Information Systems Security Engineer (DevSecOps)

Overview

For two decades, Millennium Corporation has been operating on the leading edge of cybersecurity. Our elite team of more than 400 experts has an unparalleled record of performance supporting Red Team Operations, Defensive Cyber Operations, Software Engineering, and Technical Engineering. With the largest contingent of contracted Red Team operators in the DoD, we provide an unmatched level of threat intelligence and battle-tested experience for customers in both the DoD and federal civilian markets.

What We Believe

We believe that diversity is a fact, inclusion is a choice.  At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.

Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ+ and veterans.

Responsibilities

Millennium Corporation is hiring an Information Systems Security Engineer (DevSecOps) to work 100% REMOTE. The candidate must live closer to any Naval Base to support the customer. An active secret clearance is required.

• Performs penetration tests and vulnerability assessments using the approved DoD vulnerability scanner, Defense Information systems Agency (DISA) Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs) and other DoD/DoN software assurance security tools.  
• Implements operating systems and network devices security configuration in accordance with DISA approved security technical implementation guides and Security Requirement Guides.
• Performs Cybersecurity assessment procedures, security audits and risk analysis.
• Develop and update Program Protection Plans, Cybersecurity Strategies, and other security related acquisition documentation in support of programs.
• Ensure that security related provisions of the system acquisition documents meet all identified security needs.
• Develops mitigation strategies for DoD information systems.
• PreparesRMF artifacts and Memoranda of Agreement (MoA) with system owners for interface and networking implementations.
• Develops Cybersecurity related acquisition documents.  
• Identifies Common Criteria and National Information Assurance Partnership (NIAP) certified technologies.
• Evaluates Program Cybersecurity products in use by programs to validate compliance with DoD/DoN requirements.
• Participates in FLTCYBERCOM Designated Accrediting Authority collaboration calls.
• May lead task and oversee the work of team.

Qualifications

• Candidate must have an active secret clearance.
• BS and 8 yrs of total experience (3-6 yrs in cybersecurity) or HS diploma and 13 yrs of experience. 
• IAM/IAT Level II certification. 
• DevSecOps Experience
• CI/CD Pipeline Experience
• GetLab Environment Experience
• YAML File creation Experience
• Navy RPOC Awareness preferred

Business Development

Assist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.

Physical Requirements

• Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 10-15 pounds at a time.

Travel Requirements

<10%