View common definitions of terms found in this announcement. This announcement is issued under the Direct Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Selectee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period.

Duties

The primary purpose of this position is to serve as a Cybersecurity Advisor (CSA) assigned within a Region and responsible for a designated District. The Cybersecurity Advisor (CSA) conducts cyber protective visits and provides strategic cyber risk assessments to prepare, protect, and collaborate with owners and operators of critical cyber infrastructure assets. Typical work assignments include: Build regional and local cybersecurity coalitions to promote information sharing on best practices and lessons learned and promote the resilience of the cyber infrastructure throughout the U.S. and its territories. Develop and promote collaborative relationships with critical infrastructure owners and operators as well as State, Local, Tribal, and Territorial (SLTT) government to reduce risk and threats to infrastructure, enterprise, communications, and control systems. Coordinate cyber incidents for reporting and supports other cybersecurity assessment programs associated with critical infrastructure. Participate as a presenter in regional local conferences, summits, seminars, and symposia relating to cybersecurity initiatives. Perform security reviews, identify gaps in security architecture, and develop security risk management plans. Collaborate with critical infrastructure owners, operators, IT security experts, and managers to support organizational cybersecurity objectives. Responsible for enhanced coordination efforts with CISA stakeholders, including communication with other Federal departments and agencies, DHS, CISA divisions, leadership of SLTT, as well as external industry leaders for situational awareness and response on cyber incidents and events. Participate in cybersecurity partnerships with and across critical infrastructure owners and operators and state, local, tribal and territorial government levels. Advise senior management on regional trends and analyses. Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.

Requirements

Qualifications

Do NOT copy and paste the duties, specialized experience, or occupational assessment questionnaire from this announcement into your resume as that will not be considered a demonstration of your qualifications for this position. To be considered minimally qualified for this position, you must demonstrate that you have the required experience for the respective grade level in which you are applying: EXPERIENCE: Experience must be Information Technology (IT)-related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. You must have IT-related experience demonstrating each of the four competencies listed below: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND SPECIALIZED EXPERIENCE: In addition to meeting the qualification requirement listed above, you must have at least one year of specialized experience at the next lower GS-grade level (or equivalent). Specialized experience is experience that has equipped you with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. GS-13 You qualify for the GS-13 grade level if you have at least one (1) year of specialized experience at the GS-12 grade level (or equivalent) performing the following duties: Providing advice and guidance to resolve, implement, or manage cybersecurity issues; Conducting systems security evaluations, audits, and reviews; AND Developing cybersecurity policies and guidelines to ensure compliance with directives. GS-14 You qualify for the GS-14 grade level if you have at least one (1) year of specialized experience at the GS-13 grade level (or equivalent) performing the following duties: Providing authoritative technical guidance and oversight related to information systems security to include cybersecurity frameworks, controls and auditing requirements; Monitoring compliance of security programs designed to minimize system vulnerabilities by adhering to information systems security, regulations, protocols or security certification and accreditation requirements; AND Serving as a senior representative for complex, high-visibility information technology projects. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. All qualification requirements must be met by the closing date of this announcement.

Education

No Educational Substitution: There is no substitution of education for experience for this position. You must meet the qualifications listed in the "Requirements" section of this announcement.

Contacts

• Address Cybersecurity and Infrastructure Security Agency 1110 N Glebe Rd Arlington, VA 22201 US
• Name: Allison Brooks
• Phone: 202-604-6710
• Email: [email protected]