Duties

Summary

Announcement may be used to fill similar positions within 90 days of the closing date.

This announcement will be used to fill vacancies through OPM-authorized Direct Hire Authority (DHA) for IT Specialist (Information Security and Cybersecurity), GS-2210-09 through GS-2210-15; 5 U.S.C. 3304(a)(3), 5 CFR part 337.

This position is processed under Direct Hire authority. Veterans' Preference and Category Rating procedures DOES NOT APPLY.

For more information, click here :

About this agency

Learn more about this agency

Responsibilities

• Serves as the Cybersecurity Operations & Computer Incident Response Team (SOC/CIRT) Specialist to implement and operate the Bank's SOC/CIRT Operations.
• Provides technical advice, guidance, and assistance on cyber security events/incidents; and analyzes and identifies effective responses to reported incidents.
• Identifies and analyzes threats, provides mitigation strategies, and documents and presents the impact of resulting attacks via Executive Summaries, After Action Reports, and Metrics Reports to improve and enhance the VA security posture to management and senior leadership.
• Responds to potential cyber security events/incidents by analyzing the impact, scope, and trends, and provides containment recommendations; validates appropriate response actions were adhered to and the cyber incident has been properly handled/closed out.
• Serves as a SME on issues relating to the vulnerabilities and threats to enterprise and coordinates appropriate mitigation strategies information systems and network devices.
• Oversees the monitoring of the Security Information and Event Management solution, other security tools, situational awareness reports, and open source intelligence to identify anomalous activity, malicious artifacts, indicators of compromise and take corrective actions.
• Works with the Bank's Managed Trusted Internet Protocol Service (MTIPS) provider and other cloud-hosted cybersecurity services, including the Department of Homeland Security suite of cybersecurity tools, and on premises security tools in order to conduct continuous monitoring, diagnostics, mitigation, and remediation of identified cybersecurity threats and vulnerabilities.
• Serves as a SME for the Bank's cybersecurity incident management and Network & Security Operations Center (NSOC) services:
  • Serves as the Program Manager for the Bank's Continuous Diagnostics and Mitigation (CDM) program, responsible for the development and maintenance of the strategy, implementation, tactics, techniques, and procedures for the agency's tools, processes, and agency dashboard reporting requirements.
  • Identifies, analyzes, and reports events that occur within the network in order to protect information, information systems, and networks from threats.
  • Responds to crisis or urgent situations within the Bank's enterprise to mitigate immediate and potential threats and use mitigation, preparedness, and response and recovery approaches, as needed, to protect information security of the Bank's IT systems, network, and data whether on premises or in the cloud.
  • Conducts assessments of threats and vulnerabilities, determines deviations from acceptable configurations, enterprise or local policy, assesses the level of risk, and develops and/or recommends appropriate mitigation countermeasures in operational and non-operational situations.
  • Provides Security Engineering support. Collaborates with external Bank cybersecurity providers regarding installation, configuration, test, operations, maintenance, and management of on premises and external (including cloud hosted). Conducts cybersecurity analysis and monitors tools and sensors, services, and software permitting sharing of actionable, real-time or near real-time cybersecurity information. Continuously monitors and acts to protect EXIM's security of information and systems.
  • Supports Security Engineering and collaborates with external Bank Cybersecurity providers regarding installation, configuration, test, operations, maintenance, and management of on premises and external (including cloud hosted) cybersecurity protective devices and sensors. Such work includes, firewall/Intrusion Protection System (IPS) settings, and rules and configurations to support the accomplishment of EXIM's mission while protecting the security posture. Ensures the confidentiality, integrity, and availability of EXIM's Information Systems.
  • Works with external cybersecurity partners to review, update, and revise configurations of external cybersecurity services for optimum benefit to the Bank mission and security.
  • Tracks and reports to IT management on the responsiveness, performance, and effectiveness of externally hosted cybersecurity services provided to the Bank by our external cybersecurity providers. Makes recommendations for improvement or alternatives as needed.
  • Ensures the adequacy of access control, passwords, and account creation and administration of assigned on premises and cloud-based IT systems.
  • Conducts training of personnel within pertinent subject domain.
  • Oversees the Bank's vulnerability management program which includes the Vulnerability Disclosure Program. Conducts vulnerability and configuration baseline scan. Works with stakeholders to address technical concerns, tracks mitigation activities, and coordinates requests for risk acceptances. Monitors and reports on end of life software, DHS Binding Operational Directives and other critical vulnerability and patch management activities.

Travel Required

Occasional travel - You may be expected to travel for this position.

Supervisory status
No

Promotion Potential
14

Requirements

Conditions of Employment

• U.S. Citizenship
• Background and Security/Suitability Investigation
• You may be required to serve a one year probationary period
• Specialized experience MUST be documented on your resume
• Current or Former Political Appointees: If you are, or have been employed in the last 5 years, you must disclose this information. Failure to do so may result in disciplinary action including removal from Federal Service.
• SPECIAL SENSITIVE National Security position (requires Top Secret and SCI access)

Qualifications

CONDITION OF EMPLOYMENT: SPECIAL SENSITIVE (requiring Top Secret & SCI access)
This position is designated as a SPECIAL SENSITIVE National Security position. Prior to appointment (Entrance on Duty), it requires a fully completed and favorably adjudicated National Security Background Investigation (SSBI or SSBI-PR) that is current (within the last 5 years). Once employed, further processing for special access approval (SCI) will occur.

In addition to the Basic Requirements noted above, applicants must also meet and demonstrate the specialized experience listed below:

Specialized Experience (Credit for Specialized Experience on resume must reflect 40 hours/Full-time per week for each period of work):

GS-14: You must have one (1) year of specialized experience that has equipped you with the particular knowledge, skills, and abilities to successfully perform the duties of the position, and that is typically in or related to the work of the position to be filled. To be creditable, specialized experience must have been equivalent to at least the GS-13 level in the Federal Government. Specialized experience includes:

• Experience providing practical and technical leadership in the cybersecurity areas of continuous monitoring and diagnostics, situation awareness and threat assessment, vulnerability assessment and management, incident response operations and management, and cybersecurity tool acquisition, setup and use.

In addition to the Specialized Experience noted above, applicants must also meet and demonstrate the IT-related experience demonstrating each of the four competencies listed below:

• Attention to Detail: Is thorough when performing work and conscientious about attending to detail. ·
• Customer Service: Anticipates and meets the needs of both internal and external business partners and customers (any individuals who use or receive the services or products that your work unity produces including the general public, individuals who work in the agency, other agencies, or organizations outside the Government). Provides information or assistance. Delivers high quality products and services; is committed to continuous improvement. Effectively manages customer relationships.
• Oral Communication: Makes clear and convincing oral presentations to individuals and groups. Listens effectively; clarifies information, as needed. Speaks and writes in a clear, concise, organized, and convincing manner that is appropriate to the audience. Facilitates an open exchange of ideas to ensure all group input is considered. Handles technical, sensitive, or controversial topics with agility involving executives/managers as appropriate.
• Problem Solving: Identifies and analyzes problems, weighs relevance and accuracy of information, generates and evaluates alternative solutions, and makes sound recommendations.

Education cannot be substituted for experience at the GS-14 grade level.

For qualification determinations, your resume must contain the following for each work experience listed:

• Organization/Agency's Name
• Title
• Salary (series and grade, if applicable)
• Start and end dates (including the month and year)
• Number of hours you worked per week
• Relevant experience that supports your response to the specialized experience that is stated in the job announcement

If your resume does not contain this information, your application may be marked as incomplete and you will not receive consideration for this position.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Part-time and/or unpaid experience related to this position will be considered to determine the total number of years and months of experience. Be sure to note the number of paid or unpaid hours worked each week.

Additional information on the qualification requirements is outlined here .

All requirements must be met by 12/02/2020, the closing date of the announcement.

Education

Additional information

Current or Former Political Appointees: Pursuant to the Office of Personnel Management (OPM) oversight authority under section 1104(b)(2) of title 5, United States Code (U.S.C.) and section 5.2 of title 5, Code of Federal Regulations, OPM requires agencies to seek their approval prior to appointing any current or former political appointee to a permanent position (without time limits) in the civil service. A former or recent political appointee is someone who held a political appointment covered by OPM's policy within the previous 5-year period. OPM's oversight in this area safeguards merit system principles as well as fair and open competition free from political influence. If you are currently employed, or have been employed within the last 5 years, you must disclose this information. Failure to disclose this information could result in disciplinary action including removal from Federal Service.

Please visit the following link for the types of political appointments.

Agency Career Transition Assistance Program (CTAP) or the Interagency Career Transition Assistance Program (ICTAP) Eligibles: If you have never worked for the Federal government, you are not CTAP/ICTAP eligible. Information about ICTAP or CTAP eligibility can be found by clicking here to access OPM's Career Transition Resources website.

Veterans: All veterans must meet the qualification requirements of the position for further consideration. For more information on veterans' preference, please click here .

Selective Service: If you are a male applicant born after December 31, 1959, you must certify that you have registered with the Selective Service System, or are exempt from having to do so under the Selective Service Law.

This agency provides reasonable accommodation to applicants with disabilities. If you need a reasonable accommodation for any part of the application and hiring process, please notify the agency. The decision on granting reasonable accommodation will be made on a case-by-case basis.

Ethical Standards/Financial Disclosure:

EXIM is committed to the highest ethical standards. As an employee, you will be covered by the criminal conflict of interest statutes and the Standards of Ethical Conduct for Employees of the Executive Branch. You will be required to complete new employee ethics training within 3 months of your appointment.

If this position is subject to financial disclosure requirements (either public or confidential depending upon your position), you will be required to complete a new entrant financial disclosure report within 30 days of your appointment.

How You Will Be Evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

You will be evaluated for this position based on how well you meet the qualifications above.

This position is processed under a Direct Hire authority; therefore, veteran's preference and Category Rating procedures do not apply.

Your resume and supporting documentation will be used to determine whether you meet the job qualifications listed on this announcement. If you are minimally qualified for this position, your resume and supporting documentation will be referred to the selecting official for employment consideration.

Background checks and security clearance

Security clearance
Top Secret

Drug test required
No

Position sensitivity and risk
Special-Sensitive (SS)/High Risk

Trust determination process
Credentialing , Suitability/Fitness

Required Documents

Your application package should include the following documents:

• Your Resume (applicants are required to submit a resume with job title, series/grade (if federal employee), duties and accomplishments, employer's name, starting and ending dates of employment, number of hours worked per week, and annual salary). If your resume does not contain this information, your application may be marked as incomplete and you will not receive consideration for this position.
• Proof of Veteran's Preference - DD-214 (Member 4 Copy), if you are a veteran. Additionally, applicants claiming 10-point preference must complete Standard Form (SF)15, Application for 10-Point Veteran Preference, as well as additional documentation required by the SF-15, such as a VA letter, if applicable. If a DD-214 (Member Copy 4) is not available, other documentation listing the beginning and ending dates of active service and the type of discharge must be submitted to verify eligibility.
• Unofficial Transcripts, if the position has an education requirement or if you are using education to qualify. If selected for the position, you must provide an official transcript before appointment.
• Proof of U.S. accreditation for foreign study, if applicable.
• Special Priority Selection rights under CTAP or ICTAP: Submit a copy of your agency notice, copy of your most recent performance appraisal (with at least a satisfactory rating), and your most current SF-50 position title, grade level, and duty location, if applicable.
• Submission of any required documents listed in vacancy announcement, if applicable.

Please note that if you do not provide all required information/documents, as specified in this announcement, you may not be considered for this position (or may not receive the special consideration for which you may be eligible).