Reclamation is seeking a career professional looking for an opportunity to capitalize on their expertise as a IT Cybersecurity Specialist. Make a difference in the West by assisting in meeting increasing water demands while protecting the environment. Duty Location: Clark County, Nevada

Duties

At the full performance level the IT Cybersecurity Specialist: Provides guidance and technical direction to system managers and administrators to ensure regulatory compliance with applicable Federal Information Security Management Act (FISMA) standards, North American Electric Reliability Corporation (NERC) and Western Electricity Coordinating Council (WECC) Critical Infrastructure Program (CIP) standards, Reclamation policies and directives addressing compliance and other applicable local business practices. Corresponds/collaborates with Information Technology (IT), Industrial Control Systems (ICS) and other compliance staff to resolve difficult and controversial CIP and FISMA compliance issues. Addresses IT and ICS out-of-compliance issues, develops Plans of Actions and Milestones to correct findings of non-compliance, and documents IT and ICS vulnerabilities and weaknesses. Maintains Cyber Security Assessment and Management (CSAM) system records to adequately demonstrate compliance. Identifies new and changing CIP and FISMA requirements, updating system managers and leaders as appropriate and updating local policies and business practices to reflect changes. Conducts investigations of cyber events to include those that potentially violate NERC/WECC CIP or FISMA regulatory requirements. Reviews cyber inventory quarterly, updates inventory with new or changed IT/ICS information; understands and addresses inconsistencies in network diagrams.

Requirements

Qualifications

To qualify at the GS-12 level, applicants must possess one year of specialized experience equivalent to at least the GS-11 in Federal service. Specialized experience at this level is defined as reviewing Information Technology (IT) security laws and industry standards such as NERC (North American Electric Reliability Corporation)/WECC (Western Electricity Coordinating Council) Critical Infrastructure Protection (CIP) or Federal Information Security Management Act (FISMA) for application in a large industrial organization; verifying new and existing IT/Industrial Control System components, their ratings, functions and capabilities, writing business practices, processes and procedures from complex regulatory compliance language for use by employees at varying levels of IT knowledge and skills, interpreting Network Architecture, software security, data protection, access control, incident response, network devices, software applications, malware defense, testing and exercises and boundary defenses as they relate to IT security compliance requirements, serving as a technical representative or subject matter expert responsible for duties such as presenting data to an audit team, performing spot audits, defending compliance positions or creating plans and procedures designed to meet regulatory requirements. In addition to meeting specialized experience, applicants must have IT-related experience demonstrating each of the four competencies: 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. You must meet all Eligibility and Qualification requirements, including any selective placement factors if applicable, by 09/22/2023.

Education

This position does not allow substituting education for experience.

Contacts

• Address Lower Colorado Basin Bureau of Reclamation PO Box 60400 Boulder City, NV 89006 US
• Name: Jennifer Santiago
• Phone: 702-293-0000
• Email: [email protected]