This position is located in the Cybersecurity Division and manages the cybersecurity engineering program. The purpose of the position is to participate in administering a program that integrates of cybersecurity throughout the IT solution development lifecycle (SDLC); and provides full lifecycle vulnerability assessment for all RD IT systems. Direct Hire Authority: These positions are being filled through the Office of Personnel Management's (OPM) Direct-Hire Authority for this occupation.

Duties

Represents the security operations program in dealings with other organizations, top management, and others and supports the Branch Chief in performing the duties of the Information Compliance Branch within the RD Cybersecurity Division. Responsible for the documentation, management, facilitation and coordination of activities that support System authorization and accreditation. Collaborates with USDA Cybersecurity and Privacy Operations Center (CPOC) and USDA Privacy Council to standardize the use, disclosure, and management of privacy information within IT systems and processes. Performs activities of the Authorization and Assessments process based on NIST frameworks, continuous monitoring of security controls and the audit and verification requirements. Assists the RD Technology Office Capital Planning and Investment Control (CPIC) team with security controls and associated costs in the CPIC Process, including the cost of remediating identified residual risks. Serves as a member of a team of IT specialists and contractors who work together to carry out security operations program responsibilities which are at/equivalent to grade GS-13. Applies experience information security (INFOSEC) knowledge and comprehension of federal government IT security guidelines. Translates government mandates and regulations into requirements for the IT security operations program in a manner as to clearly communicate these to technical and non-technical audience/customers. Develops and maintains procedures that support and align with organizational security initiatives and regulatory compliance. Ensures the consistent application of information security assurance policies, principles, and practices in the delivery of all IT services.

Requirements

• You must be a US Citizen or US National
• Males born after 12/31/1959 must be Selective Service registered or exempt
• Subject to satisfactory adjudication of background investigation and/or fingerprint check
• Successful completion of one-year probationary period, unless previously served.
• Direct Deposit - Per Public Law 104-134 all Federal employees are required to have federal payments made by direct deposit to their financial institution
• Successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit E-Verify at https://www.e-verify.gov/

Qualifications

Applicants must meet all qualifications and eligibility requirements by the closing date of the announcement including specialized experience and/or education, as defined below. Basic Requirement: 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. 3. Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendation. In addition to meeting the basic requirement, qualified applicants must possess: For the GS-13 level: Applicants must possess one (1) year of specialized experience equivalent to at least the GS-12 level; or its non-Federal equivalent that demonstrates: In-depth knowledge of federal and industry IT Security guidelines. Experience with the process of integrating Cybersecurity throughout the IT system development lifecycle (SDLC); providing risk and vulnerability assessment of the full lifecycle of IT systems and creating and maintaining contingency plans for disaster recovery and continuity of operations. Performing systems security evaluations, investigations, audits, and reviews. Experience assessing controls and have reduced risk to the extent possible; and authorize acceptance of the risk to put the system on the network. Ability to assess the effectiveness and efficiency of the IT security compliance program, in addition to maintaining security compliance metrics. Identifying, assessing, prioritizing, and monitoring the progress of corrective efforts for security weaknesses/deficiencies/vulnerabilities found in program and systems. Knowledge of project management techniques to perform cost/benefit analysis, and direct the development of overall plans. Experience with briefing senior management officials on complex issues; communicating complex technical requirements to technical and non-technical personnel. Condition of employment: Selected applicant must obtain Certified Governance, Risk and Compliance (CGRC) status within 18 months of on duty date. There is no substitution of education for experience at the GS-13 level. NOTE: To be considered for this position, you must meet all qualification and eligibility requirements for the GS-2210 series set forth in the Office of Personnel Management (OPM) Qualification Standards by the closing date of the announcement. A copy is available at: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

Qualifications are based upon meeting specialized experience only. Education cannot be used to qualify for this position.

Contacts

• Address Rural Development 1400 Independence Ave SW Washington, DC 20250 US
• Name: Jessica Redman
• Phone: 302-857-3591
• Email: [email protected]