For two decades, Millennium Corporation has been operating on the leading edge of cybersecurity. Our elite team of more than 400 experts has an unparalleled record of performance supporting Red Team Operations, Defensive Cyber Operations, Software Engineering, and Technical Engineering. With the largest contingent of contracted Red Team operators in the DoD, we provide an unmatched level of threat intelligence and battle-tested experience for customers in both the DoD and federal civilian markets.

We believe that diversity is a fact, inclusion is a choice.  At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.

Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ+ and veterans.

Millennium Corporation is hiring a Cyber Security Engineer to work in Hanscom AFB, MA in a Hybrid Capacity. The candidate must have an active secret clearance. 

Duties include, but not limited to:

• Assist with development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.02, and DoDI 8510.01.
• Support the system/application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks and resulting artifacts mandated by governing DoD and Air Force policies.
• Update, monitor, and manage information in systems for the program office.
• Process and manage system user account requests, process tools, port/protocol, and access control list requirements.
• Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements
• Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD
• Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risk, and protection needs
• Promote awareness of security issues among management and ensuring sound security principles are reflected in organizations’ vision and goals
• Conduct systems security evaluations, audits and reviews
• Recommend systems security contingency plans and disaster recovery procedures
• Participate in network and systems design to ensure implementation of appropriate systems security policies
• Review, analyze, and assess implementations of cybersecurity (i.e. RMF security controls) throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation
• Collaborate with stakeholders (Government and commercial) to ensure the system is approved by all Authorizing Officials via the RMF A&A process
• Support Government program office in audits of Government classified holdings to ensure proper accountability
• Perform inspection, inventory, logging, storage, documentation, transmittal and internal distribution of classified information received
• Provide security inspection and protection to areas where classified information is being stored, and develop and establish security procedures and policies
• Assist with development of sound security practices and policies regarding acquisition, physical, personnel and documentation security

• Candidate must have an active secret clearance.
• BS/BA degree and 7-10 years of total experience. Additonal years of experience may be considered in lieu of a degree.
• Proficiency with Risk Management Framework (RMF), Vulnerability Management, Tenable Nessus (ACAS-DoD version of Nessus), STIGs, and Cloud Service Models. 
• Experience with the review and construction of DoD Policies for Procedures for Cybersecurity. 
• Proficiency supporting Network Security.

• Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 10-15 pounds at a time.

5%