Job opening: Information Technology Cyber Security Specialist (INFOSEC)
Salary: $117 962 - 181 216 per year
Published at: Dec 23 2024
Employment Type: Full-time
Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public transit systems, thus protecting America's transportation infrastructure and ensuring freedom of movement for people and commerce.
Duties
This Information Technology Cyber Security Specialist (INFOSEC) position is located Enterprise Support, Information Technology, Technology Solutions Division, IT Security Branch, Transportation Security Administration, Department of Homeland Security (DHS). Duties include but are not limited to:
Function as Information Systems Security Officer (ISSO), assists in the implementation of security programs designed to anticipate, assess, and minimize system vulnerabilities, e.g., intrusion detection or access authentication programs; coordinates the implementation of security programs across platforms; and establishes vulnerability reporting criteria.
Serves as a contributing specialist, providing guidance and ensuring awareness of the Security Authorization and Ongoing Authorization processes for Transportation Security Administration (TSA) IT systems and providing guidance and awareness of the Department of Homeland Security (DHS) Information Security Performance Plan, which ensures compliance with the Federal Information Security Management Act (FISMA) of 2002 and the Federal Information Security Modernization Act (FISMA 2014).
Performs risk analyses independent of operating platforms. Ensures procedures fully support NIST Special Publication 800- 37 and properly applied to the agency IT systems enterprise, particularly steps 4, 5, and 6 of the Risk Management Framework (RMF), and the guidelines in Office of Management and Budget (OMB) M-14-03 (Enhancing the Security of Federal Information and Information Systems) for managing information security risk on a continuous basis.
Develops standard operating procedures and user guides that provide detailed instructions for implementing IT systems security policies. Determines the need for new or updated IT security guidance based on policy and technology changes. Anticipates the need for changes to avert potential systems, data, or network exposure and determines the level of difficulty in gaining management acceptance of more restrictive IT security policies where required.
Note: The duties are at the full SV-2210-J performance level and the SV-2210-I is the developmental grade level leading to such performance.
The major duties described above reflect the full performance level of this position. Typically, the lower pay band (I Band) performs the same duties but will receive more guidance and training; and/or projects/work assignments may be less complex.
Qualifications
To qualify at the SV-2210-I (GS-13) grade level: Applicants must possess one full year (52 weeks) of specialized experience equivalent to the SV-2210-H (GS-12) in the Federal service. Specialized experience MUST include all the following:
Applying IT security practices and cybersecurity principles and concepts to ensure the protection of IT infrastructures; AND
Applying project management principles, methods, and practices to plan and carry out complex IT projects (e.g., establishing priorities, developing plans and schedules, resource requirements, defining milestones and deliverables, evaluating and reporting on accomplishments, provisioning equipment, etc.); AND
Experience with security scanning tools (AppScan, Tenable Nessus, BurpSuite Professional) including interpreting scan results.
To qualify at the SV-2210-J (GS-14) grade level: Applicants must possess one full year (52 weeks) of specialized experience equivalent to the SV-2210-I (GS-13) in the Federal service. Specialized experience MUST include all the following:
Planning and implementing strategies to support customer IT requirements and services; AND
Developing and implementing IT security/cybersecurity strategies to support infrastructure security; AND
Applying project management principles, methods, and practices to plan and carry out complex IT projects (e.g., establishing priorities, developing plans and schedules, resource requirements, defining milestones and deliverables, evaluating and reporting on accomplishments, provisioning equipment, etc.); AND
Experience as an Information System Security Officer (ISSO), ensuring compliance with National Institute of Standards Technology (NIST), and advising leadership on implementing Cyber security best practices; AND
Experience with security scanning tools (AppScan, Tenable Nessus, BurpSuite Professional) including interpreting scan results.
Credit for experience is given based on a 40-hour workweek. Part-time experience is credited on a part-time ratio, i.e., working 20 hours per week for two months equals one month of experience. No additional credit is given for overtime.
National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
The Office of Personnel Management (OPM) must authorize employment offers made to current or former political appointees. If you are currently, or have been within the last 5 years, a political Schedule A, Schedule C, Non-career SES or Presidential Appointee employee in the Executive Branch, you must disclose this information to the Human Resources Office.
Resumes must include the following:
Narrative description of duties with start and end dates (including the month and year) for work experience.
State the number of hours worked in a position (i.e. full-time or part-time). If part-time, state the total number of hours worked per week.
Performance level (i.e. band or grade)
Utilizing the USAJOBS Resume Builder and completing all available fields is strongly encouraged.
You must meet the qualification requirements for this position no later than the closing date of the vacancy announcement.
Contacts
- Address ES - Information Technology
6595 Springfield Center Dr
Springfield, VA 22150
US
- Name: HC ServeU Customer Care
- Email: [email protected]
Map