• Profile

Active Cyber Engineer

Job Description

Are you a software developer or researcher who wants to join a leading cyber team within an evolving and dynamic organisation?

Due to the success of a number of strategic Gloucestershire based programmes, we are growing our Active Cyber team with creative and ambitious Active Cyber Engineers.

The technology is varied, the domains are vast, we work in whatever areas our customers demand. Expect to work with a variety of modern programming languages, developing bespoke capabilities across many platforms including Linux, Windows, iOS and Android.
Different thinking for a Different world

Northrop Grumman is a leading global security company providing innovative systems, products and solutions to government and commercial customers worldwide. In Northrop Grumman’s rapidly growing UK Cyber and Intelligence business, we support our customers’ work to make the UK the safest place to live and do business, both physically and online.

Working with and alongside our customers, we use modern software engineering methods (Scaled Agile Development, DevSecOps, Site Reliability Engineering, micro-service architectures) and cutting edge techniques (data science, Artificial Intelligence, Machine Learning) to tackle incredibly complex and challenging problems and deliver cost effective, reliable, supportable solutions.

Our solutions support complex analysis of vast amounts of data, requiring state of the art ‘big data’, stream processing and cloud-based analytics, identifying and using ‘best of breed’ commercial and open source technologies and integrating them with our own software to meet customer needs quickly and efficiently.

At Northrop Grumman we pride ourselves on our ability to combine agile development with sound engineering and security practices to ensure that our solutions are robust and resilient, designed and built to start secure and stay secure against ever evolving cyber security threats. As well as designing for security, Information Assurance and legal / policy compliance, we actively assess products and services, identifying vulnerabilities and weaknesses that could be exploited by cyber attackers, and we create and run exercises to pit cyber security specialists against secure systems and each other.

How you will make a difference

Within Active Cyber, we cover full-spectrum-cyber – from Vulnerability Research, experimental development right through to developing deployed capability and testing. We have a rigorous assurance process ensuring that that all capabilities are developed to the highest standards. 

As an organisation, we demand constant innovation, and have immediate opportunities for software engineers to design, develop and maintain a suite of applications.

The following are responsibilities and key skills for those working in the Active Cyber area. We do not expect everyone to have experience in all of the below, but if this sounds like something you would like the direction you want to develop your career in or have experience in then please get in touch or apply;

What you can be involved in....

  • Perform exploratory research and VR assessments
  • Use the output of research to design and build proof-of-concept capability
  • Design, plan, and test high assurance capability development
  • Development in an Agile software development lifecycle of high assurance capability
  • Write technical reports targeted to a variety of audiences (both technical and non-technical)
  • Estimation and planning of tasks
  • Use customer domain experience to shape the development and scope of work
  • Involvement in peer review of code/research artefacts as appropriate
  • Be involved in and plan customer demonstrations and present your work to customers as appropriate
  • Identify areas for improvement and report up effectively
  • Be proactive in identifying new technologies, techniques or methods that will help the customer mission
  • Provide technical assistance to the Sales and Bid teams as appropriate

Desirable skills required... (We don't expect you to have experience across all of this....)

  • Experience across diverse programming languages, such as: C/C++, Python, Assembly, C#, scripting languages
  • Experience of disassembly and decompilation tools, such as: IDA Pro and Hex Rays, Ghidra, Binary Ninja
  • Experience of research tooling, such as: Wireshark, Sys Internals, API Monitor
  • Experience across a wide range of platforms, including Windows, Linux, iOS, Android, and embedded systems.
  • Experience of working with virtualisation products, such as VMWare or Virtual Box.
  • Experience working with containerisation products and cloud services, SaaS, PaaS, etc.
  • Experience of designing and developing innovative software solutions
  • Experience of writing technical reports and presentations
  • Keen to learn a broad range of technologies
  • Working knowledge of Agile/Scrum methodologies, and use of Confluence, Jira and Wiki’s.

Also, we’d love it if you have experience of...

  • UK Government working practices.

If this sounds fun, you’ll enjoy a growing career as we work hard to continuously innovate in the world of cyber security.

Additional information for your consideration...

You will need to be able to hold and maintain UK Government clearances

Being a part of Northrop Grumman gives you the opportunity to use your skills to make a difference in our mission of enabling global security. Our company grows because of our employees' dedication and commitment to achieving our mission, something we always remember. In return for working for us you will have access to a benefits package that provides you with flexibility to balance your professional career with your personal life, health & well-being benefits, discount schemes, pension benefits and investment in your future development.

We are committed to equality and diversity in our workplace. Northrop Grumman provides equal employment opportunities to all employees and applicants without regard to an individual’s protected status, including race, ethnic origin, colour, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, creed, age, disability, genetic information, or any other protected status or characteristic.