Manager Cyber Intelligence 2

RELOCATION ASSISTANCE: No relocation assistance available

CLEARANCE TYPE: Top Secret

TRAVEL: Yes, 10% of the Time

Description

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history – from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history.

The Strategic Counterintelligence Manager is responsible for developing, implementing, and overseeing a comprehensive (all-source) insider risk management program across Northrop Grumman’s global environment. The PM will lead the analytic, investigative, and information protection missions of the Northrop Grumman Strategic Counterintelligence Team within the Cybersecurity organization. This role is responsible for developing long range strategies necessary to meet highly dynamic corporate and external risk environments. The PM must also be highly engaged cross functionally advising senior Cybersecurity, Stakeholder, and Corporate leadership on program direction, strategy, and the identification of priority growth areas.

The StratCI Manager leads a team of experienced technical professionals to identify, assess, and mitigate risks associated with Northrop Grumman insiders (employees, contractors, and business partners) to protect the organization’s employees, assets, intellectual property, and reputation. This mission scope includes Data Loss Prevention; information classification and protection; Cyber Threat Intelligence and Counterintelligence; and proactive Insider Threat risk assessment, mitigation, and training. This role is 100% virtual/work from home. The work location could change based upon business conditions.

Leads efforts to research and evaluate technical and all-source intelligence with specific emphasis on network operations. Analyzes network events to determine the impact on current operations and conduct all-source research to determine advisory capability and intent. Correlates threat data from various sources. Develops and maintains analytical procedures to meet changing requirements and ensure maximum operations. Collects data using a combination of standard intelligence methods and business processes.

RESPONSIBILITIES:

• Develop and execute a comprehensive program strategy for insider risk management, lead technology and personnel development efforts, and maintain effective operations of all technical controls and tools under the Strategic Counterintelligence Team’s purview.
• Design, execute, and oversee the insider risk program, developing and enhancing all associated technical controls and policy supporting inside threat detection and counterintelligence analysis.
• Collaborate with Security, HR, Employee Relations, Ethics, Law Department, Privacy, Network Engineering, International Programs, and within Cybersecurity to develop program strategy, grow partnerships, handle investigations and drive remediation activities.
• Lead a team of experienced technical analysts in the development of mitigation strategies that include leveraging technical tools and HR, Security and Cybersecurity policies.
• Lead continual process improvements and evaluation of emerging technologies to ensure the program operates at the highest of standards of performance.
• Collaborate cross-functionally for investigations, refining risk models, and ensuring effective incident responses.
• Oversee an enterprise-wide user exception and device access waiver process while ensuring exceptional levels of service delivery.
• Regularly communicate with executive leadership regarding insider threat risks, findings, and recommended courses of action.
• Maintain currency of governance documentation, revising procedures, practices, and policies as necessary.
• Test and evaluate new insider risk management technology, particularly for user behavior analysis, risk detection and investigation management.
• Develop and mentor a diverse team of technical professionals to map out career development objectives, training, and opportunities for growth towards stated goals.

Basic Qualifications:

• Bachelor’s Degree required with a minimum of 8 years of relevant experience in cybersecurity, counterintelligence, or intelligence, etc.
• Demonstrated subject matter expertise in insider risk with a comprehensive knowledge of related directives, regulations, policies, and procedures.
• Demonstrated history of successful collaboration and thought leadership with external organizations and consortia that support insider risk management best practices.
• Excellent written and verbal communication skills, demonstrated ability to clearly communicate complex technical information to senior executive leadership and working groups, mentoring, and developing talent.
• Proven knowledge of data types and technologies relevant to insider risk detection, workforce training and awareness, and investigation management.
• Capacity to lead and manage across organizational disciplines and integrate technical and non-technical components of an insider threat program.
• Demonstrated commitment to the mentoring and professional development of others.
• Strong presentation, organizational, leadership, and communications skills.
• The ability to multitask, prioritize, work under time constraints and resolve issues with minimal supervision.

Preferred Qualifications:

• Completion of CERT Insider Threat Program Management certification course
• Professional experience applying information protection technologies such as Splunk, Forcepoint and various UEBA tools coupled to an insider risk management context that supports investigative and intelligence cycles.
• Minimum of 15+ years of intelligence or counterintelligence experience in positions of increasing responsibility, preferably in the US Intelligence Community and / or Diplomatic Security.
• Demonstrated history of influencing and driving change within teams and across an organization.

Salary Range: $129,300.00 – $193,900.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate’s experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.