Millennium Corporation is hiring a Information Assurance Engineer who can be based in New Orleans, LA. Candidate must have an active Secret Clearance.

The Information Assurance Engineer will: 

• Serve as an Information System Security Officer (ISSO) / Information System Security Engineer (ISSE) performing a wide range of tasks to maintain system cybersecurity posture.
• Analyze the results of vulnerability scans using the Assured Compliance Assessment Solution (ACAS) vulnerability scanner (Nessus, HP WebInspect, and HP Fortify).
• Assist in the implementation and analysis of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and the Secure Content Automation Protocol (SCAP) Compliance Checker (SCC).
• Manage system vulnerabilities via the use of a Plan of Actions and Milestones (POAM). 
• Participate in IT application Continuous Monitoring programs.
• Secure and maintain an Interim Authority to Test (IATT) or an Authorization to Operate (ATO) for the system.  
• Assist with the Navy's implementation of the DoD Risk Management Framework (RMF) steps and the supporting RMF documentation described in Navy process guides for RMF implementation and testing.  
• Maintain Federal Information Security Management Act (FISMA) compliance for assigned programs.
• Participate in the implementation and testing of National Institute of Technology (NIST) security controls.
• Develop various cybersecurity-related documents to include RMF plans, policies, and procedures, Interface Control Documents, System Diagrams, Cybersecurity Strategies, Cybersecurity Test Plans, Memorandums of Agreement/Understanding (MOAs/MOUs), Mitigation Plans, Ports and Protocols Lists, Privacy Impact Assessments (PIAs), Risk Assessments, etc.
• Employ Enterprise Mission Assurance Support System (eMASS), Vulnerability Remediation Asset Manager (VRAM), and DON Application and Database Management System (DADMS) web applications to facilitate daily work.
• Provide cybersecurity-related consultation and guidance to program managers, system engineers, and developers.
• Provide technical guidance with information system acquisition activities to include cybersecurity requirements generation and the review of other acquisition documentation for possible security impacts. 
• Participates in acquisition/development events as required.

• Candidate must have an active Secret clearance
• BS in engineering, computer science, or information technology experience, with 8 years of experience, 6 of those years in cybersecurity OR in lieu of a college degree, a High School diploma will be accepted with a minimum of 13 years of cybersecurity experience.
• Experience in DoD Information Assurance Certification and Accreditation Process (DIACAP)/ DoD Risk Management Framework (RMF).
• Possess a DoD-approved Baseline Certification as Information Assurance Manager, Level II in accordance with DoD 8570.01-M (i.e.,CAP, CISSP, GSLC or CISM). 

• Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 10-15 pounds at a time.

Up to 15% travel required