Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information. The primary purpose of this position is to carry out unique and, as appropriate, one-of-a-kind computer forensic analyses; write concise, comprehensive computer-forensic-analysis reports; evaluate and use computer-forensic-analysis techniques and procedures; and document computer-forensic-analysis procedures.

Duties

Conducts substantive forensics analyses of computers and digital media to develop evidence in the specialty area of computer forensics. Conducts substantive analysis of malicious files and artifacts generated by malicious code. Conducts analysis ranging from the tracking of surface-level artifacts to exhaustive functional reversing of malicious samples. Incumbent performs the full range of supervisory functions defined for such positions in Office of Personnel Management (OPM) guidance.

Requirements

• U.S. Citizenship Required
• Males must be registered for Selective Service, see www.sss.gov
• If authorized, PCS will be paid IAW JTR and AF Regulations. If receiving an authorized PCS, you may be subject to completing/signing a CONUS agreement. More information on PCS requirements, may be found at: https://afciviliancareers.com/regulatory/
• This position is subject to provisions of the DoD Priority Placement Program
• Disclosure of Political Appointments
• Advance in hire may be authorized if there is demonstrable proof provided on your resume
• Leave accrual may be authorized upon request
• The employee must obtain and maintain a Top Secret clearance. Employee may be required to successfully complete a counterintelligence scope polygraph examination.
• This position requires the employee to occasionally travel away from the normal duty station.
• The employee must be willing and able to travel on military and commercial aircraft.
• The employee may be required to work overtime.
• The employee must be able to lift and carry 40 lbs.
• Centrally Managed by the Cyberspace and Information Technology CTF, DNRP is authorized.
• Drug Test requirement was modified to comply with AFI 44-107 Air Force Civilian Drug Demand Reduction Program, 7 April 2010.
• This position is designated as a Testing Designated Position (TDP) under the Air Force Civilian Drug Testing Program.
• (cont'd)...Illegal drug use by employees in sensitive positions present a clear threat to the mission of the Air Force, national security, and public safety.
• (cont'd).. It is required that you (a) refrain from the use of illegal drugs and (b) if requested, submit to urinalysis testing.
• Information Assurance Certification is a condition of employment. This position includes information assurance (IA) work as a paramount duty requirement.
• Per DoD 8570.01-M, the incumbent of this position must achieve the appropriate IA certification within six months of assignment of these duties.
• A waiver of this six month requirement may be granted per DoD 8570.01-M, C3.2.4.2 or C3.2.4.3. Failure to receive the proper IA certification may result in removal from this position

Qualifications

CONDITIONS OF EMPLOYMENT CONTINUED: This position requires the employee to drive a motor vehicle. An appropriate, valid driver's license is required for the position. The employee may be recalled to duty. In order to qualify, you must meet the requirements described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, Information Technology (IT) Management Series, GS-2210 (Alternate A). https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/??? Experience: Must have IT-related experience demonstrating each of the four competencies listed below: Attention to Detail, Customer Service, Oral Communication, and Problem Solving AND one year of specialized experience at the next lower grade GS-13 (or equivalent in other pay systems) which includes utilizing a full range of IT security principles, concepts, practices, products and services (including systems software, database software, immediate access storage technology), and methods for evaluating risk and vulnerability, implementing mitigating improvement, and disseminating IT security tools and procedures. Application of IT INFOSEC security requirements for certification and accreditation, network operations and protocols, systems testing and evaluation, and performance management methods sufficient to plan and conduct security accreditation reviews for installed systems or networks and assess and advise on new or revised security measures and countermeasures based on the results of accreditation reviews. FEDERAL TIME-IN-GRADE (TIG) REQUIREMENT FOR GENERAL SCHEDULE (GS) POSITIONS: Merit promotion applicants must meet applicable time-in-grade requirements to be considered eligible. One year at the GS-13 level is required to meet the time-in-grade requirements for the GS-14 level. TIG applies if you are in a current GS position or held a GS position within the previous 52 weeks. NOTE: Applicants applying as VEOA candidates who are current GS civil service employees or are prior GS civil service employees within the past 52 weeks must also meet time-in-grade requirements. KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: Knowledge and experience with computer operating systems is required. The employee must have direct knowledge and experience with PC operating systems (Windows 95/98/NT). Knowledge of other older operating systems is desired. Knowledge of networking standards (e.g., TCP/IP, Novel, Windows NT and UNIX Networking) and operating systems is desired. Previous experience as a system administrator is desired. Knowledge of computer hardware to the board level is required. The employee should be familiar enough with personal computer hardware that they could be handed a box of parts and put one together. Knowledge and experience in the development of computer programs is desired. The ability to write programs in "C," "C++," UNIX Shell Scripting Languages, or Pearl is desired. Ability to communicate very well orally and in writing including providing accurate and timely technical reports is required. Significant experience and/or education in digital forensic analysis, malware analysis, intrusion analysis, or the equivalent is required. This experience includes an understanding of the chain of custody, working at a crime scene, and testifying in court. Knowledge of a full range of IT security principles, concepts, practices, products and services (including systems software, database software, immediate access storage technology), and methods for evaluating risk and vulnerability, implementing mitigating improvement, and disseminating IT security tools and procedures. Knowledge of IT INFOSEC security requirements for certification and accreditation, network operations and protocols, systems testing and evaluation, and performance management methods sufficient to plan and conduct security accreditation reviews for installed systems or networks and assess and advise on new or revised security measures and countermeasures based on the results of accreditation reviews. PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week. VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

This job does not have an education qualification requirement.

Contacts

• Address DoD Cyber Crime Center - DC3 - Pentagon 1720 Air Force Pentagon Washington, DC 20330 US
• Name: Total Force Service Center
• Phone: 1-800-525-0102
• Email: DO.NOT.EMAIL@CALL.ONLY