You will serve as the Echelon II Information Systems Security Manager (ISSM) and Lead Echelon II Package Submitting Office (PSO) Representative in the Command Information Office Directorate of Naval Facilities Engineering Command (NAVFAC) Headquarters. This position may be filled remotely by employees in the local commuting area of Norfolk, VA. Employee's in the District of Columbia commuting area will be expected to regularly report to duty and may be offered telework or other flexibilities.

Duties

You will create and update Echelon II business rules in coordination with key stakeholders, to include Program Managers, Information System Owners, subordinate ISSMs, and cybersecurity peers for A and A processing. You will develop and maintain a command cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures. You will draft, modify and maintain command core cybersecurity policies. You will review IT and control systems programs to assess overall compliance with cybersecurity plans and policies, and alignment with business and mission requirements. You will modify IT and control systems plans and policies to respond to changes in the command's business or mission requirements and processes, or change in legislation or regulatory requirements. You will ensure all personnel with cyber security functions are identified as DoD Cybersecurity Workforce (DCWF) in the Defense Civilian Personnel Data System (DCPDS) and designated in writing. You will ensure all personnel with cyber security functions are fully qualified in accordance with assigned Cyber IT/CS position and specialty area qualifications. You will track cybersecurity and CIO office data and metrics to ensure compliancy with all CIO related tasking, including but not limited to: - DADMS and DITPR-DON registration, FISMA reporting and compliancy, DoD Scorecard Reporting, Waivers (e.g., HBSS, MDE, PKI, Operating Systems), VRAM registration and compliancy, etc. You will evaluate the impact of new laws and guidance on current programs and systems, and recommends changes to existing plans and policies to ensure compliance and responsiveness. You will maintain a repository of all command cybersecurity-related documentation.

Requirements

• Must be a US Citizen.
• Must be determined suitable for federal employment.
• Must participate in the direct deposit pay program.
• New employees to the Department of the Navy will be required to successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit www.dhs.gov/E-Verify/.
• Generally, current federal employees applying for GS jobs must serve at least one year at the next lower grade level. This requirement is called time-in-grade. Time-in-grade requirements must be met by the closing date of this announcement.
• You will be required to obtain and maintain an interim and/or final top secret/SCI security clearance prior to entrance on duty. Failure to obtain and maintain the required level of clearance may result in the withdrawal of a job offer or removal.
• This position is covered under the Defense Acquisition Workforce Improvement Act (DAWIA). Certification in the Acquisition Functional Area and category assigned to the position is required within established category timeframes.
• Successful completion of a pre-employment drug test (including marijuana) is required. A tentative offer of employment will be rescinded if you fail to report to the drug test appointment or pass the test. You will be subject to random testing.
• This position may require occasional travel from normal duty station. You must be able to travel on military and commercial aircraft.

Qualifications

Your resume must reflect a minimum of one year of information technology related experience in the federal service or private or public sector demonstrating the following four competencies, as defined: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. IT-related experience demonstrating this competency must include: Preserving evidentiary data using industry standard cyber forensics analysis tools to provide a detailed report. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. IT-related experience demonstrating this competency must include: Developing strategic plans for the delivery of information technology (IT) customer services to support an organization's mission. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. IT-related experience demonstrating this competency must include: Briefing senior leaders on information technology (IT) cybersecurity program particulars (e.g., requirements, schedules, costs, concepts, solutions, deployment, and operation). Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. IT-related experience demonstrating this competency must include: Perform a risk assessment of information technology (IT) and/or Operational Technology (OT) systems to identify cybersecurity vulnerabilities and threats, and recommend solutions for remediation or mitigation. In addition, your resume must demonstrate at least one year of specialized experience at or equivalent to the GS-13 grade level or pay band in the Federal service or equivalent experience in the private or public sector performing duties such as: 1) Providing oversight and leadership for risk management of a DoD command's information systems and/or control systems by communicating, shaping, and developing Cybersecurity and Information Assurance policy; 2) Interpreting and analyzing system security test results and making a security risk determinations based upon those results that significantly influence important DoD IT policies; 3) Applying cyber defense mitigation techniques and utilizing vulnerability assessment tools to establish vulnerability reporting criteria and coordinate the implementation of security programs across multiple platforms and enclaves; 4) Overseeing the evaluation, implementation, and dissemination of IT security assessment, monitoring, detection, and remediation tools and procedures; and 5) Exhibiting mastery of information assurance and cybersecurity principles and organizational requirements to protect confidentiality, integrity, availability, authenticity, and non-repudiation of information and data. Additional qualification information can be found from the following Office of Personnel Management website: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/ Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

Education

This job does not have an education qualification requirement.

Contacts

• Address NAVFAC OSF 1322 Patterson Avenue SE Washington, DC 20374 US
• Name: Department of Navy EIC
• Email: [email protected]