Principal Computer Network Defense Analyst (21-263)
Vacancy expired!
Embark on a career putting innovative, reliable, and agile products and ideas into orbit, and beyond. Northrop Grumman has opportunities waiting for you that play a vital role in human space exploration, national defense, and scientific discovery, supporting multiple programs across the universe. With us, you'll discover a culture of curiosity and collaboration that will have you Defining Possible from the day you start. Our space systems connect and protect millions of people on earth every day, now and for the future. Explore your future and launch your career today. At Northrop Grumman we develop cutting-edge technology that preserves freedom and advances human discovery. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We continue to innovate with developments from launching the first commercial flight to space, to discovering the early beginnings of the universe. Our employees are not only part of history, they're making history. The Engineering organization pushes the boundaries of innovation, redefines engineering capabilities, and drives advances in various sciences. Our team is chartered with providing the skills, innovative technologies to develop, design, produce and sustain optimized product lines across the sector while providing a decisive advantage to the warfighter. Come be a part of our mission! Northrop Grumman Space Systems (NGSP) is looking for you to join our team as a Principal Computer Network Defense Analyst based out of Schriever Air Force Base, Colorado Springs, CO. What You'll get to Do:
- Responsible for implementing and enforcing national, DOD (8500.2, 5200.2-R, etc.), and MDA security policies and directives.
- Oversees intrusion detection, boundary protection and vulnerability assessment operations to defend the C2BMC component of the Ballistic Missile Defense Communications Network (BMD COMNET) and C2BMC mission systems and services.
- Develops a network defense visibility display and directs/executes time sensitive adjustments to the network security posture to minimize or counter operational risk.
- The Network Defender will collect, store and present data and metrics for use by senior leaders to conduct Operational Risk Management (ORM) decisions on the network security posture and perform proactive security functions established to assist BMD organizations in deterring, detecting, isolating, containing, and recovering from information system (IS) and network security intrusions and mitigating known network vulnerabilities.
- The Network Defender will operate and administer the BMD provided IA/CND suite, to include firewalls, correlated log analysis, intruder alert and related services to protect BMD COMNET infrastructure and information services from internal and external threats.
- Performs other related duties and assignments as required.
- Position requires 24x7 rotating shift work. Candidate will be assigned to a shift, to be determined by mission requirements. Some substitute rotation during off-shifts, including nights and weekends will be required.
- An active Secret clearance is required.
- 5 Years with Bachelor's degree in a related field; 9 years' experience in lieu of a degree.
- Must possess a DoD 8570 certification at IAT Level II or higher (Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA)
- Sound knowledge of and practical experience in the usage of an array of network and information security tools.
- Knowledge of modern computer systems, client/server, LAN/WAN and Network concepts, modern network management and monitoring concepts.
- Ability to recognize known worms/viruses based on their signatures.
- Ability to recognize network intrusion events and to differentiate false positives.
- Ability to recognize successful intrusions and compromises through review and analysis of relevant event logs and other detailed information.
- Knowledge of hardware (Routers, CSU/DSU, bridges, multiplexers, servers and switches configuration).
- Previous experience in the monitoring/management of intrusion detection systems and firewall devices, to include SideWinder, ArcSight, HBSS and/or Tripwire.
- Experience securing network gear against known vulnerabilities.
- Certified Ethical Hacker certification.
- Unix and/or Microsoft operation system training.
- Health Plan
- Savings Plan
- Paid Time Off
- Education Assistance
- Training and Development
- Flexible Work Arrangements
Vacancy expired!