IT Specialist (INFOSEC)

Full Job Description

About the Position: This position is located in the Directorate of Resource Management, Information Management Department within the Naval Hospital Bremerton, Washington.

A recruitment or relocation incentive may be authorized. Salary negotiation may be available for those candidates who are new to Federal service.

Non-Federal work experience may be creditable for leave purposes.

This is a Direct Hire Solicitation Who May Apply: US Citizens In order to qualify, you must meet the expereince requirements described below.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social).

You will receive credit for all qualifying experience, including volunteer experience.

Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application.

Additional information about transcripts is in this document.

Basic Requirement for IT Specialist (INFOSEC): Specialized and Other Experience: One year of specialized experience which includes participating in the implementation or management of the Risk Management Framework (RMF); applying and verifying security controls (e.g., STIGs, NIST); and analyzing security problems and advising leadership.

This definition of specialized experience is typical of work performed at the next lower grade/level position in the federal service (GS-11).

The specialized experience must include, or be supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined: (1) Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Examples of IT-related experience demonstrating this competency include: completing thorough and accurate work independently, even in the most difficult or stressful situations; occasionally reviewing work completed by others.

(2) Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Examples of IT-related experience demonstrating this competency include: resolving routine and non-routine problems, questions, or complaints; developing and maintaining strong, mutually supportive working relationships with customers; conducting evaluation of support to determine quality of services and customer satisfaction, and recommending procedural changes based on customer need or changes in policy and/or regulation.

(3) Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Examples of IT-related experience demonstrating this competency include: convincingly conveying complex information to customers; presenting thoughts that are well-organized and demonstrating confidence in the facts and ideas; adjusting style when working with individuals with different levels of understanding; using various methods to explain and convey information.

(4) Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Examples of IT-related experience demonstrating this competency include: solving complex or sensitive problems by developing and proposing strategic alternatives; identifying possible conflicts and shared benefits; helping team anticipate problems and identifying and evaluating potential sources of information; providing feedback and coaching to others to help solve problems; engaging appropriate stakeholders when developing solutions in order to understand and incorporate multiple perspectives and needs; evaluating the effectiveness of decisions and adjusting future decisions as appropriate.

Some federal jobs allow you to substitute your education for the required experience in order to qualify.

For this job, you must meet the qualification requirement using experience alone--no substitution of education for experience is permitted. Major Duties:

• The position serves as the Information System Security Manager (ISSM) for the Military Treatment Facility (MTF), providing technical expertise to implement and maintain required cybersecurity and Risk Management Framework (RMF).
• Leads the development, implementation, and daily execution of the MTF Cybersecurity Program.
• Oversees the security posture of clinical, administrative, and infrastructure systems and coordinates cybersecurity activities with DHA, Service cyber authorities, and enterprise security organizations.
• Manages the RMF lifecycle for all command information systems by preparing, reviewing, and maintaining RMF authorization packages.
• Oversees compliance with applicable cybersecurity, privacy, and healthcare regulations, including RMF, Health Insurance Portability and Accountability Act (HIPAA), and DoW policies.
• Acts as a primary technical authority for clinical staff, department leads, contractors, and program of record offices regarding cybersecurity requirements and system security issues.
• Develops and maintains technical documentation, standard operating procedures, and system support plans related to cybersecurity activities.