Job opening: Information Technology Specialist (Enterprise Architecture) (Direct Hire)
Salary: $122 198 - 191 900 per year
Published at: Dec 10 2024
Employment Type: Full-time
Serves as Deputy Engineer for NASA-wide Identity, Credential and Access Management (ICAM) services and infrastructure integration for business information systems, mission information systems and initiatives that require ICAM services. Provides strategic ICAM engineering leadership, with oversight of contract deliverables for dedicated ICAM engineering support and ensure enhancements and new services align with ICAM roadmap, risks, and budget.
Duties
Collaborate with Identity, Credential and Access Management (ICAM) Chief and team, Cyber Security and Policy Division, Information System Security Officers, Security Operations Center, Service Lines, Agency Level Offices, and Mission organizations.
Provide strategic direction and subject matter expertise to the engineering team on ICAM security infrastructure adhering to governance, designing and integrating agency authentication/authorization infrastructure into NASA business/mission systems.
Identify and follow governance to develop new security architecture standards, including for secure cloud service adoption, and ensure these standards/frameworks are aligned with overall business strategy. Work with key stakeholders to gain approval.
Determine and review ICAM application business architecture to engineer software and hardware solutions that will meet NASA, Federal Information Security Management Act (FISMA), and Federal requirements.
Maintain a keen understanding of industry trends, application and system security threats, and associated patterns and techniques used to mitigate associate threats across one or more enterprise systems.
Coordinate with Workplace and Collaboration Services’ (WCS) leadership to ensure service enhancements and new services align with ICAM roadmap, risks, and budget. Provide contractor oversight to include management of their deliverables.
Provide high skill knowledge for a variety of complex assignments of enterprise-wide scope, including, but not limited to, advice on project costs, design concepts, or design changes, including representation on requisite governance boards.
Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided. Translate proposed capabilities into technical requirements.
Foster a culture of engagement, diversity, inclusiveness, excellence and innovation. Champion NASA's commitment to Diversity, Equity, Inclusion and Accessibility to create an environment that promotes a commitment to safety, integrity, and teamwork.
Requirements
- This position is open to U.S. citizens, nationals or those who owe allegiance to the U.S.
- Position subject to pre-employment background security investigation.
- You must meet qualifications requirements by the closing date of this announcement.
- This position may require a one-year probationary period.
- Selected applicant(s) must be assigned to a duty location listed on the announcement.
Qualifications
Specialized experience is experience that has equipped you with the particular ability, skill, and knowledge to successfully perform the duties of this position and is typically in or related to this line of work.
To qualify for GS-14, you must have one year of directly related specialized experience equivalent to the GS-13 level.
Developing and communicating authoritative enterprise security architecture that addresses risk and aligns an organization's mission and business outcomes;
Developing, implementing, and monitoring Zero Trust authentication and authorization architecture which leverages industry recognized risk management frameworks (e.g., NIST Cybersecurity Framework [800-53, 800-63, 800-116], ISO 31000, COBIT 5, Factor Analysis of Information Risk, or Threat Assessment and Remediation Analysis) to ensure required maturity of each deployed Identity, Credential, and Access Management (ICAM) solution; and
Working with mission/business partners to provide advice and guidance on authoritative enterprise security paradigms, including establishing a hybrid cloud security architecture with Zero Trust capabilities across multiple platforms and tools such as Microsoft O365 and Azure, Amazon Web Services, Google, Microsoft Active Directory, Public Key Infrastructure, CA Site minder, conditional access rules, and Microsoft Purview information protection.
AND
You MUST also have IT-related experience demonstrating each of the four competencies listed below:
Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
Experience in the areas of supporting Public Key Infrastructure, Microsoft Active Directory and CA Site minder infrastructure using ICAM architecture; coordinating team in delivering authentication and authorization architecture; supporting Federal ICAM requirements in documenting NIST 800-53, 800-63, 800-116 or the Federal Identity, Credentialing and Access Management Trust Framework is preferred but not required.
Your resume must include a clear and detailed narrative description, in your own words, of how you meet the required specialized experience. Experience statements copied from a position description, vacancy announcement or other reference material constitutes plagiarism and may result in disqualification and losing consideration for the job. NASA prohibits the use of artificial intelligence (AI) or AI-assisted tool in drafting application and assessment responses. Please visit https://www.nasa.gov/careers/how-to-apply/#Artificial-Intelligence to review NASA's guidance on the use of AI tools during the application process.
Education
This job does not have an education qualification requirement.
Contacts
- Address NASA Headquarters
300 E St SW
Washington, DC 20546
US
- Name: NASA Shared Services Contact Center
- Phone: 1-877-677-2123
- Email: [email protected]