Supvy IT Cybersecurity Specialist (INFOSEC)

Full Job Description

This position is located in the Forensics and Vulnerability Management Branch (FVMB). FVMB prevents cyberattacks before they happen and determines how they happened when they do occur.

This position serves as the Forensics and Vulnerability Management Branch Chief.

You must meet the United States Office of Personnel Management's (OPM) qualification requirements (including specialized experience and/or educational requirements) for the advertised position.

You must meet all eligibility and qualifications requirements by the closing date of the job announcement.

OPM Qualifications Standards are available at at Information Technology (IT) Management Series 2210 Specialized Experience is experience that has equipped applicants with the particular knowledge, skills and abilities to successfully perform the duties of the position, and that is typically in or related to the position to be filled.

To be creditable, specialized experience must have been equivalent to at least the next lower grade level in the federal service. For this position, the next lower grade level is a GS-14.

Specialized experience for this position includes: 1.

Leading an agency-level digital forensics program that conducts analysis of log files, registry and configuration artifacts, and memory dumps to support cyber incident investigations, evidence preservation, and remediation activities; and 2.

Directing an agency-wide cyber threat and vulnerability management program that delivers continuous monitoring, vulnerability scanning, and intrusion alerting; and 3.

Assessing remediation actions based on risk and business impact and coordinate mitigation across stakeholders; and 4.

Providing technical supervision for senior security engineers and IT professionals (GS-14/15 or equivalent) responsible for forensics and vulnerability management functions such as assigning work, conducting technical reviews, mentor staff, and enforcing forensics and vulnerability management policies and procedures.

In addition to meeting the specialized experience you must meet the basic requirement below to qualify for this series.

Basic Requirement Competencies: The specialized experience must include, or be supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined: Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social).

Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

You will receive credit for all qualifying experience, including volunteer experience. Major Duties:

The physical worksite for this position is located in Alexandria, Virginia.

Presence at the Alexandria, VA campus is required for this role, as it includes on site functions that must be performed in person.

Position may be eligible for situational telework in accordance with agency policy/business unit discretion. The agency currently allows for 52 hours of telework per calendar year.

Come join our team if you are enthusiastic about...

Managing and coordinating the Computer Incident Response Team (CIRT) efforts across agency including with internal teams (SOC, product teams, business units) and external teams (ESOC, CISA).

Supervising the interpretation of patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.

Managing intrusion detection, vulnerability management and penetration testing program. Overseeing the Forensics and Vulnerability Management Branch staff and resources.