SYSTEMS SECURITY ADMINISTRATOR (15.23)

OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.

QUALIFICATIONS/REQUIREMENT

• Must be a US Citizen.
• Must hold an active DoD Top Secret (TS) clearance.
• Undergraduate degree, preferably in a math or science field.
• Minimum of 2 years of experience.
• Demonstrated experience in systems security administration, as described above.
• Demonstrated experience analyzing complex problems and identifying and resolving root causes.
• Strong interpersonal skills; strong analytical, critical thinking, and problem-solving skills.
• Must be able to work onsite: the primary place of performance will be at FBI facilities in the Washington Metropolitan Area (WMA)/ National Capital Region (NCR).

OCT currently has an opening for a Systems Security Administrator to work with a technology division within the Federal Bureau of Investigation (FBI). This role will require strong knowledge of system administration and attention to detail.

Day to day responsibilities include:

• Establish and manage Role-Based Access Controls (RBAC) for the Unified Financial Management System Secret Cloud (UFMS-SC), including Writing, Itemizing and Recording Expenses (WIRE) as a component of UFMS-SC, the Asset Management System (AMS), the U.S. Treasury Bureau of Fiscal Service’s Invoice Processing Platform (IPP), the U.S. Treasury Bureau of Fiscal Service’s Over-the-Counter Channel Application (OTCNet), and the U.S. Treasury Bureau of Fiscal Service’s G-Invoicing Application (G-INV) (Other applications may subsequently be added).
• Coordinate with applicable Information System Security Officers (ISSOs) and other system support personnel to ensure user access is implemented and maintained in accordance with governing policies and procedures.
• Provide recommendations for developing new user security groups, profiles, and roles to ensure compliance with governing policies and procedures.
• Create, modify and/or delete user access security groups, profiles, and roles in accordance with governing policies and procedures.
• Add users and assign initial user security groups, profiles, and/or roles which address separation of duties, “need-to-know,” and “least privileges” to ensure compliance with the FBI’s Risk Management Framework policy.
• Adhere to established RBACs and established policies and procedures when adding/removing/modifying user access accounts.
• Identify problematic or incomplete information on security access request forms that could delay or negate the processing of the requests; identify items of security concern; determine whether additional checks are necessary based on the evaluation of available information.
• Review/respond to routine user access requests for supported applications.
• Develop procedures for managing changes in user access to applications (as required access, “need-to-know,” and/or “least privileges” change) and for terminating user access when no longer required or authorized, in accordance with governing policies and procedures.
• Develop/maintain SSA Standard Operating Procedures (SOPs).
• Provide scheduled and ad-hoc reports regarding user access as directed by ISU PM or designee and/or established policies and procedures.
• Develop/maintain user guidance documentation for supported applications.
• Develop/maintain procedures and guidelines providing a detailed overview of the establishment and assignment of user security groups, profiles, and roles.
• Conduct annual user recertifications for the supported financial and facilities applications to ensure compliance with policy requirements.
• Develop/maintain procedures and guidelines presenting a detailed overview of the annual user recertifications.
• Obtain developmental training on supported applications’ security administration functionality.
• Validate current/requested access.