DFC ranked a Best Places to Work in 2022. This position is part of the U.S. International Development Finance Corporation (DFC), Office of Information Technology. As an IT Cybersecurity Specialist you will be responsible for leading the Authorization and Assessment processes in accordance with Risk Management Framework (RMF) and network compliance, including protecting information systems within DFC and ensuring IT systems, applications and network devices are hardened against threats.

Duties

As an IT Cybersecurity Specialist, you will: Manage the Security Assessment and Authorization (SA&A) process, ensuring compliance with federal cybersecurity standards. Draft or coordinate the drafting of the artifacts for the Authorization and Assessment process such as the systems security plan, the security assessment report, and the plan of action and milestones. Maintain responsibility for the day-to-day security operations of multiple IT systems, including physical and environmental protection, personnel security, and incident handling. Manage cybersecurity awareness and training programs for agency staff to ensure knowledge of and compliance with security policies. Oversee incident response planning and coordinate the agency's response to cybersecurity incidents, including post-event analyses. Provide technical oversight for cybersecurity Risk Management Framework (RMF) requirements and expertly implements the development of long-range plans. Evaluate new security technologies and processes for potential adoption to enhance the agency's security posture. Coordinate relevant activities with Cybersecurity organizations such as the Department of Homeland Security, Cybersecurity & Infrastructure Security Agency (DHS-CISA) and the Office of Management and Budget (OMB) policy and initiatives. Ensure assignments are aligned with the Office of Information Technology Strategic Plan, established goals, objectives, and performance measures associated that enhance the security and privacy of systems and data by planning, designing, and carrying out technical studies or projects. Support working groups and tiger teams that are established to examine security operations and technical issues involving the computer systems and networks. Please Note: This is not a Bargaining unit position.

Requirements

• Must be a U.S. Citizen or National
• Males born after 12-31-59 must be registered for Selective Service
• Must submit resume and supporting documents (See How To Apply)
• Suitability for Federal employment, as determined by a background investigation
• May be required to successfully complete a probationary period
• Within 30 days of your start date, you will be required to file a Confidential Financial Disclosure Report (OGE Form 450)
• Must be able to obtain and maintain a secret/top-secret security clearance

Qualifications

Applicants must meet all eligibility and qualification requirements no later than the closing date of this announcement. BASIC REQUIREMENT: For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below: 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND ADDITIONAL REQUIREMENT In addition to the Basic Requirement listed above, you must meet the required specialized experience listed below. One year of specialized experience equivalent to the GS-13 grade level in the Federal service that demonstrates your experience in all of the following: 1) Leading and executing the Risk Management Framework (RMF) process to assess and authorize information systems, from categorization through monitoring. 2) Demonstrated experience with the Assessment & Authorization (A&A) process, including the preparation, review, and maintenance of security accreditation packages. This includes knowledge in developing and managing System Security Plans (SSP), conducting security control assessments, and effectively documenting findings and recommendations in Security Assessment Reports (SAR). 3) Developing, implementing, and managing Plans of Action & Milestones (POA&Ms) to address identified system vulnerabilities and ensure timely remediation. 4) Demonstrated experience with a wide range of cybersecurity tools and technologies for network and system analysis, including but not limited to intrusion detection/prevention systems, vulnerability assessment tools, security information and event management (SIEM) systems, and endpoint security solutions. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. This announcement may be used to fill similar positions, if additional vacancies occur.

Education

This job does not have an education qualification requirement.

Contacts

• Address International Development Finance Corporation 1100 New York Ave. NW Washington, DC 20527 US
• Name: Laura Whitlock
• Email: [email protected]