IT Specialist (InfoSec)

District of Columbia, D.C
Jun 18, 2019
Jun 26, 2019
Full Time


This position is located in the Office of the Managing Director, FCC IT, Information Resiliency, Washington DC

Relocation expenses will not be paid.
Learn more about this agency


The Incumbent serves as the FCC Incident Response Manager and as an IT security technical authority with responsibility for: (a) conducting and/or leading FCC security Technical projects and reviews in FCC bureaus/Offices; (b) facilitating the engineering of mechanisms used to defend FCC networks from external threats which involve developing, delivering, and maintaining FCC systems and networks; (c) participating with the Chief Information Security Officer (CISO) in identifying, developing, assessing and reporting Federal Information Security Management Act (FISMA) compliant security policies, processes, standards and practices. He/she reports directly to the Chief Information Security Officer.

As a recognized expert in the field of information technology security, the incumbent provides authoritative guidance to FCC's IT security programs, which involves: (a) developing long-range plans for IT security systems that anticipate, identify, evaluate, mitigate, and minimize risks associated with IT systems vulnerabilities; (b) leading the implementation of security programs designed to anticipate, assess, and minimize system vulnerabilities, threats as well as the application of new technologies; and (c) isolating and defining complex issues; and (d) resolving critical problems.

The incumbent will be responsible for the following tasks:

1. Developing, implementing, and improving IT Security principles, methods, tools in support of cyber and information security standards;

2. Implementing a Cyber Incident Response Program for an agency;

3. Partnering with or leveraging external organizations such as U.S. Cyber Command (USCYBERCOM), United States Computer Emergency Readiness Team (US-CERT), Defense Information Systems Agency (DISA);

4. Analyzing, planning, and implementing security approaches for cyber and information security technologies;

5. Coordinating and facilitating with other IT teams to ensure federal security requirements are in place through the lifecycle of solution implementation;

6. Providing subject matter expertise in support of day to day SOC intrusion detection and incident response activities to ascertain extent of compromise and residual threat;

7. Identifying threat actor groups and their techniques, tools and processes;

8. Continuously improve processes for use across multiple detection sets and develop automated as well as machine assisted capabilities to enhance detection of anomalous behavior;

9. Document best practices using available collaboration tools and workspaces;

10. Develop and maintain SOPs and operation guides for mission functions, tools and infrastructure;

11. Develop dashboards and reports to identify threats, suspicious/anomalous activities, malware, user activity, etc;

12. Support forensic analysis and malware reverse engineering efforts to provide more effective indicators of compromise (IOC) in support of intrusion detection efforts;

13. Research and incorporate emerging threat tactics, techniques and procedures to detect new threats and threat actors.

Additionally, the incumbent must have:
  • Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incidents
  • Knowledge of Federal regulations such as NIST/FISMA and OMB/DHS guidance.
  • Experience in recognizing and categorizing types of vulnerabilities and associated attacks
  • Knowledge of basic system administration and operating system hardening techniques
  • Experience performing US-CERT or DHS incident triage to include determining scope, urgency, and potential impact; identify the specific vulnerability and make recommendations that enable expeditious remediation
  • Cyber operations management experience and responsibility leading cyber programs for government and/or commercial customers
  • Knowledge of Cyber Operations including Incident Response and threat Hunting

Travel Required

Not required

Supervisory status

Promotion Potential


Conditions of Employment

  • US Citizenship.
  • Suitable for employment as determined by a background investigation.
  • Must submit a financial disclosure statement upon assuming the position.
  • Serve a probationary period of one year, if applicable.
  • Males born after 12/31/59 must be registered with Selective Service.
  • Drug Testing Required

Please note your resume must thoroughly support your responses to the vacancy questions. Your resume is an integral part of the process for determining if you meet the basic qualifications of the position and determining if you are to be among the best qualified.


Applicants must meet eligibility and qualification requirements by the closing date of this announcement. Current Federal employees must meet time-in-grade requirements by the closing date of this announcement.

Individuals must have IT-related experience demonstrating each of the four competencies listed below.

1. Attention to Detail - Reviews technical and design specifications and action plans with milestones. Is thorough when performing work and conscientious about attending to detail.

2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

3. Oral Communication - Provides technical advice and consultation to top level officials. Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; and listens to others, attends to nonverbal cues, and responds appropriately.

4. Problem Solving - Assesses IT needs of customers, determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.


Specialized Experience: Applicants must have a minimum of one year of specialized experience equivalent to at least the GS-13 grade level in the Federal service.

For this position, specialized experience includes the following:

1. Developing, implementing, and improving IT Security principles, methods, tools in support of cyber and information security standards; 2. Implementing a Cyber Incident Response Program for an agency; 3. Partnering with or leveraging external organizations such as U.S. Cyber Command (USCYBERCOM), United States Computer Emergency Readiness Team (US-CERT), Defense Information Systems Agency (DISA); 4. Analyzing, planning, and implementing security approaches for cyber and information security technologies; and 5. Coordinating and facilitating with other IT teams to ensure federal security requirements are in place through the lifecycle of solution implementation.

PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week.



Additional information

EEO Policy Statement Reasonable Accommodation Policy Statement Veterans Information Legal and Regulatory Guidance

How You Will Be Evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

All applicants will be rated on the extent and quality of experience and education relevant to the duties of the position. The FCC determines the BEST QUALIFIED CANDIDATES based on the major job related competencies and evaluation of your knowledge, skills, and abilities reflected in your application and supporting documents using the CATEGORY RATING PROCESS. All eligible applicants under Delegated Examining (DEU) will be placed in one of the following three categories:

1. Highly Qualified (Score 90-100) - the applicants possessing a background that demonstrates a superior level of major job related competencies and possession of all evaluation criteria;
2. Fully Qualified (Score 80-89) - the applicants possessing a background that demonstrates a satisfactory level of major job related competencies and possession of the evaluation criteria; and
3. Minimally Qualified (Score of 70-79)- the applicants possessing only the specialized experience described in the vacancy announcement.

An automated score is administered based on the on-line application process used. Eligible applicants will receive a numerical rating based on their responses to the job specific questions for this position.

Application of Veterans Preference: The category rating process does not add veterans' preference points or apply the "rule of three" but protects the rights of veterans by placing them ahead of non-preference eligibles within each category. Preference eligibles who meet the minimum qualification requirements and who have compensable service-connected disability at least 10 percent MUST be listed in the highest quality category, except when the position being filled is scientific or professional at the GS-9 grade level or higher.

A selecting official may make selection from the highest quality category ("HIGHLY QUALIFIED") provided no preference eligible in that category is passed over to select a non-preference eligible in the same category.

Applicants under Merit Promotion will be considered in accordance with the agency's merit promotion plan and union agreement.

There are several parts to the application process that affect the overall evaluation of your application including:

1. the core questions
2. the vacancy questions
3. supplemental documentation (e.g., DD-214, SF-50, SF-15, transcripts), if applicable; and
4. your resume.

You will be evaluated for this position on the following Knowledge, Skills, Abilities and Other characteristics (KSAOs):
  • IT /Security Knowledge/Experience.
  • IT Policy and Guidelines.
  • Oral Communications.
  • Written Communications.
  • Customer Service.

  • Applicants will be rated ineligible, if they do not respond to job specific questions, provide supplemental documents and submit resume. For more information, please click on Rating Process.

    To preview questions please click here .

    Background checks and security clearance

    Security clearance
    Top Secret

    Drug test required

    Required Documents

    ***Your resume must clearly document how you meet the specialized experience in order to meet the minimum qualification requirements for this vacancy. Some positions require supplemental document(s). All required supporting documents MUST be received in the FCC'S Human Resources Office by midnight U.S. Eastern Time of the closing date of the announcement, as specified in this announcement. If you do not submit a required document (e.g. transcripts, etc.) your application will be considered incomplete and you will not receive further consideration. Additionally, you may not receive the special consideration, e.g. Vet's Preference, for which you may be eligible without the appropriate supporting documentation. Once you apply to this vacancy you will be prompted by the system to either upload the documents or print fax coversheets to fax the documents. The fax number will be listed on this sheet. If faxing, supplemental document(s) required should be faxed separately on the fax coversheet provided. Once faxed, you should receive an email confirmation within an hour. If you do not receive an email confirmation, your fax has not been successfully received and you should fax again. If you are unable to fax the required documentation, contact the Human Resources Office at 202-418-0130 prior to 5:00 p.m. U.S. Eastern Time on the closing date of the announcement.***

    Hardcopy Supplement Documents Required:

    1. When the area of consideration is "Government-Wide" or "All U.S. Citizens." current Federal employees, including those eligible for noncompetitive transfer or reassignment, must provide a legible hardcopy of Personnel Action, SF-50, that verifies your status and highest permanently held grade along with your most recent annual performance appraisal.

    2. ICTAP eligible candidates must submit a copy of their most recent annual performance appraisal (at least "Meets or Exceeds" or equivalent) and proof of eligibility such as a RIF separation notice or letter from OPM, or your agency documenting your priority consideration status. You must be rated fully qualified (a score of 80 or above) for the position.

    3. If applying for consideration under a non-competitive appointment such as Schedule A, Excepted Service, all documentation establishing your eligibility must be provided.

    4. Veterans MUST submit form DD-214, "Certificate of Release or Discharge from Active Duty," or an SF-15, "Application for 10-Point Veterans' Preference" plus the proof required by that form.

    5. College Transcripts (For Positive Education Required positions and if qualifying based on education and or experience and education.), if applicable.

    If you are relying on your education to meet qualification requirements:

    Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education .

    Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.

    Similar jobs

    More searches like this