Supervisory IT Specialist (Infosec)

Full Job Description

This position is located in the Cybersecurity Operations Center(CSOC) as the supervisor responsible for the full range of duties within Incident Management, Device Management, Client Services, Operations Support or Network Management.

To qualify for this position, applicants must meet all requirements by the closing date of this announcement, 03/31/2026.

Basic Requirements Experience: Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate.

For all positions individuals must have IT-related experience demonstrating each of the five competencies listed below.

The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled.

Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

AND Specialized Experience: You must have one year of specialized experience equivalent to at least the next lower grade GS-13 in the normal line of progression for the occupation in the organization.

Examples of specialized experience would typically include, but are not limited to: Experience managing cybersecurity incident response, including overseeing penetration testing, vulnerability assessments, and Virtual Private Network (VPN) support, while ensuring compliance with federal regulations and mandates.

Demonstrated ability to develop and implement cybersecurity policies, strategic plans, and experience in aligning these initiatives with organizational goals, and continuously evaluating and integrating new security technologies.

Ability to lead a diverse team of Information Technology (IT) professionals, including managing workload distribution, conducting performance evaluations, identifying training needs, and resolving conflicts to ensure effective Cybersecurity Operations Center (CSOC) operations.

Solid understanding of risk management processes and familiarity with cybersecurity technologies, in assessing and mitigating cyber threats and vulnerabilities, and implementing security technologies like public key infrastructure (PKI) and firewalls.

Experience in establishing and maintaining communication channels with internal and external stakeholders, effectively representing the organization in various cybersecurity committees and forums, and advocating for necessary resources.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religions; spiritual; community; student; social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Note: A full year of work is considered to be 35-40 hours of work per week.

Part-time experience will be credited on the basis of time actually spent in appropriate activities.

Applicants wishing to receive credit for such experience must indicate clearly the nature of their duties and responsibilities in each position and the number of hours a week spent in such employment.

Veterans and Transitioning Service Members: Please visit the VA for Vets site for career-search tools for Veterans seeking employment at VA, career development services for our existing Veterans, and coaching and reintegration support for military service members.

For more information on these qualification standards, please visit the United States Office of Personnel Management's website at https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/.

Major Duties:

OIT Mission: The mission of the Office of Information and Technology (OIT) is to collaborate with our business partners to create the best experience for all Veterans.

OIT Vision: To become a world-class organization that provides a seamless, unified Veteran experience through the delivery of state-of-the-art technology.

Major Duties: Executes decision-making authorities and establishes vision and direction for an organization's cyber-related resources and/or operations.

Oversee analysts performing security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.

Identify need for changes based on new security technologies or threats.

Assure implementation of higher level security requirements such as those resulting from laws, regulations, or Presidential directives.

Analyzes technical and intelligence information to provide cyber threat indicators/ indications, warnings, and trends.

Synthesizes and places intelligence information into context; draws insights about the possible implications.

Develops policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.

Work Schedule: Monday-Friday, 8am-4:30pm Compressed/Flexible: As determined by the Agency's Policy Telework: Adhoc telework may be authorized at management's discretion.

Virtual: This is not a virtual position.

Position Description/PD#: Supervisory IT Specialist (Infosec)/PD05451A Relocation/Recruitment Incentives: Not Authorized Permanent Change of Station (PCS):Not Authorized PCS Appraised Value Offer (AVO): Not Authorized Physical Demands: The work is sedentary.

Some work may require walking and standing in conjunction with travel and attendance at meetings and conferences away from the work site and carrying light items such as papers or books.

Working Conditions: The work area is adequately lighted, heated, and ventilated. The work environment involves everyday risks or discomforts that require normal safety precautions.

This position requires frequent travel (25-50% of each month). The incumbent may be required to use both air and ground transportation.

Designated Drug Testing Position: Not applicable This is a non-bargaining unit eligible position.