work/Life Solutions
Paid Time Off
Health & Wellness Resources
Employee Discounts
This position's standard work schedule is a 9/80A. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off. UTSpace GBSDJobs

You'll bring these qualifications: This requisition may be filled at either a Principal level or level Sr. Principal level.
Bachelor's degree or higher in science, technology, engineering, applied mathematics, or a related (STEM) discipline
A minimum 5 years of applicable experience with a BS Degree, or 3 years with a Master's; or 0 with a PhD (Sr.Principal requires 9 years with a BS; 7 with MS; or 4 with a PhD)
A minimum 2 years in researching, interpreting, and developing mitigations for threats and vulnerabilities
An active DoD Secret Security Clearance or higher

These qualifications would be nice to have:
Experience conducting penetration testing
Experience conducting vulnerability research
Direct experience conducting in supply chain risk management or supply chain security
Direct experience evaluating program processes and compliance strategies for large, complex multi-site programs
Experience with one or more of Reverse Engineering or debugging tools
Demonstrated ability to identify and develop exploits for systems, e.g. Bug Bounty awards, CVEs, or winning organized Capture-the-Flag competitions
One or more of the following certifications
Offensive Security Certified Professional (OSCP)
Offensive Security Certified Expert (OSCE)
Offensive Security Certified Exploitation Expert (OSEE)
Knowledge of acquisition threat analysis and protection initiatives for acquisition programs
Ability to anticipate problems and innovatively develop proactive solutions.
Knowledge of the principles, concepts, and methodologies of risk analysis and mitigation framework
Skill in producing finished reports and assessments; conducting original research; analyzing information; and presenting clear and concise findings
Knowledge of the US intelligence community policies, resources, databases, and requirements to perform research and analysis
Team player, able to multi-task, ability to generate quality work products without heavy supervision
Able to communicate effectively and clearly present technical approaches and findings
Excellent judgement and interpersonal skills
Excellent organizational skills
Active Final Secret clearance with the ability to gain access to a Special Access Program and adjudication in the last 6 years

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit U.S. Citizenship is required for most positions.