Overview
FTI has an exciting opportunity for an IT Security Engineer / Information System Security Manager (ISSM) to work with our Artificial Intelligence Integration Center (AI2C) customer on cross functional program teams to expand AI into all areas of the US Army. This individual will have the opportunity to work with some of the most advanced technology setting up and installing system hardware and applications and providing ongoing support and administration of the systems. This is an opportunity to work with an organization that is on the threshold of the future and will help forever change the way the Army operates.
Responsibilities
Develop data security policies using data security standards, guidelines, and requirements that include privacy, authentication, access control, retention, disposal, incident management, disaster recovery, and configuration.
Manage system updates for anti-virus, security, service packs, feature packs, drivers and other updates as required, Perform system auditing and backups on a weekly basis
Specify data and information classification, sensitivity, and need-to-know requirements by information type on a system in terms of its confidentiality, integrity, and availability.
Develop, establish and verify that information system controls are in place and operating in accordance with established policies and acceptable use (e.g., personal use of IT policy; waste, fraud, and abuse policy, etc.) procedures in support of the data security policies.
Development and maintenance of computer system Authorization To Operate (ATO)
Develop sensitive data collection and management procedures in accordance with requirements.
Establishing and maintaining a secure network following Defense Counterintelligence and Security Agency (DCSA) requirements of key information assurance (IA) procedures and guidance.
Develop and document processes, procedures, and guidelines for complying with protection requirements (e.g., e-mail labels, media labels, etc.), control procedures (e.g., discretionary access control, need-to-know sharing, etc.), incident management reporting, remote access requirements, system management and use of encryption.
Assess the effectiveness of data security policies, processes, and procedures against established Departmental directives and applicable requirements.
Evaluate the effectiveness of solutions implemented to provide the required protection of data, including appropriate authenticator management and encryption controls.
Review alleged violations of data security and privacy breaches. Identify improvement actions required to maintain the appropriate level of data protection
Participate in the selection and purchase of computer and networking hardware, configure and maintain network hardware
Support on-site security visits to verify compliance
Document and manage processes for system security plan(s)
Control and manage the system parts as Government Furnished Equipment (GFE)
Education/Qualifications
Must be eligible for DoD Security Clearance
Bachelor's degree in computer science, Management Information Systems, or related fields
An equivalent combination of education; technical certifications or technical school training will be considered
Prior experience as an Information System Security Manager (ISSM) or Officer (ISSO)
Minimum of 3 years of relevant work experience
Expert level knowledge and experience with Microsoft products for servers and end-user environments.
Experience developing data security policies using data security standards, guidelines, and requirements that include privacy, authentication, access control, retention, disposal, incident management, disaster recovery, and configuration.
Experience with the development and maintenance of computer system Authorization To Operate (ATO).
Thorough understanding and extensive experience with corporate and other networks including MS networking, web, and VPN.
Experience managing and administering Active Directory and establishing group policies.
Experience managing and administering Internet Information Services (IIS) for Window Server.
Experience designing, implementing, or administering solutions that integrate or interface different enterprise systems such as those for product websites and SharePoint.
Experience administering databases such as SQL Server, MongoDB or Oracle
Experience with maintaining cloud-based solutions and services.
Provide and manage technical and systems administration support for users of network and server-based applications.
Ability to troubleshoot technical issues and to determine root causes, devise solutions, and implement hardware and software solutions involving computing endpoints, servers, and networks.
Ability to work with end users (remotely or in person) to provide support, troubleshooting, and timely problem resolution.
Understanding and experience with cybersecurity measures (tools, processes, etc.) to ensure safeguarding data and providing for safe computing
Ability to develop and document processes and procedures for end users and other IT professionals.
PREFERRED:
Familiar with the National Industrial Security Program Operating Manual (NISPOM)
Familiar with all phases of the Office of the Designated Approving Authority (ODAA) assessment and authorization process
OTHER:
Ability to clearly articulate both in writing and orally
TRAVEL
Must be able to travel up to 25%
ID 2022-4210
Category Engineering
Type Regular Full-Time
Location : LocationUS-PA-Pittsburgh
Clearance Requirements Public Trust
