Sentinel Sr Principal Engineer DevOps - 18952

RELOCATION ASSISTANCE: Relocation assistance may be available

CLEARANCE REQUIRED FOR START: No

CLEARANCE TYPE: Secret

TRAVEL: Yes, 10% of the TimeDescription

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Northrop Grumman Defense Systems is seeking a Sr Principal Engineer DevOps Engineer. This position is located in Roy, UT and supports the Sentinel program.

The System Security Engineer Lead serves as the technical authority responsible for defining, governing, and validating the entire security posture of the Digital Ecosystem (DE) across its full lifecycle. This includes enterprise-level security decisions, AT strategy, Cybersecurity architecture, Program Protection, exportability, supply-chain assurance, and survivability against highly capable adversaries.

This individual sets the technical direction for the program, mentors engineering staff, leads major architecture and design reviews, and ensures that the delivered system complies with all relevant regulations, guidance, and DoD policies.

What You’ll Get To Do:

• Build & Lead the DE MDT – Recruit a balanced mix of software security analysts, platform engineers, and cyber operations specialists; define roles, responsibilities, and career pathways.

• Own the DE Security Architecture – Design a resilient, modular security framework for mission-engineering applications like the software factory, DaaS, and AI/ML services and collaboration tools; map controls to NIST/DoD standards and ensure they are reflected in SysML models.

• Drive RMF & Compliance – Lead the end to end RMF process, produce System Security Plans (SSPs), Security Assessment Plans (SAPs), and POA&Ms, and act as the primary liaison with the system ISSM and compliance teams.

• Integrate Security into the Software Lifecycle – Embed secure coding standards, automated scanning, and continuous monitoring into CI/CD pipelines; champion “security as code” practices. Ensure software architecture and designs have security baked-in.

• Mentor & Upskill – Conduct threat modeling workshops, secure development bootcamps, and platform hardening sessions; guide junior engineers in applying MBSE security stereotypes and traceability techniques.

• Ensure Supply Chain Integrity – Oversee provenance checks, open source risk assessments, and exportability reviews for all third party components and AI models.

• Lead Incident Response – Author and exercise incident response playbooks, coordinate with cyber operations to contain breaches, and drive post incident lessons learned into the development process.

• Collaborate Across Disciplines – Work closely with product owners, data scientists, platform architects, and other systems engineers to align security requirements with mission objectives, performance, and schedule constraints.

Position Benefits:

As a full-time employee of Northrop Grumman, you are eligible for our robust benefits package

Medical, Dental & Vision coverage

Educational Assistance

Life Insurance

Employee Assistance Programs & Work/Life Solutions

Paid Time Off

Health & Wellness Resources

Employee Discounts

This positions standard work schedule is a 9/80. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off. This role may offer a competitive relocation assistance package.

Basic Qualifications:  

•    Bachelor’s Degree with 8 years of relevant experience, or a Masters’ Degree with 6 years of relevant experience, or a PhD with 4 years of relevant experience or 4 additional years in lieu of a degree.
•    Must have the ability to obtain and maintain a U.S. Government DoD Secret security clearance  at time of application, current and within scope, with an ability to obtain and maintain Special Access Program (SAP) approval within a reasonable period of time, as determined by the company to meet its business need.
•    Experience using Amazon Web Services, including using AWS native services (Cloud Formation, S3, etc.)
•    Experience with enterprise Cloud deployments desired
•    Experience with multiple Cloud service platforms (Commercial and Government)
•    Experience with the full Atlassian tool suite (Confluence, JIRA, GIT, Crucible, FishEye, Crowd). 
•    Experience developing builds in Maven, including MAVEN profiles. Ability to automate software builds and releases via Maven & Nexus. 
•    Experience with automation/configuration management using either Ansible, Chef or an equivalent
•    Experience with developing formal builds within the DoD industry.
•    Experience with VMware infrastructure and automation

Preferred Qualifications :
•    Active DoD Top Secret clearance
•    SysML modeling (Cameo, Enterprise Architect) and application of cybersecurity profile stereotypes.
•    Experience with cyber test automation tools (e.g., OpenSCAP, Snyk, Burp Suite, Metasploit). 
•    Proven record of implementing DevSecOps pipelines (GitLab CI, Jenkins, Azure DevOps) with automated policy as code. 
•    Experience delivering MOSA based platforms and integrating open source components securely. 
•    Hands on execution of the DoD Risk Management Framework (categorization ? continuous monitoring).
•    Familiarity with AI/ML model governance (ML Ops security, data provenance, model poisoning detection). 
•    Proficiency with IBM?DOORS/DOORS Next or similar requirements management tools. 
•    Experience authoring Incident Response Playbooks and leading Red Team/Blue Team exercises.
•    Certifications: CISSP, ISSAP, CSSLP, OSCP
•    Certification from VMWare and Cisco is desired

#Sentinelsoftware

Primary Level Salary Range: $122,800.00 - $184,200.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.