Who May Be Considered: Internal to an agency - Current Cybersecurity and Infrastructure Security Agency (CISA) Federal civilian employees Career Transition Assistance Program (CTAP) View common definitions of terms found in this announcement.

Duties

Within CISA, the National Risk Management Center (NRMC) is a risk-driven analysis and planning center focused on addressing significant risks to our national critical functions. NRMC works with partners to generate solutions to the most complex, strategic risks to critical infrastructure. To accomplish this mission, NRMC operates using a collaborative model that relies on close integration with Federal, State, Local, Tribal, and Territorial (SLTT) government partners, and diverse private sector partners. In this position, you will serve as Management and Program Analyst. Typical work assignments include: Applying knowledge of data, information, processes, organizational interactions, skills, and analytical expertise, as well as systems, networks, and information exchange capabilities to manage acquisition programs. Providing enterprise cybersecurity and supply chain risk management guidance for development of the Continuity of Operations Plans. Overseeing others responsible for managing the internal relationship with information technology (IT) process owners supporting the service, assisting with the definition and agreement of Operating Level Agreements (OLAs). Providing guidance to customers about applicability of information systems to meet business needs. Developing and maintaining cybersecurity plans, strategy, and policy to support and align with organizational cybersecurity initiatives and regulatory compliance. Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs. Promoting awareness of security issues among management and ensuring sound security principles are reflected in organizations' visions and goals. Conducting systems security evaluations, audits, and reviews. Exercising a full range of supervisory and personnel management authorities and responsibilities in directing work of subordinate staff.

Requirements

Qualifications

To be considered minimally qualified for this position, you must demonstrate that you have the required experience for the respective grade level in which you are applying. Applicants must demonstrate that they meet the Basic Requirements AND Minimum Qualification requirements as listed below. BASIC REQUIREMENTS: You qualify for the GS-15 grade level if you possess information technology related experience demonstrating each of the four required competencies: Attention to Detail: Reviewing operational plans for implementation. Customer Service: Integrating cyber planning and targeting efforts with other organizations. Oral Communication: Providing information to senior management. Problem Solving: Determining what corrections are needed to mitigate risks and safeguard private information. IN ADDITION TO MEETING THE BASIC REQUIREMENTS ABOVE, YOU MUST ALSO MEET THE FOLLOWING MINIMUM QUALIFICATIONS: You qualify for the GS-15 grade level, if you have: EXPERIENCE: At least one (1) year of specialized experience at the GS-14 grade level (or equivalent) performing the following duties: Identifying, evaluating, and advising on information security issues and providing guidance on risk efforts; Developing plans to ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals; Overseeing and defining organizational cyber policy, programs, and guidelines for implementation; and Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs. National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. Time-in-Grade Requirements: Under competitive merit promotion procedures, any individual who is currently holding, or who has held within the previous 52 weeks, a General Schedule position under a non-temporary appointment in the competitive or excepted service, must meet "time-in-grade" requirements (have served 52 weeks at the next lower grade of the grade for which you are applying). Time After Competitive Appointment: By the closing date specified in this job announcement, current Federal civilian employees must wait at least 90 days after their latest non-temporary appointment from a competitive service referral certificate before promotion, transfer, reinstatement, reassignment, or detail. All qualification requirements, including Time-in-Grade, must be met by the closing date of this announcement. Qualification AND Time-in-Grade claims will be subject to verification.

Education

Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you must meet the qualification requirement using experience alone--no substitution of education for experience is permitted.

Contacts

• Address Cybersecurity and Infrastructure Security Agency 1616 N. Fort Myer Dr. CISA-FMD Stop 0380 Arlington, VA 20598-0380 US
• Name: Amber Whitlock
• Phone: 202-679-6196
• Email: [email protected]