IT Cybersecurity Specialist (INFOSEC)

Full Job Description

This vacancy is for a GS-2210-13, IT Cybersecurity Specialist (INFOSEC) located in the Department of Homeland Security, U.S. Coast Guard, C5I SERVICE CENTER -C5ISC in Portsmouth, Virginia.

To qualify at the GS-13 grade level, your resume must demonstrate at least one (1) full year of specialized experience equivalent to at least the GS-12 grade level in the federal or private sector.

Specialized experience is experience that has equipped you with the ability, skill, and knowledge to successfully perform the duties of this position and is typically in or related to this line of work.

Examples of specialized experience include performing the following types of tasks on a regular and recurring basis.

Your resume must demonstrate that you meet 5 out of the 7 specialized experience below: Conducting security control assessments utilizing the Risk Management Framework (RMF); or, Evaluating and assessing vulnerabilities of classified and/or unclassified network, application, or operational technology hardware, operating system software, or peripheral network equipment such as routers, switches etc.; or Monitoring the system and environment of operation to include developing and updating the system security plan; or Managing and controlling changes to the system, and assessing the security impact of these changes; or Creating Plans of Actions and Milestones (POAM's) to document system vulnerabilities; or Working knowledge of system administration, network, and operating system hardening techniques; or Working knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

In addition to meeting the specialized experience requirement, you must also have IT-related experience demonstrating each of the four competencies listed below.

Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

NOTE: All experience statements (i.e., duties, specialized experience, or occupational assessment questionnaire) copied from this announcement and pasted into your resume will not be considered as a demonstration of your qualifications for this position.

NOTE: Education cannot be substituted for experience at this grade level.

National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Major Duties:

You will serve as an IT Cybersecurity Specialist (INFOSEC) and be responsible for ensuring the confidentiality, integrity and availability of information systems, operational technology, networks, and data by serving in an Information System Security Officer (ISSO) capacity.

Achieving and maintaining a valid authorization for the system to operate using the Risk Management Framework process.

Implementing and maintaining appropriate security controls to ensure the confidentiality, integrity, and availability of systems, networks, operational technology, and data.

Conducting risk assessments, and continuous monitoring of IT systems and software. Investigating, analyzing, and responding to cyber incidents.

Managing IT remediation efforts via Plans of Action and Milestones (POA&Ms).

Mandatory training is required which must be successfully completed and other training may occur as necessary for success in the position.

Selectee must possess or be able to obtain: Residential ISSO Core Competency Personnel Qualification Standards (PQS) within twelve

months of entry into the position. Security Certification at an intermediate level (e.g., Information Assurance Management Level II/III (IAM-II, IAM-III)) or management determined equivalent within nine

months of entry into the position.