At FTI, we are united by one common mission; supporting those that protect our nation so they can make the best-informed decisions during critical moments when seconds count. We want you to bring your passion and expertise to contribute to that essential mission.  We strive to incorporate our values to create a culture of collaboration and trust, where you can share your ideas and innovate.  If you are inspired by making a positive impact through developing data driven solutions, FTI would appreciate the opportunity to learn more about you. 

We are seeking a full-time Sr. Supply Chain Risk Management Analyst to support the US Army in conjunction with the Office of the Under Secretary of Defense (OUSD) Chief Information Security Officer (CISO).  In this critical role, you will have a direct impact on the success of a high-profile DoD program with Congressional mandates for the national security of DoD systems. You will collaborate with key stakeholders to convey risks associated with software dependencies and supply chain vulnerabilities to ensure the security and compliance of the software supply chain and the ongoing management of supply chain risks. You will also assist in supply chain risk assessment by evaluating vendor business strategies and contract requirements, researching information security standards, conducting supply chain vulnerability, risk analysis and the associated third-party risks involved with components and services. This research will be conducted utilizing commercially available tools and open-source research techniques. If you have strong expertise in supply chain cybersecurity, vendor management, and risk mitigation strategies, apply today!

• Develop effective working relationships with stakeholders and maintains these relationships throughout projects, providing technical expertise, market research, and related compliance and C-SCRM support, keeping stakeholders advised of problems, solutions and developments on projects as they progress.
• Utilize commercially available tools and open-source research techniques to determine supply chain risk to customers.
• Develop and execute risk identification and evaluation activities and track remediation activities through various stages of a software, system and acquisition solution life cycle.
• Conduct due diligence of suppliers, ensuring adherence to cybersecurity standards and best practices.
• Stay informed on the latest regulations and best practices in supply chain cybersecurity and translate them into risk mitigation recommendations.
• Develop and maintain a risk register for supply chain risks, identifying critical suppliers and high-risk areas.
• Lead efforts to implement risk mitigation strategies, including vendor and continuous monitoring.

Required:

• Active U.S. Dept. of Defense Top Secret clearance.
• Bachelor’s degree in computer science, Cybersecurity, Information Technology, or a related field.
  • Equivalent work experience may be considered.
• A minimum of eight (8) years of experience in Supply Chain Risk Management.
• Experience in information technology, cyber security operations or vulnerability analysis.
• Familiarity with supply chain technologies and their potential cybersecurity risks.
• Familiarity with Software Bill of Materials (SBoM) concepts.
• Strong understanding of open-source software licensing models and compliance.
• Knowledge of Dept. of Defense cybersecurity practices.
• Ability to accurately translate technical information for a general audience.
• Able to work as a collaborative member of a team.
• Ability to support up to 10% O/CONUS travel.
  • Trips are typically up to 1 week.

Preferred:

• Dept. of Defense TS/SCI clearance.
• U.S. Knowledge of All-Source Intelligence.