FSU ITS Department – CUI Compliance and Innovation Intern

Fall 2024 Paid Internship

Supervisor: Melonie White

This fall semester, intern 120 hours and earn $15 per hour and up to 2 credits.

Position Description:

Information Technology Services (ITS) is the central IT organization for FSU, providing IT support and technology leadership to a diverse community of more than 50,000 students, faculty, staff, alumni and retirees.

The Information Security Privacy Office (ISPO) group is dedicated to its mission to ensure the confidentiality, integrity and availability of FSU data and to protect the privacy of the information entrusted to our university. The ISPO team does this by focusing on five key focus areas: Policy, Training and Outreach, Risk Management, Operations and Incident Management, and Survivability.

The CUI Compliance and Innovation Intern will have a variety of responsibilities and projects to choose from including security controls research, developing procedures, reviewing training materials, providing website updates, and assisting researchers on how to work with controlled unclassified information (CUI).

  1. NEST website update: Provide research on other university controlled unclassified information (CUI) websites for ideas in reference to NIST-171 and/or CMMC compliance. This can include FAQ’s, training ideas, do’s and don’ts, and links to resources, What resources do they use? What items do they have in common to help understand CUI?
  2. Compliance Review. Review NIST-171 requirements and ensure documentation is adequate to show compliance with all action items.
  3. Roadmaps and Guides for new CUI projects: Develop documents such as road maps, tips, guides, and FAQs to allow easier understanding of the requirements to work with CUI.
  4. CUI training slides review: Review and update CUI training slides to ensure they are up to date with the latest information and contain all necessary requirements.
  5. New software request form: Develop a form and process for researchers to request new software use in NEST.
  6. Review and expand how-to guide to report security incidents to the Department of Defense (DoD): Review and update supplemental procedures to report a security incident on the DoD website. Ensure all necessary information is included.
  7. Develop how-to guide to on how to mark CUI.

Learning Objectives:

CUI Compliance Mastery: The intern will gain expertise in NIST-171 and CMMC compliance, ensuring all NEST documentation and training materials meet the required standards. They will also develop a comprehensive understanding of the commonalities across university CUI websites to enhance the NEST site’s user experience.

Process Development Proficiency: The intern will learn to create effective roadmaps, guides, and FAQs to simplify the complexities of working with CUI. Additionally, they will design a streamlined software request process for NEST researchers, fostering a more efficient research environment.

Incident Reporting and CUI Handling Expertise: The intern will refine their skills in developing clear and concise how-to guides for marking CUI and reporting security incidents to the DoD. They will ensure that all procedures are up-to-date and comprehensive, contributing to the overall security posture of NEST.

To Apply:

Please email Smlane@fsu.edu the following information.

  • Your resume.
  • A cover letter.
  • In the email specify the position you are applying for.
  • Deadline – Submit resume and cover letter before July 12, 2024.