You will serve as a IT SPECIALIST (INFOSEC) in the Cyber Security (CS)/Risk Management Framework (RMF) Branch of NAVSUP BUSINESS SYSTEMS CENTER.

Duties

You will be responsible for ensuring effective implementation of organizational information systems security regulations and policies and maintaining compliance with higher level requirements. You will serve in the capacity of either Validator or Risk Management Framework (RMF) Information Systems Security Engineer (ISSE) for all authorizations. You will obtain or receive system or site information independently to evaluate security features of the IT system or site being assessed and authorized. You will develop and execute the Security Assessment Plan (SAP) as part of the Assessment and Authorization process. You will conduct testing or Validation Procedures, obtain test results, advise the site or system owner concerning any discrepancies, and re-test as necessary.

Requirements

• Must be a US Citizen.
• Must be determined suitable for federal employment.
• Must participate in the direct deposit pay program.
• New employees to the Department of the Navy will be required to successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit e-verify.gov
• Generally, current federal employees applying for GS jobs must serve at least one year at the next lower grade level. This requirement is called time-in-grade. Time-in-grade requirements must be met by the closing date of this announcement.
• Within the Department of Defense (DoD), the appointment of retired military members within 180 days immediately following retirement date to a civilian position is subject to the provisions of 5 United States Code 3326.
• Males born after 12-31-59 must be registered for Selective Service.
• You will be required to obtain and maintain an interim and/or final security clearance prior to entrance on duty. Failure to obtain and maintain the required level of clearance may result in the withdrawal of a job offer or removal.
• This position is designated as a Cyber IT/Cybersecurity Workforce position. You must obtain and maintain the credentials as described in SECNAV M-5239.2 for specialty area 612 - Intermediate level within 12 months of appointment.
• This is a bargaining unit position.

Qualifications

I have one year of information technology related experience in the federal service or private or public sector demonstrating the following four competencies, as defined: 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. In addition to the experience demonstrating the four competencies above, your resume must demonstrate at least one year of specialized experience at or equivalent to the (GS-11) grade level or pay band in the Federal service or equivalent experience in the private or public sector. Specialized experience must demonstrate the following: Applying information systems security principles and methods to evaluate, implement, and disseminate information systems security tools and procedures. Examples of specialized experience include: 1) Ensuring effective implementation of organizational information systems, security regulations, and policies and maintaining compliance with higher level requirements; 2) Applying knowledge of the DoD Risk Management Framework (RMF), developing RMF documentation for customers, and providing technical review of assessment materials in support of organizational system and application authorization; 3) Documenting the Assessment and Authorization (A&A) information in a comprehensive RMF package to include all of the information connected with the assessment of the Security Plan (SP); 4) Executing test plans and Validation Procedures to obtain test results and advising the site or system owner of any issues; and 5) Recommending mitigation measures to reduce risk. Your experience must reflect skill in the following areas: attention to detail, customer service, oral communication, and problem solving. Additional qualification information can be found from the following Office of Personnel Management website: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/ OR https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-b/ . Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

Education

This job does not have an education qualification requirement.

Contacts

• Address NAVSUP BUSINESS SYSTEMS CENTER NAVSUP Mechanicsburg, PA 17055 US
• Name: Department of Navy EIC
• Email: [email protected]