IOWA AIR NATIONAL GUARD - TITLE 5 EXCEPTED SERVICE POSITION Open to current on-board employees of the 132 ISR Group with the Iowa Air National Guard. Military membership is not required, and Veteran's Preference applies. LOCATION: 132d Wing, Des Moines, Iowa

Duties

As a IT SPECIALIST (INFOSEC) (TITLE 5), GS-2210-12, you will perform the following duties. 1. Performs as the Team Technical Lead during vulnerability assessments of DoD information systems. Utilizes knowledge of systems security principles and concepts, of new Information Technology (IT) security developments, and of the infrastructure protection environment to select appropriate tools to be used by team members. Establishes methodology, and determines best techniques to penetrate computer systems and exploit information within these systems. Directs the team during actual assessments to find vulnerabilities due to improper configurations, missing or improperly applied patches, or procedural errors. Provides assistance to owners of assessed systems by providing recommendations pertaining to implementing security programs designed to anticipate, assess, and minimize system vulnerabilities, to correct deficiencies discovered, and to apply new IT security concepts. Briefs commanders and network administrators on the purpose and findings of the assessment, and prepares reports on the findings. Assists in developing security solutions to correct deficiencies that cannot be fixed with existing solutions. 2. Conducts extensive research of new vulnerabilities discovered in operating systems, application software, infrastructure and firewalls. Investigates, analyses, and develops methods that could be used to exploit those vulnerabilities. Conducts testing on training range to validate findings and to develop and refine methods and procedures to mitigate vulnerabilities.Conducts extensive research of tools currently being used to attack or gain unauthorized access to information networks. Analyzes and tests these tools on training range to determine effectiveness, stability, and scope of the tools. Modifies and refines tools for use in vulnerability assessments to provide the customer with the best possible evaluation of their security posture. 3. Performs information operations that protect and defend (or assess the capability to protect and defend) information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This includes providing for restoration of information systems by incorporating protection, detection, and reaction capabilities. Conducts risk and vulnerability assessments of DoD information systems to identify associated vulnerabilities, risks and protection needs. Performs OPFOR and other operational tasking. Operates fixed and deployed communications-computer systems. Performs activities such as configuring and monitoring hardware and software for system operation, processing and control of data flow, and client-server multi-user system support including network management or administration. Performs microcomputer fault isolation and restoration actions. Evaluates and assesses vulnerabilities of customer network and application server hardware, operating system software, and peripheral network equipment such as routers, bridges, switches, attached cabling system, network interface cards, modems, multiplexers, and concentrators. Conducts evaluations to ensure compliance with applicable standards. Ensures system backups are performed to ensure expedient restoration of the database for the respective network equipment. Evaluates effectiveness of customer network firewalls. 4. Analyzes equipment and software reliability and suitability for vulnerability assessment utilization. Conducts analyses of network usage, hardware and software capabilities, ineffective practices or procedures, equipment shortcomings, and other relevant factors. Recommends methods and procedures and coordinates corrective action to optimize utilization of present equipment. Uses benchmarks, performance measurement, and evaluation data, in conjunction with vulnerability assessment techniques. Develops recommendations or proposals involving a variety of specialized systems and improved operational efficiency. Exercises authority and oversight of the squadron's digital training range(s), a suite of servers, routers, switches, hubs and other devices which can be configured with a variety of different operating systems in various versions, and with pre-programmed vulnerabilities, to be used in Computer Network Operations (CNO) training. 5. Consults with subordinates, supervisors, specialists, vendors, and sister IO squadrons to procure and maintain training range devices that realistically emulate Air Force networks and are flexibly re-configurable to emulate the network(s) of a specific Air Force base as needed to prepare for vulnerability assessment missions. Performs analysis and design of automated and manual systems related to the network. Provides data for intrusion detection analysis. Determines applicability of established methods. Provides technical advice to users. Performs other duties as assigned. T5821400

Requirements

• May be required to successfully complete a probationary period.
• Participation in direct deposit is mandatory.
• Perform irregular/overtime hours in support of operational requirements and contingencies
• Failure to complete prescribed courses may be cause for reassignment or termination of FTS.
• This position conducts information assurance functions. The incumbent shall comply with the requirements of the certification program and will be required to obtain and maintain certification.
• Certification requirements are outlined in DoD Instruction 8570.01-M
• Work may require access to classified information. Must be able to obtain and maintain the appropriate security clearance.
• The incumbent of this position description must have at a minimum, a completed National Agency Check (NAC) prior to position assignment.
• The employee may be required to travel in military and/or commercial aircraft to perform temporary duty assignments.

Qualifications

In describing your experience, please be clear and specific. We will not make assumptions regarding your experience. Applicants who do not fully address the minimum/specialized experience needed for the position in their resume will not be referred for consideration. MINIMUM EXPERIENCE: Experience, education or training that has provided a basic knowledge of data processing functions and general management principles that enabled the applicant to understand the stages required to automate a work process. Experience may have been gained in work such as computer operator or assistant, computer sales representative, program analyst, or other positions that required the use or adaptation of computer programs and systems. SPECIALIZED EXPERIENCE: GS 2210 12 - Applicant must have at least 36 months of the following experience: Techniques and requirements appropriate to an assigned computer applications area or computer specialty area in an organization. Experience planning the sequence of actions necessary to accomplish the assignment where this entailed coordination with others outside the organizational unit and development of project controls. Experience that required adaptations of guidelines or precedents to meet the needs of the assignment. Experience preparing documentation on cost/benefit studies where is involved summarizing the material and organizing it in a logical fashion.

Education

Substitution of Education for Specialized Experience - For the GS-5 level, a 4-year course of study leading to a bachelor's degree may be substituted for the experience requirements. At the GS-7 level, on full year of graduate level education or superior academic achievement. At the GS-9 level, a masters or equivalent graduate degree or 2 full years of progressively higher-level graduate education leading to such a degree may be substituted. At the GS-11 level, a Ph.D. or equivalent, or 3 years of progressively higher-level graduate education leading to such a degree. Major study-computer science, information science, information systems management, mathematics, statistics, operations research, or engineering, or course work that required the development or adaptation of computer programs and systems and provided knowledge equivalent to a major in the computer field.

You must provide transcripts or other documentation to support your educational claims. To receive credit for education, you must provide documentation of proof that you meet the education requirements for this position.

Contacts

• Address IA 132nd Wing 3100 McKinley Ave Des Moines, IA 50321-2799 US
• Name: Alyssa Smith
• Phone: 515-252-4682
• Email: [email protected]