What are the responsibilities and job description for the It Specialist (Infosec) position at Deputy Assistant Secretary for Information and Technology?
The incumbent serves as a Vulnerability Assessment Analyst responsible for ensuring he confidentially, integrity, and availability of systems, networks, and data through the detection of cyber security vulnerabilities. Responsible for planning, analysis,
development, implementation, and enhancement of information technology security programs, procedures, and tools for the Department. Security Clearance is required.
Qualifications:
To qualify for this position, applicants must meet all requirements by the closing date of this announcement, 06/01/2023.AND
You may qualify based on your experience as described below.
Experience - Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate.
For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled.
- Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
- Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
- Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
- Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
Specialized Experience: You must have one year of specialized experience equivalent to at least the next lower grade GS-12 in the normal line of progression for the occupation in the organization. Specialized experience is defined as,providing information systems security management, audits, and reviews; conducting IT risk and vulnerability analysis and assessment.
Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT.
Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religions; spiritual; community; student; social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
Per Office of Personnel Management General Schedule Qualification Policies, federal employees are assumed to have gained experience by performing duties and responsibilities appropriate for their official series and grade level as described in their position description. Experience that would not normally be part of the employee's position is creditable when documented by satisfactory evidence (e.g., a memorandum from the manager, human resources director, or official documentation such as SF-52, SF-50 documenting an official detail/assignments, or other comparable documentation). The documentation must indicate whether the employee performed the duties full time or, if part-time, the percentage of times the employee performed the additional duties.
To receive credit for experience in your resume that is not within the official series and grade level of your position, you must provide official documentation of such experience as indicated above.
Note: A full year of work is considered to be 35-40 hours of work per week. Part-time experience will be credited on the basis of time actually spent in appropriate activities. Applicants wishing to receive credit for such experience must indicate clearly the nature of their duties and responsibilities in each position and the number of hours a week spent in such employment. For more information on these qualification standards, please visit OPM's web site at http://www.opm.gov/qualifications/standards/indexes/alph-ndx.asp.
Responsibilities:
This position is primarily aligned to the following NICE Cybersecurity Workforce Framework work roles:- 541 - Vulnerability Assessment Analyst
The first 50 qualified and eligible candidates who applied will be considered for referral to the selecting official. Additional candidates will be referred based on hiring needs and/or Hiring Manager request.
Work Schedule: Monday - Friday, 8:00am - 4:30pm
Compressed/Flexible Schedule: Available with Supervisory Approval
Duty Location Status: Will work remotely from home
Position Description Title/PD#: It Specialist (Infosec)/PD17903A
Relocation/Recruitment Incentives: Not Authorized
Financial Disclosure Report: Not Required
Physical Requirements: The work is sedentary. Some work may require walking and standing in conjunction with travel and to attendance at meetings and conferences away from the work site. Some employees may carry light items, such as papers, books, or small parts. The work does not require any special physical effort.
Major Duties:
- Analyzes organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
- Conduct and/or support authorized penetration testing on enterprise network assets.
- Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy.
- Develops long-range plans for IT security systems that anticipate, identify, evaluate,
mitigate, and minimize risks associated with IT systems vulnerabilities and implements higher level security requirements. - Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in depth architecture against known vulnerabilities
Salary : $84,546 - $109,908