You will serve as a Information Technology (IT) Cybersecurity Specialist for the Malicious Cyberspace Activity Detection Team, Discovery and Counter Infiltration (D & CI) Branch, DCO Division, MCCOG and is immediately accountable to the D&CI Lead, in the Marine Corps Cyberspace Operations Group (MCCOG).

Duties

You will receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts. You will perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack. You will analyze identified malicious activity to determine weaknesses exploited, exploitation methods, and effects on system and information. You will identify and determine tactics, techniques, and procedures (TTPs) of intrusion sets. Leverages security data from internal sensors (e.g., IDS, IMS, firewalls, hosts) and external sources in order to implement effective mitigations.

Requirements

• Must be a US Citizen.
• Must be determined suitable for federal employment.
• Must participate in the direct deposit pay program.
• New employees to the Department of the Navy will be required to successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit e-verify.gov
• Within the Department of Defense (DoD), the appointment of retired military members within 180 days immediately following retirement date to a civilian position is subject to the provisions of 5 United States Code 3326.
• Males born after 12-31-59 must be registered for Selective Service.
• Responsible for maintaining DoD Directive 8570 IASAE Level II certification until superseded by DoD Directive 8140 requirements.
• Must successfully complete internal training courses including Incident Detection Analyst Training (IDAT), Incident Response (IR), Signature Development (SigDev), within eighteen (18) months of employment.
• Must successfully complete internal training courses including Red Team Operations Course (RTOC) at the Associate Level, Malware Analysis, Forensic Analysis, and Hunt courses within eighteen (18) months of employment.
• Must be able to obtain and maintain a TOP-SECRET/SCI clearance. Failure to meet any security requirements may result in the withdrawal of position offer or termination from the position.
• This position is designated as a Mission Essential (ME) position. The incumbent is required to perform on a shift work schedule that requires the incumbent to work nights, weekends, holidays, inclement weather, furlough periods, or as needed
• This position is telework eligible.
• Required overnight travel may be as high as 20% of the time.
• You will be required to complete training, obtain, and maintain a government credit card for travel and travel-related purchases.

Qualifications

You are required to have information technology (IT) related experience in the federal service or private or public sector demonstrating the following four competencies, as defined: I have information technology (IT) related experience in the federal service or private or public sector demonstrating the following four competencies, as defined: 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. IT-related experience demonstrating this competency include monitoring and analyzing network traffic through the use of packet analyzers and other cyber defense network tools to identify anomalous activity and potential threats to network resources. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. IT related experience demonstrating this competency include coordinating with enterprise-wide cyber defense staff to validate network alerts. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, and responds appropriately. IT-related experience demonstrating this competency include articulating and communicating work assignments, projects, problems to be solved, actionable events, milestones, and/or program issues under review, and deadlines and time frames for completion. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. IT-related experience demonstrating this competency include assisting in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave. In addition to my experience demonstrating the four competencies above, I have directly applicable experience that demonstrates the possession of knowledge, skills, abilities, and competencies necessary for immediate success in the position. Qualifying experience may have been acquired in any public or private sector job but will clearly demonstrate past experience in the application of the particular competencies or knowledge, skills and abilities necessary to successfully perform the duties of the position. Such experience is typically in or directly relates to the work of the position to be filled. Qualifying experience would be demonstrated by evaluating data collected from a variety of cyber defense tools (e.g., intrusion detection system (IDS) alerts, firewalls, network traffic logs,etc.) to analyze incidents and events at the systems or network level in order to mitigate threats. Identifies, distributes, and balances workload and tasks among employees in accordance with established workflow, skill level, and/or occupational specialization. This position is within the Work Category PROFESSIONAL at Work Level FULL PERFORMANCE, Series and Grade GG-2210-13. Additional qualifications information can be found from the following Department of Defense websites: https://dodcio.defense.gov/Cyber-Workforce/CES.aspx Information Technology (IT) Management Series 2210 (Alternative A) (opm.gov)

Education

This job does not have an education qualification requirement.

Contacts

• Address U S MARINE FORCES CYBERSPACE COMMAND 9800 Savage Road Fort Meade, MD 20755-5810 US
• Name: Department of Navy EIC
• Email: [email protected]