Millennium Corporation

  • Sr. Information Assurance Engineer

    Job Locations US-LA-New Orleans
    Posted Date 5 days ago(8/16/2019 12:44 PM)
    Job ID
    2019-1319
  • Overview

    Millennium Corporation is hiring a Senior Information Assurance Engineer in New Orleans, LA. Candidate must have an active Secret Clearance.

    Responsibilities

     

    • Serve as an Information System Security Officer (ISSO) performing a wide range of tasks to maintain system cybersecurity posture.
    • Analyze the results of vulnerability scans using the Assured Compliance Assessment Solution (ACAS) vulnerability scanner (Nessus, HP WebInspect, and HP Fortify).
    • Assist in the implementation and analysis of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and the Secure Content Automation Protocol (SCAP) Compliance Checker (SCC).
    • Manage system vulnerabilities via the use of a Plan of Actions and Milestones (POAM). 
    • Participate in IT application Continuous Monitoring programs.
    • Secure and maintain an Interim Authority to Test (IATT) or an Authorization to Operate (ATO) for the system.  
    • Assist with the Navy's implementation of the DoD Risk Management Framework (RMF) steps and the supporting RMF documentation described in Navy process guides for RMF implementation and testing.  
    • Maintain Federal Information Security Management Act (FISMA) compliance for assigned programs.
    • Participate in the implementation and testing of National Institute of Technology (NIST) security controls.
    • Develop various cybersecurity-related documents to include RMF plans, policies, and procedures, Interface Control Documents, System Diagrams, Cybersecurity Strategies, Cybersecurity Test Plans, Memorandums of Agreement/Understanding (MOAs/MOUs), Mitigation Plans, Ports and Protocols Lists, Privacy Impact Assessments (PIAs), Risk Assessments, etc.
    • Employ Enterprise Mission Assurance Support System (eMASS), Vulnerability Remediation Asset Manager (VRAM), and DON Application and Database Management System (DADMS) web applications to facilitate daily work.
    • Provide cybersecurity-related consultation and guidance to program managers, system engineers, and developers.
    • Provide technical guidance with information system acquisition activities to include cybersecurity requirements generation and the review of other acquisition documentation for possible security impacts. 
    • Participates in acquisition/development events as required.

    Qualifications

    • Active Secret clearance
    • BS in engineering, computer science, or information technology experience, with 8 years of experience, 6 of those years in cybersecurity OR in lieu of a college degree, a High School diploma will be accepted with a minimum of 13 years of cybersecurity experience.
    • Experience in DoD Information Assurance Certification and Accreditation Process (DIACAP)/ DoD Risk Management Framework (RMF).
    • Possess a DoD-approved Baseline Certification as Information Assurance Manager, Level II in accordance with DoD 8570.01-M (i.e., CISSP, GSLC or CISM). 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed