INFORMATION TECHNOLOGY SPECIALIST (INFOSEC)

Full Job Description

This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer.

Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may not be actual vacancies filled from this flyer.

Notice of Result letters will not be sent to applicants who respond to this flyer.

Your resume must also demonstrate at least one year of specialized experience at or equivalent to the GS-12 grade level or pay band in the Federal service or equivalent experience in the private or public sector.

Specialized experience must demonstrate the following: Experience with security, systems analysis, applications software, operating systems, networking services, and data management.

Experience with Risk Management Framework requirements.

Mastery experience of advanced IT principles, concepts, methods, standards, and practices sufficient to develop and interpret policies, procedures, and strategies governing the planning and delivery of IT security.

Experience utilizing, or working with, a contractor support team to achieve goals and objectives.

Experience interpreting guidelines, preparing and presenting reports, communicating complex technical requirements, and communicating systems development and implementation issues to decision-makers and other stakeholders.

Experience with systems security principles and methods, sufficient to endure compliance with appropriate procedures such as, physical access controls, security measures, classification and safeguarding of controlled information rules.

Examples of Qualifying Experience: Attention to Detail - Identify potential critical cyber-security problems, trends and weaknesses Customer Service - Establishment of collaborative efforts amongst customers, Program Managers and other stakeholders to plan, coordinate, or provide advice on work efforts Oral Communication - Oral communication skills sufficient to interpret guidelines, prepare and present reports, communicate complex technical requirements, and communicate systems development and implementation issues to decision makers and stakeholders.

Problem Solving - Identifying potential critical cyber-security problems, trends, and weaknesses and recommend specific policy changes to reduce IT security risks.

Additional qualification information can be found from the following Office of Personnel Management website: IOR: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/ Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., professional, philanthropic, religious, spiritual, community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. Major Duties:

• You will interpret, create, disseminate, and enforce cybersecurity policy.
• You will manage the Independent Verification and Validation/Compliance Assessments.
• You will implement and manage the Information Security Systems Management Program.
• You will conduct risk and vulnerability assessments of planned and installed information systems.
• You will verify that application software/networks/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations.