Millennium Corporation is hiring an Sr. Information Assurance Engineer in New Orleans, LA. Candidate must have an active Secret Clearance.
Serve as an Information System Security Officer (ISSO) performing a wide range of tasks to maintain system cybersecurity posture.
Analyze the results of vulnerability scans using the Assured Compliance Assessment Solution (ACAS) vulnerability scanner (Nessus, HP WebInspect, and HP Fortify).
Assist in the implementation and analysis of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and the Secure Content Automation Protocol (SCAP) Compliance Checker (SCC).
Manage system vulnerabilities via the use of a Plan of Actions and Milestones (POAM).
Participate in IT application Continuous Monitoring programs.
Secure and maintain an Interim Authority to Test (IATT) or an Authorization to Operate (ATO) for the system.
Assist with the Navy's implementation of the DoD Risk Management Framework (RMF) steps and the supporting RMF documentation described in Navy process guides for RMF implementation and testing.
Maintain Federal Information Security Management Act (FISMA) compliance for assigned programs.
Participate in the implementation and testing of National Institute of Technology (NIST) security controls.
Develop various cybersecurity-related documents to include RMF plans, policies, and procedures, Interface Control Documents, System Diagrams, Cybersecurity Strategies, Cybersecurity Test Plans, Memorandums of Agreement/Understanding (MOAs/MOUs), Mitigation Plans, Ports and Protocols Lists, Privacy Impact Assessments (PIAs), Risk Assessments, etc.
Employ Enterprise Mission Assurance Support System (eMASS), Vulnerability Remediation Asset Manager (VRAM), and DON Application and Database Management System (DADMS) web applications to facilitate daily work.
Provide cybersecurity-related consultation and guidance to program managers, system engineers, and developers.
Provide technical guidance with information system acquisition activities to include cybersecurity requirements generation and the review of other acquisition documentation for possible security impacts.
Participates in acquisition/development events as required.
Active Secret clearance
Bachelor's degree and 8 years of engineering, computer science, or information technology experience, including 6 years in cybersecurity.
In lieu of a college degree, a High School diploma will be accepted with a minimum of 13 years of experience.
Experience in DoD Information Assurance Certification and Accreditation Process (DIACAP)/ DoD Risk Management Framework (RMF).
Possess a DoD-approved Baseline Certification as Information Assurance Manager, Level II in accordance with DoD 8570.01-M (i.e., CISSP, GLSC or CISM).
Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed
Millennium Corporation is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.