Information Systems Security Engineer (DevSecOps)
For two decades, Millennium Corporation has been operating on the leading edge of cybersecurity. Our elite team of more than 400 experts has an unparalleled record of performance supporting Red Team Operations, Defensive Cyber Operations, Software Engineering, and Technical Engineering. With the largest contingent of contracted Red Team operators in the DoD, we provide an unmatched level of threat intelligence and battle-tested experience for customers in both the DoD and federal civilian markets.We believe that diversity is a fact, inclusion is a choice. At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ+ and veterans.Millennium Corporation is hiring an Information Systems Security Engineer (DevSecOps) to work 100% REMOTE. The candidate must live within reasonable distance to any Naval Base to support the customer.ALL candidates MUST hold an active secret clearance to qualify for consideration.Perform penetration tests and vulnerability assessments using the approved DoD vulnerability scanner, Defense Information systems Agency (DISA) Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs) and other DoD/DoN software assurance security tools. Implement operating systems and network devices security configuration in accordance with DISA approved security technical implementation guides and Security Requirement Guides.Perform Cybersecurity assessment procedures, security audits and risk analysis.Develop and update Program Protection Plans, Cybersecurity Strategies, and other security related acquisition documentation in support of programs.Ensure that security related provisions of the system acquisition documents meet all identified security needs.Develop mitigation strategies for DoD information systems.Prepare RMF artifacts and Memoranda of Agreement (MoA) with system owners for interface and networking implementations.Develop Cybersecurity related acquisition documents. Identify Common Criteria and National Information Assurance Partnership (NIAP) certified technologies.Evaluate Program Cybersecurity products in use by programs to validate compliance with DoD/DoN requirements.Participate in FLTCYBERCOM Designated Accrediting Authority collaboration calls.May lead task and oversee the work of team.ALL candidates MUST hold an active secret clearance to qualify for consideration.Bachelor's Degree and 8 yrs of total experience (3-6 yrs in cybersecurity) or HS diploma and 13 yrs of experience. IAM/IAT Level II certification. DevSecOps ExperienceCI/CD Pipeline ExperienceGetLab Environment ExperienceYAML File creation ExperienceNavy RPOC Awareness preferredAssist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.Must be comfortable with prolonged periods of sitting at a desk and working on a computer.Must be able to lift up to 10-15 pounds at a time.