This position is part of the Defense Threat Reduction Agency.

Duties

This position is being filled under the DoD Modified Direct Hire Authority, per 5 U.S.C. § 9905, 10/15/2021 As an IT SPECIALIST (NETWORK/INFOSEC) at the GS-2210-13/14 some of your typical work assignments may include: Serves as a Senior Red Cyber Operator (SRCO) performing on-net cyber assessments including network reconnaissance, vulnerability analysis, and exploitation of computer components and architectures of systems and networks to identify exploitable conditions within a network. Cyber assessments are conducted on behalf of senior DoD customers in support of high priority missions. Expertly utilizes offensive computer network expertise to emulate a potential adversary's cyber reconnaissance and exploitation techniques and attack capabilities against a targeted mission, system, network, component, or capability on behalf of senior DoD stakeholders. Executes computer network operations against official U.S. government organizations worldwide for the purpose of strengthening information system security, identifying potential intrusions and vulnerabilities, and recommending mitigation strategies and techniques to secure networks, and assist customer efforts to identify, analyze and develop defensive measures to thwart advanced, state-sponsored intrusions of DoD and Federal Government networks. Mentors Red Cyber Operators in doing the same. This is a technical, hands-on role requiring the incumbent to plan and execute cyber red team operations, serve as a cyber red team operations lead for assigned operations, and provide cyber red team technical subject matter expertise. The incumbent serves as the cyber red team operations lead for assigned operations as well as a hands on technical operator during operations. Incumbent serves as the lead subject matter expert on cyber red team vulnerability assessments. Incumbent maintains operational, technical, and authoritative situational awareness during threat emulation-based exploitation and operations. Incumbent helps to develop assessment specific tools and exploits to be used in red cyber activities on U.S. mission networks, while ensuring the legality of all tools and activities are aligned with NSA and USCYBERCOM policies, procedures, and requirements. Incumbent is responsible for the production and presentation of formal and informal reports, briefings, and perspectives on adversarial behavior and attacks against target systems, technologies, operations, and missions provided to customers such as the OSD and COCOMs at the GO/FO/SES level. Writes high-level technical reports and develop briefings documenting findings, concerns, trends, and implications for senior DoD officials and customers enabling personnel to consider the most significant technical and high level factors when committing DoD resources to mitigate identified vulnerabilities and threats to critical national assets, networks, and systems. Additional duties may include: serving as a senior instructor for red cyber operators; providing ad hoc oversight of remote red cyber assessments as needed; creating new and innovative tools for DCART operators to use in cyber assessment operations of U.S. Government and DoD critical networks; evaluating existing GOTS or COTS tools for appropriateness and safety of use on red cyber assessments. NOTE: The incumbent is responsible for adhering to DCART policies in the DCART Handbook, to include the DCART Operator Certification Program requirements and timelines. At minimum, a GS-13, the incumbent must obtain and maintain Apprentice Operator certification. At minimum, a GS-14 must obtain and maintain Journeyman Operator certification.

Requirements

• Must be a U.S. citizen
• Males born after 12-31-59 must be registered for Selective Service http://www.sss.gov
• Resume and supporting documents (See How To Apply)
• Suitable for Federal employment, determined by a background investigation
• May be required to successfully complete a probationary period
• Work Schedule: Fulltime
• Overtime: 25%
• Tour of Duty: Other
• Recruitment Incentives: Recruitment, Retention, and Repayment (3R) Authorized; See link for more information: https://www.dtra.mil/Careers-Opportunities/DTRA-Opportunities/
• Fair Labor Standards Act (FLSA): Exempt
• Financial Disclosure: Not Required
• Telework Eligibility: This position is telework eligible on a situational basis
• This is a drug testing designated position. Subject to pre-employment drug testing and periodic drug testing thereafter
• Must be able to obtain/maintain a TS/SCI security clearance
• Must comply with Cyber Red Team Operator Certification Program training requirements and timelines
• Must obtain an Information Assurance Technician (IAT) III certification as identified in DoD 8570.01 within 6 months of being employed
• This position is Emergency-Essential (EE), therefore, the position is designated "key" which requires the incumbent, or designated alternate, to be screened from military recall status

Qualifications

You may qualify at the GS-13, if you fulfill the following qualifications: One year of specialized experience equivalent to the GS-12 grade level in the Federal service: Extensive experience (3 years minimum) in providing leadership and cyber security/testing/operations and Computer Network Operations (CNO) / Computer Network Exploitation (CNE) /Computer Network Attack (CNA) /Computer Network Defense support in Mission Assurance, Red Team Vulnerability Assessments, Pentest, and Threat or Adversary Emulation; Advanced knowledge of offensive cyber concepts and methods such as passive and active reconnaissance, infiltration, internal network pivoting and exploration, and data exfiltration in order to emulate adversarial actions and attacks and expose vulnerabilities when conducting red cyber assessments; Advanced knowledge of conducting both penetration testing and deploying cyber-attack vectors in simulated network environments in order to conduct assessment-specific activities to identify and exploit vulnerabilities as well as enhancing technical training and development material; Knowledge in exploit development including the modification of COTS and/or government developed tools for application in on-net assessments of DoD and non-DoD networks, and; Experience in creating and developing unique tools required for specific network assessment operations in order to emulate adversaries and conduct thorough, network-specific threat assessments. Experience must be clearly demonstrated in your resume. You may qualify at the GS-14, if you fulfill the following qualifications: One year of specialized experience equivalent to the GS-13 grade level in the Federal service: Expert experience (5 years minimum) in providing leadership and cyber security/testing/operations and Computer Network Operations/Exploitation/Attack/Defense support in Mission Assurance, Red Team Vulnerability Assessments, Pentest, and Threat or Adversary Emulation; Excellent written and oral communication skills and capable of performing simultaneous actions. Experience briefing senior customers and communicating significant technical takeaways to non-technical audiences; Mastery of Computer Network Defense including actions taken via computer networks to protect, monitor, analyze, detect, and respond to network attacks, intrusions, disruptions, or other unauthorized actions that would compromise or cripple defense information systems and networks; Expert knowledge of conducting both penetration testing and deploying cyber-attack vectors in simulated network environments in order to conduct assessment-specific activities to identify and exploit vulnerabilities as well as enhancing technical training and development material; Expert knowledge in exploit development including the modification of COTS and/or government developed tools for application in on-net assessments of DoD and non-DoD networks, and; Experience in creating and developing unique tools required for specific network assessment operations in order to emulate adversaries and conduct thorough, network-specific threat assessments. Experience must be clearly demonstrated in your resume. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

Substitution of education may not be used in lieu of specialized experience for this grade level.

Contacts

• Address Defense Threat Reduction Agency 8725 JOHN J KINGMAN ROAD MSC 6201 FT BELVOIR, VA 22060-6201 US
• Name: DTRA Servicing Team
• Phone: 614-692-0259
• Email: [email protected]