IT SPECIALIST (INFOSEC)

Employer
USAJobs
Location
Bethesda, Maryland
Posted
Nov 20, 2020
Closes
Nov 24, 2020
Function
IT
Hours
Full Time
Duties

Summary

Join the team! This is an opportunity to join a group of IT professionals taking CPSC's information systems to another level. We're looking for a bright, creative, hard-working individual equally as passionate about protecting CPSC information systems against unauthorized disclosure. The work is demanding and exciting. Consider a position at the CPSC as your career choice.

Learn more about this agency

Responsibilities

This position is located within the Office of Information and Technology Services and reports to the Information Systems Security Officer (ISSO). The incumbent serves as a technical professional and IT security analyst with responsibility for supporting the agency's cybersecurity program, with an emphasis on cloud initiatives. The incumbent will primarily be responsible for the security oversight of the agency's cloud environment and the development of system security and information assurance documentation, consistent with federal standards, to support the security assessment of agency cloud-based systems. The ideal candidate is capable of configuring and monitoring cloud security services, performing security audits and risk analyses of cloud environments, as well as application-level vulnerability testing and security code reviews. The candidate must be familiar with cloud-specific security principles and best practices (Federal information security policies, practices, and legal requirements including FISMA, RMF, NIST, and FedRAMP).

The incumbent will work independently to:
  • Review proposed requirements, design, and architecture documents to identify potential security issues in agency cloud environments, information systems, and applications.
  • Evaluate, install, configure, and manage cloud security tools and services that are employed to protect agency cloud environments.
  • Monitor network activity and analyze evidence of suspicious behavior to identify and report events that occur or might occur within agency networks.
  • Review data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze and respond to events that occur within the operating environment for the purpose of mitigating threats.
  • Conduct assessments of threats and vulnerabilities, determine deviations from acceptable standards and best practices, asses the level of risk, and develop and/or recommend appropriate mitigation countermeasures in both operational systems and systems undergoing development.
  • Review and asses system changes for security implications and impact to existing operations.
  • Provide technical recommendations and guidance for corrective actions resulting from security audits and vulnerability assessments.
  • Develop standard operating procedures to document routine work processes.


  • Travel Required

    Not required

    Supervisory status
    No

    Promotion Potential
    13

    Requirements

    Conditions of Employment

    • U.S. Citizenship Required.
    • Background Investigation Required.


    Must be a U.S. Citizen.

    This is a Public Trust Position. Employment in this position requires a background investigation. If you are selected and cannot obtain a favorable security determination within a reasonable period of time due to disclosed or undisclosed background issues, the tentative employment offer may be withdrawn.

    If you are a male born after December 31, 1959 you must certify that you have registered with the Selective Service System, or are exempt from having to do so under the Selective Service Law. Please see http://www.sss.gov for more information.

    Selectees will be required to complete a "Declaration of Federal Employment", (OF-306), prior to appointment and the appropriate background investigation forms to determine suitability for Federal employment. False statements or responses on these forms can jeopardize your employment opportunity and subject you to disciplinary action, including removal from Federal service.

    The selectee will be required to complete a Personal Identity Verification (PIV) process that requires two forms of identification from the I-9 Form . We will compare information provided on the I-9 Form to records available from the U.S. Department of Homeland Security. The system confirms employee's identity and eligibility to work in the United States. Learn more about E-Verify , including your rights and responsibilities.

    Upon appointment, you will be required to complete a Confidential Financial Disclosure Report, OGE-450. You will need to provide the information annually.

    Depending on your status, this position may require serving a 1-year probationary period.

    Qualifications

    All applicants must have 52 weeks of specialized experience equivalent to at least the next lower grade level in the Federal Service. Specialized experience is experience that has equipped the candidate with the particular knowledge, skills, and abilities to perform successfully the duties of the position. Applicants must meet the time-in-grade requirements of the position within thirty (30) days of the closing date of this announcement.

    Examples of qualifying specialized experience include:

    GS-13: 1) knowledge of cloud security architectures and cloud service models; 2) knowledge of cloud security best practices, risk management, risk assessments, Federal Risk and Authorization Management Program (FedRAMP), the Federal Information Security Management Act (FISMA), and risk mitigation; 3) knowledge of computer networking concepts and protocols, and network security methodologies; 4) installing, configuring, and managing cloud security tools, such as data loss prevention (DLP), intrusion prevention, and malware detection; 5) assessing the adequacy of security controls in applications and systems prior to deployment; AND 6) communicating complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.

    In addition to the above specialized experience, applicants must also meet the IT-Related proficiency level for all four of the competencies listed below:

    Attention to Detail: Is thorough when performing work and conscientious about attending to detail.

    Customer Service: Ability to coordinate cyber operations with other organization functions or support activities.

    Oral communication: Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal means.

    Problem Solving: Ability to interpret and understand complex and rapidly evolving concepts; ability to think critically.

    Evidence of the above specialized experience and IT-related proficiency must be supported by detailed documentation of duties performed in positions held. Your resume is the key means we have for evaluating your skills, knowledge, and abilities as they relate to this position. Therefore, we encourage you to be clear and specific when describing your experience.

    Evidence of the above specialized experience must be supported by detailed documentation of duties performed in positions held. Your resume is the key means we have for evaluating your skills, knowledge, and abilities as they relate to this position. Therefore, we encourage you to be clear and specific when describing your experience. We will not make assumptions regarding your experience or based on job titles alone. If your resume does not support your questionnaire answers, we will not allow credit for your response(s).

    Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

    Applicants must meet the qualifications for this position within thirty (30) days of the closing date of this announcement.

    Education

    There is no substitution for specialized experience for this position at this grade level.

    Additional information

    CPSC provides reasonable accommodations to applicants with disabilities on a case-by-case basis. If you need a reasonable accommodation for any part of the application or hiring process, please contact the Human Resources Specialist listed in this vacancy announcement.

    Payment of relocation expenses is NOT authorized.

    All the information you provide will be verified by a review of the work experience and/or education as shown on your application, by checking reference and through other means, such as the interview process. Any exaggeration of your experience, false statements, or attempts to conceal information may be grounds for not hiring you or for firing you after you begin work.

    Additional selections may be made through this vacancy announcement.

    How You Will Be Evaluated

    You will be evaluated for this job based on how well you meet the qualifications above.

    You will be evaluated for this job based on how well you meet the qualifications above.

    After the vacancy closes, we will review your application package to determine if you meet the minimum qualifications for the position. If you meet the minimum qualifications, your resume and supporting documentation will then be reviewed. Your resume must contain sufficiently detailed information upon which to make a qualification determination. Please ensure that your resume contains specific information such as position titles, beginning and ending dates of employment for each position, average number of hours worked per week, salary, duties performed for each position, and if the position is/was in the Federal government, you should provide the position series and grade level/pay band. The best-qualified candidates will be identified for referral to the hiring manager and may be invited to an interview. Qualified candidates will be considered in accordance with the Office of Personnel Management Direct Hire Guidelines.

    CTAP/ICTAP candidates will be eligible if it is determined that they have exceeded the minimum qualifications for the position by attaining at least a rating of 90. ICTAP eligibles must submit proof of eligibility. You must annotate your questionnaire to reflect that you are applying as an ICTAP eligible.

    Veterans' Preference does not apply to the direct hire recruitment procedures. Selections made under this notice will be processed as new appointments to the civil service. You may not be considered for the position if any part of the application is incomplete. Your application may not receive appropriate consideration without the required supporting documentation.

    To preview questions please click here .

    Background checks and security clearance

    Security clearance
    Not Required

    Drug test required
    No

    Position sensitivity and risk
    High Risk (HR)

    Trust determination process
    Credentialing , Suitability/Fitness

    Required Documents

    Your package must be complete and submitted in the manner specified in this section. Packages that are submitted in any other manner without prior approval from the agency point of contact will not be considered.

    A complete application includes: 1. Resume; 2. Vacancy question responses; and 3. Submission of any required documents. Please note that if you do not provide all required information, as specified in this announcement, you may not be considered for this position (or may not receive the special consideration for which you may be eligible).

    ICTAP eligibles must submit proof of eligibility. You must annotate your questionnaire to reflect that you are applying as an ICTAP eligible.

    Other documents identified in this announcement.

    All supplemental documents must be submitted electronically before the closing date of this vacancy announcement. You have three choices for submitting your supplemental documents:
    1. Download from your USAJOBS account; or
    2. Upload your file(s); or
    3. Fax using the online Fax Cover Sheet.

    Failure to submit required documents, based upon how you apply, may result in loss of consideration due to an incomplete application package. It is your responsibility to ensure all required documents have been submitted. Official documents are not required at the time of application, copies are sufficient. If selected, official documentation must be submitted prior to appointment.

    If you are relying on your education to meet qualification requirements:

    Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education .

    Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.

    Similar jobs

    More searches like this