Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information. The primary purpose of this position is to serve as a cyberspace defense analyst with responsibility for operating enterprise Defensive Cyberspace Operations tools to perform defensive measures of systems. Supports cyberspace defense experts across multiple areas executing highly complex cyberspace defense weapon systems.

Duties

DUTY 1: Serves as Mission Defense Team Cyberspace Defense Analyst. Uses defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network to protect information, information systems, and networks from threats. DUTY 2: Mission Defense Team Cyberspace Defense Subject Matter Expert (SME) in support missions, mission partners and other assigned/supported mission systems. Provides inputs to critical DCO operations documentation to include: Incident Response Plans (IRPs), MDT TTPs, SOPs and Playbooks, Mission Risk Mitigation Plans, Mission Defense Plans, intelligence gathering and dissemination, and DCO metrics tracking. DUTY 3: Serves as Mission Defense Team Cyberspace Incident Responder. Responds to crises or urgent situations within the pertinent domain to mitigate immediate and potential threats. DUTY 4: Defends its key terrain in cyberspace proactively. Performs equipment maintenance within organic capability that requires configuration updates and routine upgrades to maintain effectiveness and to mitigate vulnerabilities associated with toolkit. DUTY 5: Participates in discussions, meetings, committees, or special projects and presents briefings and prepares recommendations and reports.

Requirements

• U.S. Citizenship Required
• Males must be registered for Selective Service, see www.sss.gov
• Selectee is expected to be granted with and/or maintain the appropriate security clearance required for the position
• If authorized, PCS will be paid IAW JTR and AF Regulations. If receiving an authorized PCS, you may be subject to completing/signing a CONUS agreement. More information on PCS requirements, may be found at: https://afciviliancareers.com/regulatory/
• Relocation costs or other incentives may be available and considered by the organization
• This posn is subject to provisions of the DoD Priority Placement Program
• This position may require drug testing and the candidate my be subject to passing a drug test upon selection
• Selectee may be required to serve a probationary or trial period
• Employee must maintain current certifications
• Disclosure of Political Appointments
• Direct Deposit: All federal employees are required to have direct deposit.
• May occasionally be required to work other than normal duty hours and/or shift work may be required which may include overtime and/or irregular hours.
• Work may occasionally require travel away from the normal duty station on military or commercial aircraft.
• Must be able to obtain and maintain a Top Secret Clearance.
• This is a drug testing designated position. The incumbent is subject to random testing for drug use.
• Information Assurance Certification is a condition of employment. This position includes information assurance (IA) work as a paramount duty requirement.
• Per DoD 8570.01-M, the incumbent must achieve the appropriate IA certification within six (6) months of assignment to this position. Failure to receive the proper certification may result in removal from this position.
• DoD cyberspace operations experience is required.
• This position meets the administrative exemption criteria for the Fair Labor Standards Act (5 CFR 551.206).

Qualifications

Experience requirements are described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, IOR for Information Technology Management Series, 2210 (Alternative A). There are no Group Coverage Qualification Standards for this series. Due to the use of 120-day rosters, this period of experience may be completed within 120 days of the closing date of this announcement. SPECIALIZED EXPERIENCE: Applicants must have at least one year (52 weeks) of specialized experience at the next lower grade GS-12, or equivalent in other pay systems. Examples of specialized experience includes demonstration of extensive knowledge of a full range of cyberspace defense and cybersecurity principles and methods for evaluating risk and vulnerabilities, implementing mitigation improvement, and disseminating cyberspace defense security tools and procedures. Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Experience in supporting cyberspace defense experts across multiple areas executing highly complex cyberspace defense weapon systems to include thoroughly planning, briefing, executing, and debriefing cyber defense missions. Proactively identify, assess, and mitigate risk within local cyberspace terrain deemed critical. NOTE: Due to the use of 120-day rosters, this period of experience may be completed within 120 days of the closing date of this announcement. FEDERAL TIME-IN-GRADE (TIG) REQUIREMENT FOR GENERAL SCHEDULE (GS) POSITIONS: Merit promotion applicants must meet applicable time-in-­grade requirements to be considered eligible. One year at the GS-12 level is required to meet the time-in-grade requirements for the GS-13 level. TIG applies if you are in a current GS position or held a GS position within the previous 52 weeks. Note: Applicants applying as VEOA candidates who are current GS civil service employees or are prior GS civil service employees within the past 52 weeks must also meet time-in-grade requirements. KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: Extensive knowledge of a full range of cyberspace defense and cybersecurity principles and methods for evaluating risk and vulnerabilities, implementing mitigation improvement, and disseminating cyberspace defense security tools and procedures. Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Knowledge of risk management processes, laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. Knowledge of cyber threats, vulnerabilities, and specific operational impacts of cybersecurity lapses. Knowledge of incident categories, incident responses, and timelines for responses. Knowledge of cyber defense and information security policies, procedures, and regulations. Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks). Ability to develop and deploy signatures, detecting host and network-based intrusions via intrusion detection technologies, performing packet-level analysis, determining how a security system should work and how changes in conditions, operations, or the environment will affect these outcomes. Skill in assessing security controls based on cybersecurity principles and tenets. Ability to identify, capture, contain, and report malware. Skill in preserving evidence integrity according to standard operating procedures or national standards. Skill in performing damage assessments. Skill in using security event correlation tools. Ability to communicate effectively, both orally and in writing. Ability to develop and conduct training for supported DCO crews involving DCO Analysis and Incident Response. PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week. VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

IF USING EDUCATION TO QUALIFY: If position has a positive degree requirement or education forms the basis for qualifications, you MUST submit transcriptswith the application. Official transcripts are not required at the time of application; however, if position has a positive degree requirement, qualifying based on education alone or in combination with experience, transcripts must be verified prior to appointment. An accrediting institution recognized by the U.S. Department of Education must accredit education. Click here to check accreditation.

FOREIGN EDUCATION: Education completed in foreign colleges or universities may be used to meet the requirements. You must show proof the education credentials have been deemed to be at least equivalent to that gained in conventional U.S. education program. It is your responsibility to provide such evidence when applying.

Contacts

• Address Wright Patterson AFB 2000 Allbrook Drive Wright Patterson AFB, OH 45433 US
• Name: Total Force Service Center
• Phone: 1-800-525-0102
• Email: [email protected]