Who may apply: This announcement is open to all U.S. Citizens. Position is located in: INFO & DIR OFFICE, IT SECURITY SERVICES, COMPLIANCE ASSESSMENT, ZTAGB This job announcement may be used to fill similar positions on other teams in the I&T Directorate. Pay for first time hires to the Federal Government will typically be set at step 1 salary range for their respective grade level.

Duties

This position serves as a Risk Management Framework Assessor for Defense Finance and Accounting Service. Apply knowledge of security regulations, policy, instructions, frameworks, and best-practice, with a focus working with NIST Cybersecurity Framework, DoD Risk Management Framework, FISMA and related DoD cyber security policy and directives. Identify requirements implementing and testing security technical standards for assigned technologies or information systems such as web applications, databases, operating systems, network devices. Conduct assessments to analyze vulnerabilities and threats to determine overall risk to the confidentiality, integrity, and availability of DFAS information systems. Analyze and interpret results of vulnerability and security scanning tools to determine impact to security posture. Analyze results, provide narrative and statistical reports, and prepare final assessment report to advise management on risk posture. Provide guidance and support to less-senior RMF assessors to support the growth and development of the DFAS RMF Assessment Team. Conduct independent security control assessments to confirm or establish, by testing, evaluating, and analyzing evidence, that privacy and security controls are implemented correctly and effectively.

Requirements

• U.S. Citizenship or National
• Suitable for Federal Employment
• Registered for Selective Service (if applicable)
• Cyber-Security Certification required as a condition of employment
• This national security position, which may require access to classified information, requires a favorable suitability review and security clearance as a condition of employment. Failure to maintain security eligibility may result in termination.
• Vacancy Information: Position is located in: {{Insert Org/Location}}

Qualifications

Resumes for federal government positions need more detailed work descriptions and accomplishments than a typical private sector resume. Please be sure to clearly describe the full scope of your work experiences in your resume. Basic Requirement: Applicants must have IT-related experience demonstrating the following competencies appropriate to, or above, the level of this position. Your resume and work experience should clearly support your ability to meet these competencies and will be evaluated as part of the entire application process. Attention to Detail- experience reviewing my own information technology-related work or data and have been asked by others to review their work or data to ensure accuracy, completeness, and consistency with standards Customer Service- experience maintaining relationships with customers, assessing current information technology needs of customers, and developing or identifying information technology products and services that are tailored to meet customer needs Oral Communication- briefing mid-level management and IT staff on the status of information technology systems, projects, or daily operations, including the communication of technical information to a non-technical audience Problem Solving- identifying alternatives to address complex information technology-related issues by gathering and applying information from a variety of sources that provide a number of potential solutions In addition to the Basic Competency Requirements listed above, one year of specialized experience equivalent in level of difficulty and responsibility to that of the next lower grade GS-11 in the federal service, which demonstrates the ability to perform the duties of the position, is required. Specialized experience is defined as identifying, implementing, testing and remediating technical security requirements for assigned technologies and environments; Assessing information systems for technical IA and Cyber requirements; providing cybersecurity guidance to I&T management, staff, and customers; AND IT-related experience demonstrating Attention to Detail, Customer Service, Oral Communication, and Problem Solving as described in the vacancy announcement. Volunteer Experience: Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates to paid employment. You will receive credit for all qualifying experience, including volunteer experience. You may qualify for consideration if meeting time-in grade, specialized experience, education requirement, 90 days after competitive appointment requirement, and all other qualification requirements within 30 calendar days after the closing date of the announcement, unless otherwise indicated on the announcement.

Education

Contacts

• Address DFAS - INFO AND TECHNOLOGY DIR OFFICE 4800 Mark Center Drive Alexandria, VA 22350 US
• Name: HR Customer Care Center
• Phone: (317) 212-0454
• Email: [email protected]