Millennium Corporation

  • Cyber Security SME

    Job Locations US-VA-Ft. Belvoir
    Posted Date 6 days ago(11/8/2019 10:06 AM)
    Job ID
    2019-1446
  • Overview

    Millennium Corporation is seeking a System Security SME to support the Army Cyber Command, Enterprise IT as a Service (EITAAS SETA) in Ft. Belvoir, VA. Candidate must have an active Top Secret clearance with eligibility for TS/SCI plus Polygraph.

    Responsibilities

    • Acts as a Cyber Security Engineer supporting full spectrum cybersecurity operations
    • Assists with identifying IT security tools & resources needed for secure, compliant operations.
    • Develops and prepares information System Descriptions and Registration.
    • Effectively communicates work plans, milestones (POAM), and obstacles to Cyber Program Manager; able to communicate, explain, or defend ideas or information clearly.
    • Listens to others, offers clarity and recognizes potential miscommunication.
    • Ability to write/update security plans, procedures, and other security documentation.
    • Resolves non-routine problems within area of assigned responsibility and timely directs complex problems, questions, or complaints.
    • Ability to analyze disparate data and produce a readable, understandable summary with recommendations for corrective action, as needed; evaluate effectiveness of applied security controls.
    • Drafts, edits and appropriately distributes written reports and status updates that are factual and timely.
    • Responsible for identifying security-related problems by gathering and applying information from a variety of materials or sources.

    Qualifications

    • Skilled in using vulnerability scanner technology and use of Security Information & Event Management (SIEM) products.
    • Demonstrates experience supporting a wide range of TCP/IP based systems, network, network topologies, ports, protocols, and services.
    • Must be familiar with one or more Army Security Tools: ACAS – Assured Compliance Assessment Solution; HBSS – Host Based Security System; CSET – Cyber Security Evaluation Tool; HIAT – Honeywell Information Assurance Toolset; eMASS – Enterprise Mission Assurance Support Service; SPLUNK; Vulnerability Remediation Asset Manager (VRAM).
    • Serves as Subject Matter Expert for information assurance requirements, cybersecurity computing services, cybersecurity infrastructure management supporting US ARMY mission requirements.
    • Experience managing the DoD Risk Management Framework (RMF) process for a deployed system in an on premise or cloud environment.
    • Knowledge of DoD network and application security criteria, including related NIST security controls requirements, DISA STIG (hardening) network/device requirements.
    • Knowledge of cyber network defense strategies; skilled in scanning for vulnerabilities (ACAS/HBSS/NESUS), analyzing results, recommending remediation and/or mitigation strategies.
    • Knowledge & ability to evaluate the effectiveness of installed IT security controls across the spectrum of networked devices, and identify vulnerabilities/deficiencies, recommending corrective action to Cyber Program Manager.
    • Experience with the DoD eMASS system for tracking RMF compliance and managing the continuous monitoring process as outlined in Step 6 of the RMF process.
    • Knowledge of Compliance and Vulnerability Scanning, STIGS and SCAP tools, DoD Policies and Instructions and NIST 800 Series.
    • Possess an IAT Level II certification such as a CompTIA Security+, but an IAM Level III (CISSP, CISM, CAP or GSLC) certification is strongly desired. 
    • Bachelor's degree and between 5-8 years of relevant experience.
    • Candidate must have an active Top Secret clearance with eligibility for TS/SCI plus Polygraph.

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed