IT Specialist

Position: Information Systems Security Officer, GS 12

Division: Oklahoma City Field Office

Location: Oklahoma City, OK

Working Hours: 8:15 a.m. – 5:00 p.m. (may vary)

Salary: GS 12 $86,962.00-$113,047.00

A 15% recruitment incentive MAY be offered to eligible candidates. Prior to receiving a recruitment incentive, you will be required to sign a 1 year service agreement with the FBI to complete 1 year in the position/location.

Full Performance level: GS 12

Number of Positions Available: 1

Duration: Full Time/Permanent

Additional selections may be made from this announcement to fill positions within the same division when the position includes substantially the same duties, responsibilities, and qualifications.

Key Requirements

• Must be a U.S. citizen
• Must be able to obtain a Top Secret-SCI clearance
• Some travel may be required
• Selectee will be required to complete a Confidential Financial Disclosure Report, OGE-450 annually
• Selectee will be required to complete form FD-887, Request for Access to Sensitive Compartmented Information (SCI)

Mission Statement:

The mission of the FBI is to protect the American People and uphold the Constitution of the United States.

Major Duties:

• Serves as a Field Office (FO) Information Security (INFOSEC) subject-matter-expert (SME), supporting all FO personnel with secure computing and digital management methodologies, working with the Chief Security Officer (CSO), Security Staff and other FO personnel as required to carry out a FO INFOSEC program, or assist in developing and implementing one.
• Conducts discovery of FO Information Systems (ISs), builds and maintains lists of systems, develops security documentation, as required, and prepares data to illustrate risks associated with a system based on environment, mission, security weaknesses and data confidentiality, integrity and availability.
• Ensures system security requirements are addressed in all phases of the IS lifecycle. Participates in planned system designs to ensure implementation of appropriate system security policies, when required.
• Mitigates INFOSEC risks in assigned FO, in accordance with federal and FBI requirements and guidance.
• Leads the FO response to the insider threat, serving as the incident response team lead, providing first response on behalf of FBIHQ risk and/or threat analysis entities, involving malware incidents, data spillages, or other cybersecurity incidents.
• Ensures appropriate reporting, clean up and mitigation, and provides root cause and trend analysis and makes recommendations for prevention and training.

Qualifications and Evaluations

Please make sure your specialized experience/requirement(s) can be identified in your resume. Applicants must meet the qualification requirements by the closing date of this announcement.

Your application will be evaluated and rated under the FBI’s Candidate Rating Procedures. Your resume and supporting documentation will be used to determine whether you meet the job qualifications listed in this announcement and will be compared to your responses to the online assessment questionnaire. High self-assessment in the vacancy questions that is not supported by information in your resume, and/or supporting documents may eliminate you from Most Competitive status.

Your application will then be placed in one of three categories: Most Competitive, Competitive, or Least Competitive. Names of candidates in the Most Competitive category will be sent to the hiring official for employment consideration. Veterans’ preference will be applied.

All applicants will be rated on the following Competencies:

• Communication
• Information Assurance
• Information Systems/Network Security
• Problem Solving/Judgement
• Risk Management
• Systems Life Cycle

Specialized Experience (SE):

GS 12: Applicant must possess at least one (1) year of specialized experience equivalent to the GS 11 grade level. SE is defined as follows:

• Conducted security-focused analyses of information systems; developing security documentation and utilizing collected data to assess vulnerability and risks, particularly as part of Security Assessment and Authorization (SAA) activities.
• Utilized approved tools to conduct vulnerability and compliance scanning of information systems.
• Provided security-related contributions to all phases of a system's lifecycle, including policy implementation.
• Responded to a variety of information and cybersecurity related threats and/or situations that can include insider threats, data spillage, or malware incidents.
• Evaluated system and device usage to ensure compliance with current security policies.
• Communicated information orally and in writing to a variety of technical and non-technical personnel.

Desired Skills

Desired skills are NOT mandatory and will NOT be utilized to minimally qualify applicants. However, preference will be given to candidates who possess the following certifications and/or professional trainings:

• CAP- Information System Security Certification Consortium (ISC2) Certified Authorization Professional
• CISSP- Information System Security Certification Consortium (ISC2) Certified Information Systems Security Professional
• GSLC- Global Information Assurance Certification (GIAC) Security Leadership Certification
• CISM- ISACA Certified Leadership Certification

Education

Education may not be substituted for specialized experience.

How to Apply

For detailed instructions related to applying, uploading documents, withdrawing an application or updating your application, please review instructions on