Sr Principal Systems Administrator – Identity & Access Management Engineer (24-376)

Northrop Grumman

Requisition ID: R10173867

Category: Information Technology

Location: Colorado Springs, Colorado, United States of America | Huntsville, Alabama, United States of America

Clearance Type: Secret

Telecommute: No- Teleworking not available for this position

Shift: Days (United States of America)

Travel Required: Yes, 10% of the Time

Positions Available: 1

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact peoples lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nations history – from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, theyre making history.

Northrop Grumman Space Systems – Launch and Missile Defense Systems has an exciting career opportunity for a Sr Principal Systems Administrator – Identity & Access Management Engineer (24-376) to join our team of qualified, diverse individuals. This position will be in Colorado Springs, CO. , or Huntsville, AL.

Position Overview:

The Command and Control, Battle Management, and Communications (C2BMC) program integrates the Missile Defense System. It is a vital operational system that enables the U.S. president, secretary of defense, and combatant commanders at strategic, regional, and operational levels to systematically plan ballistic missile defense operations, to see the battle develop collectively, and to dynamically manage designated networked sensors and weapons systems to achieve global and regional mission objectives. C2BMC supports a layered missile defense capability that enables an optimized response to threats of all ranges in all phases of flight. C2BMC is the force multiplier that globally and regionally networks integrate, synchronizing autonomous sensor and weapon systems and operations to optimize performance. C2BMC is integral to all system ground and flight tests, which verify and exercise all current and future missile defense system capabilities.

The selected candidate will support the C2BMC DevSecOps team in designing, developing, testing, implementing, and integrating IAM systems. They will also manage user provisioning and access management processes, monitor and analyze access logs and security events, and implement and maintain technologies to ensure audit and privacy compliance. Manage certificate requests in a CA Service and assist with implementing a certificate management plan for the program. You will work with the architecture, engineering, operations, and support teams to create and maintain standards, deploy new solutions, and administer, automate, and support Microsoft Identity Manager and Privileged Account Vaulting solutions.

Essential Functions:

Participate in efforts to deploy new and optimize existing solutions, automate, create standards, and govern technologies including but not limited to PKI/MFA, Delinea, and Active Directory.

Experience with role-based access controls and configuring automated provisioning and de-provisioning of RBAC.

Implement security measures to protect against unauthorized access and ensure compliance with industry regulations and internal policies.

Support Security Engineering efforts and Cyber Roadmap development and maturation.

Support ongoing Security Engineering and architecture efforts.

Establish and maintain reliable backup and recovery processes for Active Directory, ensuring minimal downtime in the event of data loss or system failure.

Work closely with other IT teams to integrate Active Directory services with other systems, applications, and infrastructure components.

Create and maintain comprehensive documentation for Active Directory configurations, policies, and procedures.

Develop PowerShell scripts for administrative and automation tasks.

Responsible for working independently or solo on large projects; the position will also involve working in a collaborative team environment with other DevSecOps engineers and other program development and deployment teams.

Salary Range for Colorado Springs: $109,900 – $164,900

Salary Range for Huntsville: $115,400 – $173,200

Basic Qualifications:

Please note your updated security clearance and IAT/relevant certifications on your resume, if applicable.

An active Secret clearance is required to start.

9 years experience with a bachelor’s degree in engineering, computer science, mathematics or a related field; 7 years experience with a master’s degree in engineering, computer science, mathematics or a related field; or 13 years experience in lieu of a degree.

DoD 8140 certification at IAM – Level III or higher (Security, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA) is required to start.

Technical experience in systems integration or software engineering of identity and access management (IAM) solutions:

Delinea, Axway Desktop Validator, Active Directory, Java Applications, 802.1X .

Advanced understanding of UNIX security as it relates to user access and provisioning.

Extensive knowledge and experience with identity and access management technology, such as single sign-on ( SSO ), two-factor authentication , privileged access management , etc.

Experience with:

Linux/Unix

Windows System Administration

Scripting (with programming languages such as Python, Bash, PowerShell, or Perl )

SQL

LDAP

Web services.

Experience with one or more programming languages such as:

Java

C#

C/C Python

JavaScript.

3-5 years experience supporting Microsoft Active Directory & related technologies.

3-5 years of experience with continuous integration environments in Network, Software, or platform infrastructure capability automation, development, and deployment.

Preferred Qualifications:

Experience with automation/configuration management using Ansible, GitLab, Nexus , or other equivalent technology is a plus.

What We Can Offer You:

Northrop Grumman provides a comprehensive benefits package and a work environment that encourages your growth and supports the mutual success of our people and our company. Northrop Grumman benefits give you the flexibility and control to choose the benefits that make the most sense for you and your family. Your benefits will include the following:

Health Plan

Savings Plan

Paid Time Off

Education Assistance

Training and Development

Flexible Work Arrangements

NGSpace

COSpace

NGFeaturedJobs

C2BMC

Additional Northrop Grumman Information:

Salary Range: $109,900 – $173,200

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidates experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

Show Full Vacancy