Information Assurance Analyst/Specialist

Full Job Description

See below for important information regarding this job. Position will be filled at any of the locations listed below.

Site specific salary information as follows: Battle Creek, MI: $106,437 - $138,370 Columbus, OH: $111,065- $144,386 Dayton, OH: $110,401- $143,523 Fort Belvoir, VA: $121,785- $158,322 New Cumberland, PA: $121,785- $158,322 Ogden, UT: $106,437 - $138,370 Philadelphia, PA: $117,284- $152,471 Richmond, VA: $111,183- $144,540 To qualify for a Program Analyst, your resume and supporting documentation must support: A.

Specialized Experience: One year of specialized experience that equipped you with the particular competencies to successfully perform the duties of the position and is directly in or related to this position.

To qualify at the GS-12 level, applicants must possess one year of specialized experience equivalent to the GS-11 level or equivalent under other pay systems in the Federal service, military, or private sector.

Applicants must meet eligibility requirements including time-in-grade (General Schedule (GS) positions only), time-after-competitive appointment, minimum qualifications, and any other regulatory requirements by the cut-off/closing date of the announcement.

Creditable specialized experience includes: Gathers information, identifies and analyzes issues and develops recommendations, relating to the administration of network rights and access to automated information systems.

Uses protective and preventive measures and techniques to safeguard access accounts. Prepares detailed analysis and evaluations in support of IT systems and /accounts in relation to access control.

Reviews draft audit findings, recommendations, and observations to align with audit requirements. Experience in support of design and implementation of security solutions for information systems. B.

Education: Applicants may not qualify for this position based on education in lieu of specialized experience.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Major Duties:

• Responsible for administering the DLA Application Security program by ensuring confidentiality, integrity and nonrepudiation of sensitive and classified information systems.
• Supports the management of the Enterprise access control policies, ensuring DLAs access controls comply with Office of Management and Budget (OMB) Circular A-123(OMB A123), Internal Controls Over Financial Reporting (ICOFR) guidance.
• Supports the management of the Enterprise access control policies, ensuring DLAs access controls comply with Federal Information Systems Controls Audit Manual (FISCAM), Complementary User Entity Controls (CUECs), Federal Acquisition Regulation (FAR).
• Supports the management of the Enterprise access control policies, ensuring DLAs access controls comply with National Institute of Standards and Technology (NIST), Security Technical Implementation Guide (STIG), and Headquarters DLA guidance.
• Interprets and analyzes Financial Improvement and Audit Readiness (FIAR) Methodology, OMB A123, FISCAM, NIST, Government Accountability Office (GAO) Greenbook (Standards for Internal Controls within the Federal Government).
• Interprets and analyzes American Institute of Certified Public Accountants (AICPA), ICOFR, and auditor reports to determine the appropriate DLA Access Control Enterprise Office of Primary Responsibility (eOPR) actions.
• Supports DLA's Independent Public Accountant (IPA) audit examinations of DLA as a Service Organization.
• Researches and recommends necessary revisions and modifications to the DLA Enterprise Access Control business processes, and policy changes.
• Leads a group of Information Technology (IT) specialists and contractors engaged in providing the planning, development, implementation, execution, and management of enterprise access control activities to support the DLA audit mission.
• Manage the creation and maintenance for assigned policies and procedures applicable to Internal Use Software (IUS), Identity Credentials, and Access Management (ICAM), and Identify and Access Management requirements.
• Estimates and reports to the team and leaders on progress in meeting established milestones and deadlines for completion of assignments, projects, and tasks.