• Profile

Cyber Systems Engineer

Job Description

Northrop Grumman are currently seeking an Cyber Systems Engineer for a permanent role based in Cheltenham.

The role supports computer network defences in the United Kingdom, helping protect Northrop Grumman’s computing infrastructure from sophisticated threats, providing day-to-day operations and services, and strategically positioning the infrastructure to defend against the threats of tomorrow.

Application of system security engineering principles is required to provide realistic solutions designed to enhance the overall security posture of internal and customer systems, to include identifying threats, developing appropriate protection measures, reviewing security implications of system changes, recommending solutions and providing support for resolution of complex technical challenges for NSS and other NG organisations. 

Different thinking for a Different world
Northrop Grumman is involved in a range of future game-changing defence and security programmes. Whether this is as a partner in the F-35 Lightning II providing the aircraft with much of its situational awareness and communications, as a leading specialist in large intelligence datasets, as a pre-eminent provider of High Altitude Long Endurance unmanned aircraft systems, or as the ‘go to’ provider for truly open system architectures for battlespace networks, communications, and command and control, Northrop Grumman has an unparalleled reputation as an innovator. 



How you will make a difference
Key responsibilities
  • Collaborate with engineering teams and other information security professionals to ensure strong and effective controls are in place to detect and mitigate risks across on-prem and cloud environments to meet business needs and regulatory requirements
  • Perform technical planning, system integration, verification and validation, cost and risk, and supportability and effectiveness analysis across total systems, including ISO20000 & ISO27001 compliance
  • System security analysis activities including requirements analysis, gap analysis, and analysis of alternatives
  • Ensure the logical and systematic conversion of security requirements into systems solutions that best mitigate cyber risks within the acknowledged technical, schedule and cost constraints, including activities such as:
  • secure proxy engineering
  • firewall policy management
  • messaging security engineering
  • remote access engineering
  • intrusion prevention engineering
  • onetwork access compliance engineering
  • public key technologies
  • Active Directory services
  • Analyse and provide recommendations for improvements to and enhancements of in-house and external platforms, systems and tools
  • Development of system design artefacts in accordance with established architecture frameworks
  • Support the global team in processing and mitigating cyber threat actor activity
  • Collaborate effectively with information security analysts to co-ordinate a multi-tiered approach to cyber threat mitigation to deny current and future adversary actions
  • Undertake analytical duties in a secondary role to include host- and network-based log analysis, correlation of network threat indicators and PCAP data, analytical triage, incident response and vulnerability scanning
  • Research and draft Cybersecurity white papers as required, presenting findings to both technical teams and management

General Operational duties

  • Attend Security department meetings as required
  • Remain compliant with all applicable Security and Cyber Systems processes and procedures
  • Support the EMEA Security Manager in maintaining/advancing a fit-for-purpose cyber systems response in the UK

Person Specification

Essential Qualifications/Experience

  • In-depth understanding and substantial application of cyber security methodologies
  • Extensive experience working with customers to elaborate requirements in often complex/uncertain environments
  • A proven track record of designing and developing secure solutions that meet customer requirements
  • Evidenced experience of conducting analysis of electronic media, log data, and network devices in support of intrusion analysis or enterprise level information security operations
  • Extensive experience with analysis and forensic tools used in a SOC or similar investigative environment
  • Hold one or more of the following technical certifications (or equivalent):
    • International Council on Systems Engineering (INCOSE)
    • Certified Information Systems Security Professional (CISSP)
    • GIAC Certified Enterprise Defender (GCED)
    • GIAC Certified Incident Handler (GCIH)
    • GIAC Certified Intrusion Analyst (GCIA)
    • GIAC Certified Forensic Analyst (GCFA)
    • GIAC Reverse Engineering Malware (GREM)
    • Certified Forensic Computer Examiner (CFCE)
    • OSCP Offensive Security Certified Professional
    • CEH Certified Ethical Hacker

Preferred Qualifications/Experience

  • Penetration testing experience
  • Knowledge and/or experience in one or more of the following technologies: AD/DNS, Patch Management, PKI, HBSS, ACAS, VMware products, Splunk
  • Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle
  • Experience of UK Government working practices and proposals
  •  Knowledge/experience of ISO20000 & ISO27001 

Competency/Skill requirements

  • Linux/Unix and Windows proficiency, including shell (bash, powershell, etc.) scripting
  • Current and evolving familiarity with information security threats facing aerospace defence contractors or Government systems
  • Adept at two or more analysis and forensic tools used in a CSIRT or similar investigative environment
  • Able to exercise sound judgment when escalating issues
  • A creative thinker, particularly around remediation and countermeasures to challenging information security threats
  • Highly self-motivated and directed, able to effectively work autonomously and as part of a wider, virtual team
  • Excellent interpersonal skills, able to engage effectively with a wide range of stakeholders
  • Excellent PowerPoint skills, able to clearly present technical content to audiences of mixed technical backgrounds
  • Fluent in written and spoken English
  • Strong analytical skills, adept at trouble-shooting and problem-solving
  •  Flexible and responsive attitude
  • Highly-organised and proficient at multi-tasking, working with and resolving competing priorities
  • Strong customer orientation
  • Excellent attention to detail
  •  Advanced knowledge of technology capabilities and trends

Other requirements

  • Flexible working requirements: Occasional (< 10%) extended shift work
  • Travel requirements: Occasional UK travel (less than 10%) to attend meetings and conferences, with a requirement from time-to-time to travel to the US
  •  Clearance requirements: The post-holder must hold and maintain UK Government clearance