MDA Cyber Security/ RMF Engineer will provide subject matter expertise in development of communications and network capabilities. This will include the provision of Information Assurance (IA) support for Certification and Accreditation (C&A), Authorization and Accreditation (A&A), and DIACAP or RMF accreditation packages, artifact generation, requirements analysis, Security Test and Evaluation (ST&E) plans and execution, risk assessments, systems analysis and hardening, incident response and policy analysis, trusted product evaluations, IA program assessments, and security posture presentations.
Duties and Responsibilities:
Develop communications and IT requirements to support MDA program capabilities.
Develop documentation required for IT Risk Management strategy, guidance and procedures. Documentation must align, interact and support higher level DoD and Enterprise risk management and continuous monitoring programs and guidance and meet Risk Management Framework controls.
Apply Information Assurance Vulnerability Management (IAVM) and Security Technical Implementation Guides (STIGs) and run Vulnerability Security Scans using the Security Content Automation Protocol (SCAP) tool and the Assured Compliance Assessment Solution (ACAS) vulnerability scanner on Risk Management Framework (RMF) IA and IA-enabled devices/systems, servers.
Assist in system development & configuration management and prepare Information Systems (IS) security plans used to obtain/retain accreditation.
Update and maintain RMF documentation. Perform other RMF duties such as data backup and disaster recovery operations.
Support network connectivity and configuration required to support MDA Network requirements for compliant DOD systems.
Provide day-to-day technical support to classified Information Systems including adherence to policies, procedures, and best practices. Troubleshoot systems as necessary.
Experience in special programs, experience with MDA systems/JWICS/THOR, intelligence community experience, International experience, experience solving hands on weapon systems programs' RMF/comms issues
Understanding of communications and network systems capabilities, to include terrestrial and satellite based
Provide analytical support for the development and submission of C&A documentation in compliance with the DIACAP or RMF framework.
Apply knowledge of technology, analyze the security implications of systems and applications security, and provide recommendations to decision-makers and engineers.
Familiarity with documentation and tools such as: NISPOM, DAAPM, NIST SP 800-53, DISA STIGs, SCAP, XACTA
Education and Certifications:
BS Degree in CIS or related field
Risk Management Framework
Top Secret Clearance with SCI required
Millennium offers a comprehensive benefits package. Millennium is An Equal Opportunity / Affirmative Action Employer. Millennium does not discriminate on any basis prohibited by applicable law including race, color, religion, sex, national origin, disability, age, citizenship status, or Vietnam era or special disabled veteran's status in recruitment, employment, promotion, compensation, benefits, or training. It is also Millennium's policy to maintain a work environment free from discrimination on the basis of sexual orientation.
Millennium participates in the E-Verify program.
Job Req: 2927
Millennium Engineering And Integration