Millennium Corporation is seeking a System Security SMEto support the Army Cyber Command, Enterprise IT as a Service (EITAAS SETA) in Ft. Belvoir, VA. Candidate must have an active Top Secret clearance with eligibility for TS/SCI plus Polygraph.
Acts as a Cyber Security Engineer supporting full spectrum cybersecurity operations
Assists with identifying IT security tools & resources needed for secure, compliant operations.
Develops and prepares information System Descriptions and Registration.
Effectively communicates work plans, milestones (POAM), and obstacles to Cyber Program Manager; able to communicate, explain, or defend ideas or information clearly.
Listens to others, offers clarity and recognizes potential miscommunication.
Ability to write/update security plans, procedures, and other security documentation.
Resolves non-routine problems within area of assigned responsibility and timely directs complex problems, questions, or complaints.
Ability to analyze disparate data and produce a readable, understandable summary with recommendations for corrective action, as needed; evaluate effectiveness of applied security controls.
Drafts, edits and appropriately distributes written reports and status updates that are factual and timely.
Responsible for identifying security-related problems by gathering and applying information from a variety of materials or sources.
Skilled in using vulnerability scanner technology and use of Security Information & Event Management (SIEM) products.
Demonstrates experience supporting a wide range of TCP/IP based systems, network, network topologies, ports, protocols, and services.
Must be familiar with one or more Army Security Tools: ACAS – Assured Compliance Assessment Solution; HBSS – Host Based Security System; CSET – Cyber Security Evaluation Tool; HIAT – Honeywell Information Assurance Toolset; eMASS – Enterprise Mission Assurance Support Service; SPLUNK; Vulnerability Remediation Asset Manager (VRAM).
Serves as Subject Matter Expert for information assurance requirements, cybersecurity computing services, cybersecurity infrastructure management supporting US ARMY mission requirements.
Experience managing the DoD Risk Management Framework (RMF) process for a deployed system in an on premise or cloud environment.
Knowledge of DoD network and application security criteria, including related NIST security controls requirements, DISA STIG (hardening) network/device requirements.
Knowledge of cyber network defense strategies; skilled in scanning for vulnerabilities (ACAS/HBSS/NESUS), analyzing results, recommending remediation and/or mitigation strategies.
Knowledge & ability to evaluate the effectiveness of installed IT security controls across the spectrum of networked devices, and identify vulnerabilities/deficiencies, recommending corrective action to Cyber Program Manager.
Experience with the DoD eMASS system for tracking RMF compliance and managing the continuous monitoring process as outlined in Step 6 of the RMF process.
Knowledge of Compliance and Vulnerability Scanning, STIGS and SCAP tools, DoD Policies and Instructions and NIST 800 Series.
Possess an IAT Level II certification such as a CompTIA Security+, but an IAM Level III (CISSP, CISM, CAP or GSLC) certification is strongly desired.
Bachelor's degree and between 5-8 years of relevant experience.
Candidate must have an active Top Secret clearance with eligibility for TS/SCI plus Polygraph.
Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed
Millennium Corporation is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.