SUPERVISORY IT SPECIALIST (PLCYPLN/INFOSEC)

Full Job Description

You will serve as a SUPERVISORY IT SPECIALIST (PLCYPLN/INFOSEC) in the Command Information Office (CIO) of NAVFAC OSF.

Salary will be set based upon location selected: Washington Navy Yard: $169,279.00 to $197,200.00 Norfolk, Virginia: $150,144.00 to $195,190.00 Your resume must demonstrate at least one year of specialized experience at or equivalent to the GS-14 grade level or pay band in the Federal service or equivalent experience in the private or public sector.

Specialized experience must demonstrate the following: 1) Serving as a technical authority for an IT/OT organization in implementing and integrating new programs or requirements and developing new policies, theories, concepts, principles, standards, and methods related to information management (IM) and cybersecurity (CS), including security control assessment, validation, and continuous monitoring; 2) Advising and working on a variety of complex and unusual security issues with security officers for IT/OT-related security vulnerability when there is not complete agreement on methods, procedures, or objectives; 3) Validating and verifying IT/OT systems and enterprise architecture risk level through security control assessments and analysis efforts to support CS core functions and Authorization to Operate (ATO) activities; and 4) Inspiring, motivating, and guiding other IT professionals towards achieving unique and challenging IM, IT, OT and CS goals as CIO, or similar role for a large organization; 4)Driving a resilient cybersecurity posture for IT/OT systems under the Risk Management Framework (RMF) process, meeting organizational strategic goals and stakeholders?

expectations through proactive risk management and efficient execution of RMF; 5) Leading development and implementation of streamlined RMF processes and operations tailored to an organization's mission, risk acceptance strategy, and CIO priorities, reducing total authorization timelines, while maintaining accountability for residual risk and recommended authorization decisions; 6) Establishing strong working relationships with Facility Engineering Commands (FECs) and RMF teams to proactively address security concerns, improve reporting practices, and ensure timely remediation of vulnerabilities; and 7) Defining clear cybersecurity requirements for unique NAVFAC systems such as Facility Related Control Systems (FRCS) and use risk-based approaches to recommend appropriate authorization strategies, including Assess-Only, reciprocity, or other approved alternatives, while ensuring and acceptable risk posture.

Additional qualification information can be found from the following Office of Personnel Management website: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., professional, philanthropic, religious, spiritual, community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. Major Duties:

• You will provide technical requirements and descriptions of the work to be contracted, plans and establishes schedules, deadlines and standards for acceptable work.
• You will decide on acceptability of work products or services, and similar matters, which may affect payment to contractors.
• You will be responsible for ensuring employees can effectively contribute to the accomplishment of CIO5 strategic goals and objectives while providing them with the opportunity to influence their work environment.
• You will develop project plans, organizes and conducts project team meetings, prepares status reports, and uses authorized business tools to support CIO5 requirements, and prepares documentation that supports successful project outcomes.
• You will provide expert knowledge, direction and guidance to leadership, operational staff, and customers that enables a secure and available IT infrastructure and IT/OT capabilities across the NAVFAC command.
• You will orchestrate programmatic decisions, manages work programs, manages risk, and synchronizes activities necessary to accomplish the CIO mission.
• You will serve as the Director for Functional Security Control Assessment Office assigned to NAVFACENGSYSCOMHQ, Washington Navy Yard, DC.
• You will oversee the development of architectures, policies, and standards of assuring information and managing risks.
• You will collaborate with Navy programs with the execution of authoritative CSTA standards processes and procedures to enable secure information exchange and reduced cyber vulnerabilities.
• You will coordinate with Commander Fleet Forces Command and Commander Tenth Fleet staffs on mutual concerns of cybersecurity, Technical Authority, assessment of system and component vulnerabilities, and operational risk assessments.