This position is located in the Department of Technology Services (DTS), Information Technology Security Office (ITSO), Security Operations Division (SOD).

Duties

The incumbent will be responsible for correcting deficiencies, sustaining strengths, and focusing on performance of specific mission essential tasks list (METL) objectives in support of the judiciary's security operations center (SOC). Must have a proven record of success performing continuous improvement, identification & remediation of cyber workforce skills gaps. Duties may include, but are not limited to, the following: Assessing and evaluating the performance of the Security Operations Center and its supporting functions by developing and measuring key performance indicators and objectives and key results to determine efficiency, effectiveness and opportunities for growth and improvement. Conducting regular tabletop IR exercises with Security Operations Center staff as a method for improving readiness. Analyzing and documenting strengths and weakness. Documenting lessons learned that convey the results. Coordinating after-action reviews, identify how to correct deficiencies, sustain strengths, and focus on performance of specific mission essential tasks list (METL) training objectives. Developing individual and organizational improvement plans based on findings and assessments to provide roadmaps for success and optimization. Enabling a culture and environment of positive change and feedback. Maintaining situational awareness to determine if changes to the operating environment require review of defensive cyber procedures. Establishing and collecting metrics to monitor and validate cyber workforce readiness including analysis of cyber workforce data to assess the status of positions identified, filled, and filled with qualified personnel. Coordinating with organizational manpower stakeholders to ensure appropriate allocation and distribution of cyber workforce assets. Creating and delivering factually accurate and compelling written and oral presentations and work products to a range of audiences from the IT practitioner to executive level management. Supporting the Security Operations Division adversary emulation program providing validation testing of discovered vulnerabilities in support of SOC defensive operations to determine if changes to the operating environment require review of defensive cyber procedures. Overseeing the development of mitigation strategies against validated exploits to prevent future compromise.

Requirements

Qualifications

Applicants must have demonstrated experience as listed below. This requirement is according to the AO Classification, Compensation, and Recruitment Systems which include interpretive guidance and reference to the OPM Operating Manual for Qualification Standards for General Schedule Positions. Specialized Experience: Applicants must have at least one full year (52 weeks) of specialized experience, which is in or directly related to the line of work of this position. Specialized experience is demonstrated experience working in a security operations center and providing quality assurance to improve processes. Be clear and specific when describing your work history since human resources cannot make assumptions regarding your experience. Your application will be rated based on your resume. Applicants with the following IT Security certifications are highly desirable: GIAC Exploit Researcher and Advanced Penetration Tester (GXPN) GIAC Assessing and Auditing Wireless Networks (GAWN) Offensive Security Certified Professional (OSCP) Gold-level SANS GIAC Certifications Certified Information Systems Security Professional (CISSP) Other IT Security certification not listed above

Education

This position does not require education to qualify.

Contacts

• Address Department of Technology Services One Columbus Circle, NE Washington, DC 20544 US
• Name: Kymberli Camber
• Phone: (210) 301-6303
• Email: [email protected]