Cyber Security Engineer

For two decades, Millennium Corporation has been operating on the leading edge of cybersecurity. Our elite team of more than 400 experts has an unparalleled record of performance supporting Red Team Operations, Defensive Cyber Operations, Software Engineering, and Technical Engineering. With the largest contingent of contracted Red Team operators in the DoD, we provide an unmatched level of threat intelligence and battle-tested experience for customers in both the DoD and federal civilian markets.

We believe that diversity is a fact, inclusion is a choice.  At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.

Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ and veterans.

Millennium Corporation is hiring a Cyber Security Engineer to work in Hanscom AFB, MA. Qualified candidates must have an active Top-Secret clearance.

• Assist with the development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.02, and DoDI 8510.01
• Support the system/application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks and resulting artifacts mandated by governing DoD and Air Force policies
• Update, monitor, and manage information in systems for the program office
• Process and manage system user account requests and process tools
• Manage system port/protocol and access control list requirements
• Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements
• Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD
• Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs
• Promote awareness of security issues among management and ensure sound security principles are reflected in organizations’ vision and goals
• Conduct systems security evaluations, audits, and reviews
• Recommend systems security contingency plans and disaster recovery procedures
• Participate in network and systems design to ensure implementation of appropriate systems security policies
• Provide leadership assistance in the analysis of the design, development, integration, implementation and testing of cybersecurity requirements
• Review, analyze, and assess implementations of cybersecurity (i.e. RMF security controls) throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation
• Collaborate with stakeholders (Government and commercial) to ensure the system is approved by all Authorizing Officials via the RMF A&A process
• Support Government program office in audits of Government classified holdings to ensure proper accountability
• Perform inspection, inventory, logging, storage, documentation, transmittal, and internal distribution of classified information received
• Provide security inspection and protection to areas where classified information is being stored, and develop and establish security procedures and policies
• Assess program disclosure issues and provide FMS case management support
• Assist and advise FMS program office management and leadership in interfacing with FMS customers and all USG organizations, including but not limited to SAF/IA, Air Force Security Assistance Center (AFSAC), Air Force Security Assistance Training (AFSAT) squadron, Defense Finance and Accounting Services (DFAS)
• Assist with the development of sound security practices and policies regarding acquisition, physical, personnel, and documentation security
• Prepare acquisition security-related sections of acquisition program documentation

• Have at least a Top-Secret clearance
• 7 years of work experience in Risk Management Framework (RMF), Vulnerability Management, Tenable Nessus (ACAS-DoD version of Nessus), STIGs, Cloud Service Models
• A bachelor’s degree is preferred
• A security certificiation, but a CISSP is preferred

• Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 10-15 pounds at a time.

• 10%