This announcement is issued under the Direct Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Selectee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period. Who May Be Considered: U.S. Citizens View common definitions of terms found in this announcement.

Duties

Within CISA, the National Risk Management Center (NRMC) is a risk-driven analysis and planning center focused on addressing significant risks to our national critical functions. NRMC works with partners to generate solutions to the most complex, strategic risks to critical infrastructure. To accomplish this mission, NRMC operates using a collaborative model that relies on close integration with Federal, State, Local, Tribal, and Territorial (SLTT) government partners, and diverse private sector partners. In this position, you will serve as Supervisory IT Cybersecurity Specialist (INFOSEC). Typical work assignments include: Applying knowledge of data, information, processes, organizational interactions, skills, and analytical expertise, as well as systems, networks, and information exchange capabilities to manage acquisition programs. Leading the integration of analytic capabilities, tools and data into a web-based platform. Collecting, prioritizing, and implementing information system requirements from users. Leading a matrixed team of high performers (both Federal employees and contractors) across the organization. Providing guidance to customers about applicability of information systems to meet business needs. Developing and maintaining cybersecurity plans, strategy, and policy to support and align with organizational cybersecurity initiatives and regulatory compliance. Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs. Promoting awareness of security issues among management and ensuring sound security principles are reflected in organizations' visions and goals. Conducting systems security evaluations, audits, and reviews. Exercising a full range of supervisory and personnel management authorities and responsibilities in directing work of subordinate staff.

Requirements

Qualifications

To be considered minimally qualified for this position, you must demonstrate that you have the required experience for the respective grade level in which you are applying: EXPERIENCE: Experience must be Information Technology (IT)-related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. You must have IT-related experience demonstrating each of the four competencies listed below: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND SPECIALIZED EXPERIENCE: In addition to meeting the qualification requirement listed above, you must have at least one year of specialized experience at the next lower GS-grade level (or equivalent). Specialized experience is experience that has equipped you with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. GS-15 You qualify for the GS-15 grade level if you have at least one (1) year of specialized experience at the GS-14 grade level (or equivalent) performing the following duties: Identifying, evaluating, and advising on information security issues and providing guidance on risk efforts; Developing plans to ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals; Overseeing and defining organizational cyber policy, programs, and guidelines for implementation; and Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs. Successfully overseeing user acceptance and testing of capabilities being integrated into an information technology system. Collecting, prioritizing and implementing requirements that improve the usability of an information technology system. National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. All qualification requirements must be met by the closing date of this announcement.

Education

Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you must meet the qualification requirement using experience alone--no substitution of education for experience is permitted.

Contacts

• Address Cybersecurity and Infrastructure Security Agency 1616 Fort Myer Dr. Arlington, VA 22209 US
• Name: Amber Whitlock
• Phone: 202-679-6196
• Email: [email protected]