IT Cybersecurity Specialist (INFOSEC)

Full Job Description

This position is located in the Privacy and Continuous Monitoring Branch (PCMB).

PCMB provides mainly two services: Privacy - Performs privacy threshold analysis, privacy impact assessments, privacy policy development, privacy compliance reviews, reviews of System of Records Notices, and maintains a comprehensive privacy program for USPTO.

Continuous Monitoring - Performs continuous monitoring for system changes.

You must meet the United States Office of Personnel Management's (OPM) qualification requirements (including specialized experience and/or educational requirements) for the advertised position.

You must meet all eligibility and qualifications requirements by the closing date of the job announcement.

OPM Qualifications Standards are available at Information Technology (IT) Management Series 2210 Applicants must meet the BASIC REQUIREMENTS of the College Graduate authority: Recent graduates who have completed, within the previous two years, a bachelor's or graduate degree OR Veterans who have completed a bachelor's or graduate degree and were unable to apply within two years of obtaining their degree due to a uniformed service obligation of at least 4 years, may apply within two years of their discharge from uniformed service.

In addition to meeting the specialized experience below you must meet the basic requirement above to qualify for this position.

Specialized Experience is experience that has equipped applicants with the particular knowledge, skills and abilities to successfully perform the duties of the position, and that is typically in or related to the position to be filled.

To be creditable, specialized experience must have been equivalent to at least the next lower grade level in the federal service.

Specialized experience for this position: For the GS-09: The next lower grade level is a GS-07. Specialized experience for this position includes: 1.

Reviewing PII (Personally Identifiable Information) breach reports and System of Record Notices for technical accuracy. AND 2.

Recommending administrative, technical and physical safeguards ensuring security and confidentiality of records are preserved. AND 3. Participating in security audits, assessments, and reviews.

OR EDUCATION: Master's or equivalent graduate degree or 2 full years of progressively higher level graduate education leading to such a degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, two full years of graduate education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.

OR A combination of education and experience. For the GS-11: The next lower grade level is a GS-09. 1. Participating in design reviews and system change reviews to evaluate privacy implications. AND 2.

Participating in audits, assessments and follow-up mitigation tracking. AND 3. Ensuring assigned work products conform to Privacy Act, agency policy and baseline controls. OR EDUCATION: Ph.D.

or equivalent doctoral degree or 3 full years of progressively higher level graduate education leading to such a degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, three full years of graduate education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.

OR A combination of education and experience. In addition to meeting the specialized experience you must meet the basic requirement competencies below to qualify for this series.

Basic Requirement Competencies: The specialized experience must include, or be supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined: Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. NOTE: This is a career-ladder position that includes grades GS-09, 11, and 12.

Upon satisfactory completion of qualification/performance requirements and at management's discretion, the incumbent may be advanced non-competitively to the next higher level.

It is the ability to demonstrate satisfactory performance at the next higher level in all aspects of the position that is the primary basis for consideration for promotion.

Meeting the time-in-grade requirement for the higher-grade position does not automatically entitle the incumbent to a promotion. Major Duties:

The physical worksite for this position is located in Alexandria, Virginia. This position is telework eligible per agency and business unit discretion/policy.

Come join our team if you are enthusiastic about... Continuous security monitoring for assigned IT systems and components.

Identifying and documenting privacy/security risks in proposed changes and daily monitoring activities.

Analyzing breach reports and system documentation to identify root causes and corrective actions within established frameworks.

Working with records management, IT product teams, and program offices to ensure privacy documentation is completed and systems adhere to safeguards.