• Help

    Duties

    Summary

    This position is located in the Information Technology Center (ITC), FCC IT, Office of the Managing Director, Federal Communications Commission.The incumbent of this position serves as an IT Specialist focused on Security Compliance supporting the Chief Information Security Officer (CISO).  The incumbent facilitates the engineering of mechanisms used to defend FCC networks from external threat required around the developing, delivering, and maintenance of systems and networks at the FCC.

    Learn more about this agency

    Responsibilities

    The IT Security Compliance and Audit Lead maintains the critical role of protecting FCC's computer network operations by maximizing the Cybersecurity Assets that defend the network and exercising knowledge, skills and the experience to understand, detect, clearly explain, and resolve cyber threats. In this role the incumbent supports the Chief Information Security Officer (CISO), enabling him/her to perform higher level functions within the FCC. The IT Security Compliance Specialist must:

    • Manage FCC Assessment and Authorization (A&A) Lifecycle.
    • Develop and implement FCC Information System Security Policies and Procedures.
    • Develop annual Authority to Operate (ATO) packages as required by the National Institute of Standards and Technology {NIST) standard in conjunction with the Information Systems Security Officer (ISSO). Ensure that all critical systems have been identified and are up to date for the System Security Plan.
    • Administer and manage the FISMA system repository, Cyber Security Assessment and Management tool.
    • Conduct independent risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and measures needed to protect FCC automated information, and to complete system certification and accreditation for each system.
    • Create, approve, and monitor status Plan of Action and Milestones for Security Program. Develop, test, implement, and update the FCC Information Systems Contingency Plan and Disaster Recovery Plans. Ensure that these plans are consistent across Headquarter, Regional Offices, and meet NIST requirements.
    • Review and comment on all Security Policies developed by the Office of Chief Information Officer.
    • Prepare annual for General Support Systems and Major Applications in conjunction with System owners.
    • Direct and control project phases, ensuring compliance with applicable Federal regulations and guidelines such as but not limited to FISMA, OMB directives and Information security policies and procedures.
    • Oversee the vulnerability management process to ensure that vulnerabilities are being patched in a timely manner.
    • Direct and facilitate the enterprise-wide security training for all users.
    • Oversee, review and approve FedRAMP ATO packages, continuous monitoring reports, and deviation requests for Cloud Service Providers.
    • Plan projected work including development of long range and annual audit plans, research and coordination of fact sheets and audit plans.
    • Develop plan to migrate from NIST 800-37 Rev 1 to Rev 2.
    • Independently oversee audit execution and the development of concepts and approaches, guides, and resources; conduct audit reviews; and report progress.
    • Direct the development of audit reports, ensuring compliance with standards and 'protocols and the development of appropriate corrective action.
    • Maintain liaison and represent FCC IT personnel with Internal and external stakeholders and officials of OIG, FCC, GAO, other Federal agencies, nongovernmental organizations, foreign governments, and Congressional staff.
    • Manage acquisition and planning, prepare Statements of Work for security related
    • Provide recommendations for and participate in the acquisition of information security and information assurance enforcement, analysis, and monitoring tools, as well as tools purchased off the-shelf that are acquired with security requirements.
    • Provide recommendations for and participates in the assessment of emerging technologies that may enhance information security and information assurance enforcement, analysis, and monitoring, as well as technologies that may be available off-the-shelf that may enhance security capabilities of existing applications and systems.
    • Manage contractor staff and be COR certified.
    • Collaborate with IT team members to effectively meet milestones.
    • Provide reports to the CISO on compliance activities.
    • Performs other duties as assigned.

    Travel Required

    Not required

    Supervisory status

    No

    Promotion Potential

    14 - No promotion potential.

  • Help

    Requirements

    Conditions Of Employment

    • Suitable for employment as determined by a background investigation.
    • US Citizenship.
    • Must submit a financial disclosure statement upon assuming the position.
    • Males born after 12/31/59 must be registered with Selective Service.
    • Drug Testing Required.

    Please note your resume must thoroughly support your responses to the vacancy questions.  Your resume is an integral part of the process for determining if you meet the basic qualifications of the position and determining if you are to be among the best qualified.

    Qualifications

    Applicants must meet eligibility and qualification requirements by the closing date of this announcement.  Current Federal employees must meet time-in-grade requirements by the closing date of this announcement.  

    For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below:

    1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
    2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
    3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
    4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

    In addition to meeting the basic requirements:

    Specialized Experience:  Applicants must have a minimum of one year of specialized experience equivalent to at least the GS-13 grade level in the Federal service.

    For this position, specialized experience includes the following:   

    1) Experience reviewing and validating Cybersecurity Assets network and architecture.
    2) Experience identifying network threats or vulnerabilities, providing solutions and resolving issues.
    3) Experience managing the completion of assessment and authorization packages for government systems.
    4) Experience independently overseeing audit execution and the development of concepts and approaches, guides, and resources; conducts audit
    reviews; and reports progress. 

    PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week.

    Education

    N/A

    How You Will Be Evaluated

    All applicants will be rated on the extent and quality of experience and education relevant to the duties of the position.  An automated score is administered based on the on-line application process used. 

    There are several parts to the application process that affect the overall evaluation of your application including:

    1. the core questions
    2. the vacancy questions
    3. supplemental documentation (e.g., DD-214, SF-50, SF-15, transcripts), if applicable; and
    4. your resume.

    Applicants will be rated ineligible, if they do not respond to job specific questions provide supplemental documents and submit resume.  For more information, please click on Rating Process

    You will be evaluated for this position on the following Knowledge, Skills, Abilities and Other characteristics (KSAOs):

    • Ability to validate Cybersecurity Assets
    • Skill in conducting risk and vulnerability assessments
    • Ability to manage the completion of assessment and authorization packages
    • Ability to oversee IT Audit Execution

    To preview questions please click here.

    Background checks and security clearance

    Drug test required

    Yes

    Position sensitivity and risk

    Special-Sensitive (SS)/High Risk

    Trust determination process

    Credentialing, Suitability/Fitness, National security

  • Help

    Required Documents

    ***ALL SUPPLEMENTAL DOCUMENTS MUST BE RECEIVED IN THE FCC'S HUMAN RESOURCES OFFICE BY THE CLOSING DATE OF THIS ANNOUNCEMENT. ONCE YOU APPLY TO THIS VACANCY YOU WILL BE PROMPTED BY THE SYSTEM TO EITHER UPLOAD DOCUMENTS OR PRINT FAX COVERSHEETS.  THE FAX NUMBER WILL BE LISTED ON THIS SHEET.  IF FAXING, ALL DOCUMENTS REQUIRED SHOULD BE FAXED SEPARATELY ON THE FAX COVER SHEET PROVIDED. ONCE FAXED, YOU SHOULD RECEIVE AN EMAIL CONFIRMATION WITHIN AN HOUR.  IF YOU DO NOT RECEIVE AN EMAIL CONFIRMATION, YOUR FAX HAS NOT BEEN SUCCESSFULLY RECEIVED AND YOU SHOULD FAX AGAIN.

    IF YOU ARE UNABLE TO FAX THE REQUIRED DOCUMENTATION, CONTACT THE HUMAN RESOURCES OFFICE AT 202-418-0130 PRIOR TO THE CLOSING DATE OF THIS ANNOUNCEMENT.***

    Hardcopy Supplement Documents Required:

    Current Federal employees should submit a copy of their most recent annual performance appraisal;

    Veterans must submit a legible copy of form DD-214, "Certificate of Release or Discharge from Active Duty," or an SF-15, Application for 10-Point Veterans' Preference, plus the proof
    required by that form.  Please refer to OPM's VetGuide for further information about veterans' preference at http://www.opm/veterans/html/vetguide or click on VetGuide

    If you are relying on your education to meet qualification requirements:

    Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education.

    Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.

  • Help

    Benefits

    A career with the U.S. Government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding.

    Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time, or intermittent. Contact the hiring agency for more information on the specific benefits offered.

  • Help

    How to Apply

    To apply to this announcement go to the website: https://fcc.usajobs.gov

    Your application, including resume, all supplemental documents, registration information and answers to job specific questions must be received no later than midnight U.S. Eastern time of the closing date. For more information on applying federal jobs, please check this webpage https://help.usajobs.gov/index.php/Main_Page

    If applying online poses a hardship, please contact the Federal Communications Commission's Human Resources Office at (202) 418-0130 during business hours (8:30 a.m. to 5:00 p.m. U.S. Eastern Time) prior to the closing date of the vacancy announcement.

    Qualified applicants may be further reviewed and rated by Subject Matter Experts to determine the validity of on-line question.

    Agency contact information

    Kristin Young

    Phone

    703-490-8949

    TDD

    703-490-8949

    Fax

    000-000-0000

    Email

    Kristin.Young@fcc.gov

    Address

    Federal Communications Commission
    445 12th Street, SW
    Washington, District of Columbia 20554
    United States
    Learn more about this agency

    The FCC is an independent United States government agency, directly responsible to Congress. The FCC was established by the Communications Act of 1934 and is charged with regulating interstate and international communications by radio, television, wire, satellite and cable. The FCC's jurisdiction
    covers the 50 states, the District of Columbia, and U.S. possessions.

    Next steps

    Once your complete application is received, we will conduct an evaluation of your qualifications to determine your ranking. The best-qualified candidates will be referred to the hiring official for further consideration and possible interview. You will be notified of the outcome.

Fair & Transparent

The Federal hiring process is setup to be fair and transparent. Please read the following guidance.

Equal Employment Opportunity Policy

The United States Government does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy And gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.

Reasonable Accommodation Policy

Federal agencies must provide reasonable accommodation to applicants with disabilities where appropriate. Applicants requiring reasonable accommodation for any part of the application process should follow the instructions in the job opportunity announcement. For any part of the remaining hiring process, applicants should contact the hiring agency directly. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.

A reasonable accommodation is any change to a job, the work environment, or the way things are usually done that enables an individual with a disability to apply for a job, perform job duties or receive equal access to job benefits.

Under the Rehabilitation Act of 1973, federal agencies must provide reasonable accommodations when:

  • An applicant with a disability needs an accommodation to have an equal opportunity to apply for a job.
  • An employee with a disability needs an accommodation to perform the essential job duties or to gain access to the workplace.
  • An employee with a disability needs an accommodation to receive equal access to benefits, such as details, training, and office-sponsored events.

You can request a reasonable accommodation at any time during the application or hiring process or while on the job. Requests are considered on a case-by-case basis.

Legal and regulatory guidance

This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/581236700. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.