This position is located in the Security and Governance (S&G) Directorate within the Office of the Chief Information Officer (OCIO), Peace Corp Headquarters, Washington DC. The mission of S&G Directorate is to institutionalize IT security processes and standards by promoting sound business practices/IT decisions and achieve compliance with federal regulations and standards.

Duties

The IT Cybersecurity Specialist serves as the Senior Incident Response Analyst within the Security Operations Center (SOC). The SOC Incident Response Team (SIRT) performs Incident Response investigations to develop a comprehensive diagnosis of cyber incident breaches. Response investigations to develop a comprehensive diagnosis of cyber incident breaches. SOC personnel provide front line response for digital forensics/incident response and proactively hunt for malicious cyber activity for the agency's critical infrastructure. The IT Cybersecurity Specialist serves as a subject matter expert on IT intrusion detection and utilizes a broad spectrum of cross-disciplinary technical backgrounds and skills to conduct research, testing and diagnostic analytics on threats and vulnerabilities. Incumbent conducts extensive coordination on IT Security processes to resolve and respond to intrusion attempts and incidents. Major Duties and Responsibilities:

Requirements

Qualifications

All qualification requirements must be met by 04/16/2024 (the closing date of the announcement). You will receive credit for all qualifying experience, including volunteer experience. To ensure full credit for your experience, please indicate the start and end dates (month, day, and year) of employment, the number of hours worked per week, and the location of employment in your resume. Qualification claims will be subject to verification. Basic Qualifications: In order to meet basic qualifications for GS-2210 positions, individuals must have IT-related experience demonstrating each of the competencies defined below: Attention to Detail: Is thorough when performing work and conscientious about attending to detail. Customer Service: Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication: Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving: Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Specialized Experience: In addition to demonstrating the basic qualifications listed above, applicants must have at least one year of specialized experience equivalent to the FP-3 or GS-13 grade level in the Federal service defined as experience meeting all the following: Networks, operating system, application -layer, and cloud security expertise. Hunt operations for malicious actors. Vulnerability scanners, firewalls, routers and other security tools. Advanced experience working in a cyber incident response team. Monitoring networks and systems using security information management/security event management tools to detect cyber threats and vulnerabilities; conducting security scans and tests to identify weaknesses and validate security controls (Crowdstrike, Splunk, Qualys, Tenable). Configuring firewalls, intrusion detection/prevention systems, antivirus software and other security tools. Responding to cyber incidents and breaches and conducting forensic analysis to investigate security events. Providing cybersecurity guidance, training and awareness programs to help users identify and report potential threats. Desired Certifications: One or more of the following certifications are desired for this position: CEH CISSP (or Associate) GCIH CSIH GCFA GCFE GNFA CFCE OSCP CCIE Applicants who do not hold these certifications must be willing to obtain them within twelve months of hire. Your resume must clearly demonstrate experience related to the qualification requirements for this position. Please note: Past experience that satisfies the Specialized Experience MUST be well documented within your resume. Failure to provide this information in your resume with corresponding start and end dates (month, day, and year) of employment, the number of hours worked per week, and location of employment may result in disqualification from further consideration. Specialized Experience may have been gained in the public sector, private sector, or through volunteer work done with National Service programs (e.g., Peace Corps, AmeriCorps) or other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). One year of experience refers to full-time work; part-time work is considered on a prorated basis. Additional information on qualification requirements is outlined in the OPM Qualifications Standards Handbook of General Schedule Positions. It is available for your review on the OPM web site. Peace Corps employees are employed using the Foreign Personnel (FP) pay scale. The FP pay plan does not follow the same structure as the GS pay plan. In the FP pay plan, as the grade-level numbers decrease the level/pay for the position increases. The FP-09 is the lowest entry-level grade and the FP-01 is the highest senior-level grade.

Education

There is no education substitution at this grade level.

Contacts

• Address Office of the Chief Information Officer 1275 First St. NE Washington, DC 20526 US
• Name: Peace Corps Jobs
• Email: [email protected]