Job opening: IT Cybersecurity Specialist (INFOSEC)
Salary: $49 028 - 92 429 per year
Published at: Nov 27 2023
Employment Type: Full-time
This announcement is issued under the Direct Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Selectee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period.
Who May Be Considered:
U.S. Citizens
View common definitions of terms found in this announcement.
Duties
This is a shared job announcement across the Cybersecurity and Infrastructure Security Agency, with multiple participating divisions. Multiple positions may be filled from this announcement. These divisions include, but are not limited to:
Cybersecurity Division (CSD)
Emergency Communications Division (ECD)
Infrastructure Security Division (ISD)
Integrated Operations Division (IOD)
National Risk Management Center (NRMC)
Office of the Chief Information Officer (OCIO)
Office of the Chief Operations Support Officer (OCOSO)
Office of the Chief Technology Officer (OCTO)
Stakeholder Engagement Division (SED)
Typical work assignments include:
Develop, review and recommend methods to monitor and measure risk, compliance, and assurance efforts.
Conduct needs analysis to determine opportunities for new and improved business process solutions.
Provide advice on project costs, design concepts, or design changes. Develop and evaluate project costs, design concepts, or design changes.
Conduct risk analysis, feasibility study, and/or trade-off analysis to develop, document, and refine functional requirements and specifications.
Consult with customers to evaluate functional requirements.
Define project scope and objectives based on customer requirements.
Develop organizational cyber policy, programs, and guidelines for implementation.
Establish and maintain communication channels with stakeholders.
Develop and evaluate existing and proposed policies with stakeholders.
Qualifications
To be considered minimally qualified for this position, you must demonstrate that you have the required education or experience for the respective grade level in which you are applying:
EDUCATION: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
All academic degrees and coursework must be from accredited or pre-accredited institutions.
A transcript must be submitted with your application if you are basing your qualifications on education. Applications submitted without this information may not be considered.
GS-09
Master's degree or equivalent graduate degree or two (2) full years of progressively higher-level graduate education leading to a master's degree or equivalent graduate degree.
GS-11
Ph.D. or equivalent doctoral degree or three (3) full years of progressively higher-level graduate education leading to a Ph.D. or equivalent doctoral degree.
OR
EXPERIENCE: Experience must be Information Technology (IT)-related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate.
You must have IT-related experience demonstrating each of the four competencies listed below:
Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
AND
SPECIALIZED EXPERIENCE: In addition to meeting the qualification requirement listed above, you must have at least one year of specialized experience at the next lower GS-grade level (or equivalent). Specialized experience is experience that has equipped you with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT.
GS-09
You qualify for the GS-09 grade level if you have at least one (1) year of specialized experience at the GS-07 grade level (or equivalent) performing at least two of the following duties:
Assisting with providing ongoing problem-solving support of information systems; or
Providing support to ensure compliance of automated information system security protocols; or
Assisting with conducting risk assessments of installed information systems to identify protection needs of activities; or
Assisting with assessments of new system designs methodologies to improve software quality.
GS-11
You qualify for the GS-11 grade level if you have at least one (1) year of specialized experience at the GS-09 grade level (or equivalent) performing at least two of the following duties:
Assessing new system design methodologies to improve software quality; or
Conducting risk assessments of installed information systems to identify protection needs of activities; or
Ensuring integration of security protocols and risk management considerations throughout the IT system engineering life cycle including planning, design, development, test, and integration; or
Ensuring continuous improvement efforts are considered and built into the program, including development and refinement of IT/cyber security policies and procedures and associated guidance documents.
GS-12
You qualify for the GS-12 grade level if you have at least one (1) year of specialized experience at the GS-11 grade level (or equivalent) performing at least three of the following duties:
Controlling authorization level for all personnel requiring user access to automated information systems; or
Evaluating the security impact of system changes to existing or proposed computerized systems; or
Conducting studies of new automated information systems equipment to prepare effective security procedures; or
Ensuring compliance of automated information system security protocols and procedures; or
Supporting IT/cyber risk management to include risk identification, response plan, and mitigation strategies for project level risk.
National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
All qualification requirements must be met by the closing date of this announcement.
Education
If you are relying on your education to meet qualification requirements, you
MUST submit a copy of your transcripts if you want to substitute your education for experience. Unofficial transcripts will be accepted that includes your name, the name of the educational institution, course title(s), number of credits, grade, and date of completion. An official transcript will be required if you are selected.
Education must be from an accredited institution recognized by the
U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education.
Foreign Education: Education completed in foreign colleges or universities may be used to meet the qualification requirements. You must show the education credentials have been evaluated by a private U.S. organization that specializes in interpretation of foreign educational credentials and such education has been deemed equivalent to that gained in an accredited U.S. education program. It is your responsibility to provide such evidence with your application. See
Recognition of Foreign Qualifications for more information.
Contacts
- Address Cybersecurity and Infrastructure Security Agency
1616 N. Fort Myer Dr.
CISA-FMD Stop 0380
Arlington, VA 20598-0380
US
- Name: CISA OCHCO Outreach & Employee Experience
- Email: [email protected]