IT SPECIALIST (INFOSEC)-DIRECT HIRE AUTHORITY

Full Job Description

Veteran's preference does not apply to DHA recruitment. Click on "Learn more about this agency" button below for more information.

The primary purpose of this position is being Assessment & Authorization (A&A) specialist, spearhead all cybersecurity initiatives across both classified and unclassified network enclaves.

will serve as the DoDI 8140 subject matter expert, leveraging advanced IT skills to secure critical command, control, and mission systems for in-garrison and deployed operations.

In order to qualify, you must meet the specialized experience requirements described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, Information Technology (IT) Management Series 2210 (Alternative A) located here.

BASIC REQUIREMENT OR INDIVIDUAL OCCUPATIONAL REQUIREMENT: Education: All academic degrees and coursework must be from accredited or pre-accredited institutions Undergraduate or Graduate Education: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks.

Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate GS-5 through GS-15 (or equivalent): For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below.

The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled.

Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

In addition to meeting the basic requirement above, to qualify for this position you must also meet the qualification requirements listed below: SPECIALIZED EXPERIENCE: Applicants must have at least one (1) year of specialized experience at the next lower broadband NH-02, equivalent to the next to lower grade GS-11 or equivalent in the Federal Service.

Specialized experience includes experience with principles, methods, and techniques of Cybersecurity, Information Technology (IT), planning, management, monitoring, and evaluation as well as knowledge of the principles, methods, or tools for developing, and NIPR and SIPR circuit enclaves.

IDEAL CANDIDATE: 2 years' work experience as an Information System Security Officer, 2 years' work experience using Enterprise Mission Assurance Support Service (eMASS), extensive knowledge of Assessment & Authorization (A&A) processes, including preparing System Security Plans (SSPs) and Plan of Action and Milestones (POA&Ms), knowledge of technical security guidelines (STIGs), understanding network architecture, TCP/IP, firewall management, and how to harden systems and networks against vulnerabilities, meticulous attention to detail to author Information System Security Policies/Plans, and strong verbal and written communication skills.

KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: Knowledge of a full range of IT security principles, concepts, practices, products and services (including systems software, database software, vulnerability and code scanning software technology), and methods for evaluating risk and vulnerability, implementing mitigating improvement, and disseminating IT security tools and procedures Knowledge of IT INFOSEC security requirements for certifications leading to authority to operate, system operations and protocols, systems testing and evaluation, and performance management methods sufficient to plan and conduct security accreditation reviews for installed systems or applications and assess and advise on new or revised security measures and countermeasures based on the results of accreditation reviews.

Knowledge of customers' mission, business processes, and operations to anticipate and refine functional requirements.

Knowledge of complex configuration management techniques and requirements appropriate to managing base level network systems.

Ability to gather facts and use effective analytical and evaluative methods to assess information, plan the sequence of actions necessary, make sound decisions, and solve a variety of network problems; and to analyze component interrelationships and evaluate systems and computer applications from an operational perspective.

Ability to communicate orally and in writing sufficiently and to fully coordinate activities with management officials and other IT Specialists and to provide training and support.

PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work.

You must clearly identify the duties and responsibilities in each position held and the total number of hours per week.

VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social).

Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Major Duties:

Serves as base-level Information System Security Officer (ISSO) for Eglin AFB (NIPR and SIPR circuit enclaves) and Risk Management Framework subject matter expert.

Analyzes and implements all AF and DoD cybersecurity policies, procedures, and countermeasures. Maintain Configuration Management of both the NIPR and SIPR circuit enclave A&A's.

Certifies all software, firmware and hardware approvals are following DoD and Air Force instructions and policies before being installed on the NIPR and SIPR enclaves.

Perform Continuous Monitoring of both Classified and Unclassified Enclaves and Computer Networks.

Develop, implement, evaluate and provide guidance on how to perform continuous monitoring and maintenance of the A&A/ATO packages integrity, confidentiality and availability.

Applies Information Technology (IT) security principles, methods, and security products to protect and maintain the availability, integrity, confidentiality, and accountability of information system resources and information processed throughout the system's life cycle.