Millennium Corporation is hiring a Principal Cybersecurity Engineer to work in Hanscom, AFB. The candidate must have an active secret clearance.
Candidate will provide Cybersecurity support to ensure that all system and application deliverables meet the requirements of all DoD and Air Force cybersecurity policies.
Candidate will ensure that all system deliverables comply with DoD and Air Force cybersecurity policy, specifically DoDI 8500.
01, Cybersecurity , and that application deliverables are complaint with Public Law 111-383, which states the general need for software assurance.
Assist with development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, Computer Certification and Accreditation, Security Vulnerability and Countermeasures Analyses, Security Concepts of Operations, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.
02, Operation of the Adaptive Acquisition Framework , and DoDI 8510.01
Support the system / application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks and resulting artifacts mandated by governing DoD and Air Force policies, i.
e., Risk Management Framework (RMF)
- Process and manage system port / protocol and access control list requirements
- Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements
- Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD
- Recommend policies and procedures to ensure information systems reliability and accessibility to prevent and defend against unauthorized access to systems, networks, and data
- Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risk, and protection needs
- Conduct systems security evaluations, audits, and reviews
- Recommend systems security contingency plans and disaster recovery procedures
- Recommend and implementing programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures
- Obtain waivers to mandated security mechanisms / policies which would be detrimental to system performance and impact the system’s mission
- Provide leadership assistance in the analysis of the design, development, integration, implementation and testing of cybersecurity requirements
- Review, analyze, and assess implementations of cybersecurity, i.e., RMF security controls, throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation
- Maintain databases that reflect receipt, storage, inventory, and disposition of classified information to include data entry, updates, and generation of reports
- Provide security inspection and protection to areas where classified information is being stored, and develop and establish security procedures and policies IAW DOD, USAF, AFMC, and local directives
- Review and verify personnel qualifications for access to special access programs
Qualifications
- Candidate must have an active secret clearance.
- Bachelor's and 20 yrs of experience. Additional years of experience would be considered in lieu of degree.
- Security+ cert desired.
Business Development
Assist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.
Physical Requirements
- Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
- Must be able to lift up to 10-15 pounds at a time.
Travel Requirements