Supervisory Information Technology Cybersecurity Specialist (Security)

Full Job Description

The primary purposes of the position are to: oversee a program that integrates cybersecurity throughout the IT solution development lifecycle (SDLC); provide full lifecycle vulnerability assessment for all MRP IT systems; and serve as the primary engineer and architect advisor for enterprise research and development initiatives.

Location Negotiable if selected your duty location will be your current duty location. Please see additional information below.

Applicants must meet all qualifications and eligibility requirements by the closing date of the announcement including time-in-grade restrictions, specialized experience and/or education, as defined below.

TIME-IN-GRADE: Current federal employees applying for a promotion opportunity must meet time-in-grade (TIG) requirement of 52 weeks of service at the next lower grade level in the normal line of progression for the position being filled.

FOR THE GS-14 LEVEL: Applicants must have one year of specialized experience (equivalent to the GS-13 level) that may have been obtained in the private or public (local, county, state, Federal) sectors which demonstrates: Evaluating current and proposed technical solutions to ensure secure design principles are implemented.

Performing static and dynamic source code scanning reviews. Applying Open Web Application Security Project (OWASP) Top 10 standards to remediating vulnerability findings.

In addition, all applicants qualifying based on experience must have IT-related experience demonstrating each of the four competencies listed below.

Applicants must demonstrate possession of these competencies within the body of the resume; no separate statements addressing them are required.

Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Note: There is no education substitution for this grade level.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social).

Volunteer work helps build critical competencies and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Major Duties:

• The duties described are for the full-performance level. At developmental grade levels, assignments will be of more limited scope, performed with less independence and limited complexity.
• The duties may include, but are not limited to:
• Applies an in-depth knowledge of federal and industry IT security guidelines.
• Responsible for the integration of cybersecurity throughout the IT solution development lifecycle (SDLC) through MRP IT systems.
• Leads the delivery of enterprise security services.
• Provides financial management and cost estimating support for the IT security engineering and architecture programs.
• Participates in all phases of IT security planning, formulation, analysis, justification, presentation, execution, and review multiyear budget.
• Optimizes the effectiveness and efficiency of the IT security engineering and architecture programs based on meaningful operational and performance metrics.