Information Technology Specialist (Security)

Employer
Administrative Office of the US Courts
Location
Washington, DC
Posted
Apr 20, 2017
Closes
Apr 21, 2017
Function
IT, Security Engineer
Industry
Security
Hours
Full Time
Administrative Office of the US Courts 5 vacancies in the following location: * Washington DC, DC Work Schedule is Full-Time - Permanent Opened Wednesday 4/5/2017 (2 day(s) ago) ** Closes Wednesday 4/19/2017 (12 day(s) away) ## Job Overview Summary The Administrative Office (AO), an agency of the Judicial Branch of the Federal government, is committed to serving and supporting the Federal court system of the United States. The AO provides a broad range of legislative, legal, financial, technology, management, administrative and program support services to the Federal courts. AO positions are classified and paid under a broad-banded system with the exception of positions in the AO Executive Service. Salary is commensurate with experience. Most AO employees are eligible for full Federal and Judiciary benefits. The AO is committed to attracting the best and brightest applicants in our support of the Third Branch of government. We take pride in serving the Judicial Branch and supporting its mission to provide equal justice under law. This announcement will close on April 19 or once we receive a total of 125 applications, whichever comes first. Duties These positions are located within the Information Technology Security Office (ITSO) of the Department of Technology Services (DTS). As an IT Specialist (Security) within the Information Technology Security Office, the incumbent is a recognized IT security expert with a strong background in cyber-security, network security engineering, and a proven record of successful leadership in "hands on" intrusion detection discovery security activities and data analysis. The incumbent will perform multiple and varying assignments under the direction of the Security Operations Manager. The incumbents are recognized as senior technical leaders responsible for overseeing and participating in the management of Security Operations Center (SOC) intrusion detection shift. This work is performed by a skilled contractor cyber team, whose focus is on security event monitoring, alerting, and response as part of a shift that forms part of the Judiciary's 24/7 coverage team. The incumbents will facilitate the successful discovery of intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information and must be able to synthesize data from multiple logging sources. The intrusion detection shift lead is the subject matter expert for all intrusion detection and reporting activities with oversight for their assigned shift. The incumbents will provide authoritative decisions for handling incidents reported to the government. The incumbents may be asked to support the government mentoring training of Court personnel who visit the SOC to experience the work being performed. The intrusion detection shift lead acts as a point of contact for escalations to ITSO-SOC management or the Judiciary Automated Systems Incident Response Capability (JASIRC). Additionally, the incumbent ensures the smooth transition of intrusion management between shifts. **Duties include, but are not limited to the following:** 1. Directing a contractor shift team of individuals responsible for providing Cyber monitoring, detection and reporting; 2. Overseeing and coordinating the activities of shift team supporting the security of critical production environments; 3. Executing Cyber emergency response procedures; 4. Working closely with Court Incident Response Teams to analyze and resolve security incidents; 5. Developing and maintaining technical, analytical, and practical proficiencies needed to ensure the team is successful in the discovery of intrusion attempts and compromises; 6. Developing, maintaining, and reporting upon metrics to measure operational effectiveness; 7. Providing reports and statistics as required to ITSO management, as requested; and 8. Leading the shift team according to strategies and plans for projects/platforms, ensuring overall alignment to the IT security strategy; Travel Required * Not Required Relocation Authorized * No ## Job Requirements Key Requirements * More than one selection may be made from this announcement. * All non-Judiciary appointees must serve a one-year trial period. * Selectee must favorably complete a background investigation. * All requirements must be met by the closing date of this announcement. Qualifications Applicants must have demonstrated experience as listed below. This requirement is according to the AO Classification, Compensation, and Recruitment Systems which include interpretive guidance and reference to the OPM Operating Manual for Qualification Standards for General Schedule Positions. Basic Requirements: You must have Information Technology (IT) related experience which demonstrates proficiency in each of the following competencies: * **Attention to Detail** - Is thorough when performing work and conscientious about attending to detail. * **Customer Service** - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. * **Oral Communication** - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. * **Problem Solving** - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. **Specialized Experience:** Applicants must have at least one year of specialized experience which is in or directly related to the line of work of this position. **Specialized experience** is demonstrated experience working as a team lead in a security operation center managing a team of five or more highly successful engineers and analysts. **The following certifications are desired but not required:** 1. Gold-level SANS GIAC Certification, GCWN 2. Gold-level SANS GIAC Certification, GCUX 3. ISC2 CISSP **CONDITIONS OF EMPLOYMENT**: 1. All information is subject to verification. Applicants are advised that false answers or omissions of information on application materials or inability to meet the following conditions may be grounds for non-selection, withdrawal of an offer of employment, or dismissal after being employed. 2. Selection for this position is contingent upon completion of OF-306, Declaration for Federal Employment during the pre-employment process and proof of US citizenship or, for noncitizens, proof of authorization to work in the United States and proof of entitlement to receive compensation. Additional information on the employment of non-citizens can be found at -in-government/non-citizens. For a list of documents that may be used to provide proof of citizenship or authorization to work in the United States, please refer to Form I-9, Employment Eligibility Verification. 3. A background security investigation is required for all selectees. Appointment will be subject to a successful completion of a background security investigation and favorable adjudication. Failure to successfully meet these requirements may be grounds for appropriate personnel action. A background security reinvestigation or supplemental investigation may be required at a later time. 4. All new AO employees must identify a financial institution for direct deposit of pay before appointment. 5. You will be required to serve a trial period if selected for a first-time appointment to the Federal government, transferring from another Federal agency, or serving as a first-time supervisor. Failure to successfully complete the trial period may result in termination of employment. 6. If appointed to a temporary position, management may have the discretion of converting the position to permanent depending upon funding and staffing allocation. 7. Relocation expenses may be provided, but only if authorized by the Director of the AO. 8. The selectee of this position may be assigned to an official duty station outside the advertised area. Security Clearance Not Applicable ## Additional Information What To Expect Next After a review of your complete application is made, you will be notified of your rating and referral to the hiring official if determined qualified. If further evaluation or interviews are required, you will be contacted. BENEFITS Review our benefits Other Information The AO is an Equal Opportunity Employer. *Salary Range:* $79,720.00 to $149,414.00 / Per Year *Series & Grade:* AD-2210-00/00 *Supervisory Status:* No *Who May Apply:* US Citizens and Non-Citizens *Control Number:* 465047900 *Job Announcement Number:* 17-DTS-10005979