Information System Security Officer (ISSO)

At FTI, we are united by one common mission; supporting those that protect our nation so they can make the best-informed decisions during critical moments when seconds count. We want you to bring your passion and expertise to contribute to that essential mission. We strive to incorporate our values to create a culture of collaboration and trust, where you can share your ideas and innovate. If you are inspired by making a positive impact through developing data driven solutions, FTI would appreciate the opportunity to learn more about you.

We are seeking an Information System Security Officer (ISSO) to support the Navy's cyber operational test and evaluation (OT&E) force (OPTEVFOR), including infrastructure and toolset certification/accreditation per DoD and Navy policies. In this role, you will design and implement secure enterprise and system architectures throughout the development lifecycle, ensuring compliance with evolving technologies, laws, and regulations. You will also conduct comprehensive assessments of IT security controls to evaluate their effectiveness. Additionally, you will provide project management and subject matter expertise including infrastructure and toolset certification/accreditation per Dept. of Defense and Navy policies. This is an excellent opportunity to join a team of SMEs and contribute to national security.

Develop, maintain, and validate cybersecurity Standard Operating Procedures (SOPs) and Risk Management Framework (RMF) documentation.
• Manage inventories of authorized software, government-furnished equipment, and removable media.
• Validate system and network configurations, ensuring compliance with DISA STIGs or applying compensating controls as needed.
• Maintain cybersecurity documentation and system records across eMASS, DADMS, GIAP, and SNAP systems.
• Conduct annual RMF package reviews and ensure traceability of all security documentation (e.g., POA&Ms, SARs, test plans).
• Track and report weekly status on Assessment & Authorization (A&A) efforts; incorporate approved Configuration Control Board (CCB) changes.
• Support compliance with directives (e.g., IAVs, STIGs, TASKORDs) and recommend corrective actions for non-compliant controls.
• Perform monthly security scans and generate reports on findings and configuration management issues.
• Lead semi-annual tabletop exercises and contribute to test plans, after-action reports, and documentation reviews.
• Review and update Business Impact Analyses (BIA), IT contingency, and disaster recovery plans to ensure NIST and Dept. of Navy compliance.
• Provide subject matter expertise and collaborate effectively within a small team or independently with minimal supervision.

Required:

• Must be a U.S. citizen and have active U.S. Dept. of Defense Secret clearance with TS/SCI eligibility.
• Must have a high school diploma and hold a current CISSP certification ~OR~ possess a Master's degree in a relevant field.
• 5+ years of experience designing enterprise and systems security throughout the development
  lifecycle.
• 3+ years of experience conducting thorough assessments of management, operational, and technical
  security controls within U.S. Navy IT systems.
• 3+ years of experience providing project management, subject matter expertise, and hands-on
  experience for systems certification and accreditation efforts in accordance with applicable DOD and DON
  policies and guidance.

Preferred:

• Active U.S. Dept. of Defense TS/SCI clearance.
• One of the following certificates or higher: Security X/CASP+, CCSP, Cloud+, CSSLP, GSEC

#LI-KC1

#LI-Onsite