Fresh Listing

Posted: February 17, 2026 (2 days ago)

This job was posted recently. Fresh listings typically have less competition.

IT CYBERSECURITY SPECIALIST (INFOSEC)

Defense Finance and Accounting Service

Department of Defense

Fresh

Salary

$90,341 - $121,502

per year

Closes

March 3, 2026More DOD jobs →

GS-11 Pay Grade

Base salary range: $62,107 - $80,737

Typical requirements: 1 year specialized experience at GS-10. Ph.D. or equivalent doctoral degree, or 3 years graduate study.

Note: Actual salary includes locality pay (15-40%+ depending on location).

Job Description

Summary

This job involves managing and enforcing cybersecurity policies for IT systems in a defense finance agency, ensuring secure handling of financial data through risk assessments and guidance to teams.

It suits someone with hands-on experience in IT security who enjoys solving technical problems and helping others follow best practices.

A good fit would be a detail-oriented professional passionate about protecting government information systems.

Key Requirements

  • One year of specialized IT cybersecurity experience at GS-11 level or equivalent, including implementing and testing security requirements
  • Demonstrated competencies in attention to detail, customer service, oral communication, and problem solving
  • Experience with Risk Management Framework (RMF) policies, procedures, and changes
  • Ability to prepare security plans, conduct assessments of security controls, and develop controls for IT processes like access management
  • Familiarity with government or industry best practices, policies, and laws for cybersecurity
  • Providing guidance to IT management, staff, and customers on cybersecurity matters

Full Job Description

Defense Finance and Accounting Services (DFAS) mission is to lead the Department of War (DoW) in finance and accounting by ensuring the delivery of efficient, exceptional quality pay and financial information.

Resumes for federal government positions need more detailed work descriptions and accomplishments than a typical private sector resume.

Please be sure to clearly describe the full scope of your work experiences in your resume.

Basic Requirement: Applicants must have IT-related experience demonstrating the following competencies appropriate to, or above, the level of this position.

Your resume and work experience should clearly support your ability to meet these competencies and will be evaluated as part of the entire application process.

Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

In addition to the Basic Competency Requirements listed above, one year of specialized experience equivalent in level of difficulty and responsibility to that of the next lower grade GS-11 in the federal service, which demonstrates the ability to perform the duties of the position, is required.

Specialized experience is defined as identifying, implementing, testing and remediating technical security requirements for assigned technologies and environments; interpreting, managing, or facilitating changes) to cybersecurity and Risk Management Framework (RMF) policies and procedures; providing guidance to I&T management, staff and customers; reviewing and creating Security Plans; conducting assessment procedures of security controls; and developing controls for common IT processes (e.g., access management) based on government or industry best practices, policies and laws.

Volunteer Experience: Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual, community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates to paid employment.

You will receive credit for all qualifying experience, including volunteer experience.

You may qualify for consideration if meeting time-in grade, specialized experience, education requirement, 90 days after competitive appointment requirement, and all other qualification requirements within 30 calendar days after the closing date of the announcement, unless otherwise indicated on the announcement.

We may use this announcement to fill additional vacancies within 90 days of the clos Major Duties:

  • As an Information System Security Manager (ISSM), implements and enforces all DOW information system Cybersecurity program policies and procedures for IT applications.
  • Provides assistance and guidance to ISSMs across DFAS on matters pertaining to the Risk Management Framework.
  • Prepares Assessment and Authorization packages via the Enterprise Mission Assurance Support Service (eMASS)
  • As the ISSM, manages and updates eMASS as part of the RMF program including mitigation of findings and Plans of Action and Milestone development.
  • Advises managers and supervisors on information security issues and policy.
  • Provide coordination between DFAS ISSMs and the validation team to facilitate successful system authorization.
  • Conduct Security Plan reviews to include Authorization Boundary diagrams, Hardware and Software inventories, and miscellaneous system details.
  • Maintains and documents RMF metrics for all DFAS systems for the purpose of briefing senior leadership.

Check your resume before applying to catch common mistakes

Browse Similar Jobs

Posted on USAJOBS: 2/17/2026 | Added to FreshGovJobs: 2/17/2026

Source: USAJOBS | ID: DFAS-DHA-ML-12883818-26