Information Technology Specialist (Information Security)

Full Job Description

About the Position: This position is located at Peachtree City, Georgia with the Department of War Education Activity (DoWEA) Information Technology Division's Cyber Security, Policy & Governance Branch.

The Department of Defense Education Activity (DoDEA) is transitioning to the Department of War Education Activity (DoWEA). Who May Apply: U.S.

Citizens In order to qualify, you must meet the experience requirements described below.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social).

You will receive credit for all qualifying experience, including volunteer experience.

Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application.

Specialized Experience: One year of specialized experience which includes: Applying the DoW Risk Management Framework (RMF) to information systems, including security control implementation, assessment, authorization, and continuous monitoring.

Managing or supporting cybersecurity compliance activities for DoW information systems, such as vulnerability management, IAVM compliance, ACAS scanning, POA&M development, or system security documentation.

Analyzing and assessing cybersecurity risks to information systems or networks and providing risk-based recommendations to system owners, leadership, or authorizing officials.

Implementing DoW or Federal cybersecurity policies and standards, such as DoDI 8500-series, DoDI 8510.01 (RMF), NIST SP 800-series, or equivalent organizational cybersecurity policies.

This definition of specialized experience is typical of work performed at the next lower grade/level position in the federal service (GS-12) The specialized experience must include, or be supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined: 1) Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

2) Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

3) Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

4) Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

You will be evaluated on the basis of your level of competency in the following areas: This is a Direct Hire Solicitation for Cyber Workforce Positions.

Your resume will not be reviewed for qualifications until a selection is made. Major Duties:

• Identify and support Enterprise Information Assurance (IA) Assessment and Authorization (AA) and security issues.
• Oversee the documentation, validation, and Assessment and Authorization processes necessary to assure that information technology systems meet the DoWEA's Information Assurance (IA) and security requirements.
• Provide technical expertise on security aspects of authorization packages for networks, systems, and software.
• Serve as a principal advisor on all matters, technical and otherwise, involving the security of their assigned information systems.
• Serve as an engineer and subject matter expert for the security of enterprise networks, systems, and applications.
• Apply knowledge of Information Technology (IT) architectures and infrastructures, including policies and processes for ensuring the security and integrity of data networks.
• Manage and coordinate guidance on hardware/software required to bring systems/networks into regulatory compliance.
• Manage the strategic, personnel, infrastructure, policy enforcement, and emergency planning implications of information security.