Performs computer network defense (CND) incident triage, to include determining scope, urgency, and potential impact; identifying the specific vulnerability; and making recommendations that enable expeditious remediation.
Installs, configures and supports cyber security tools such as Security Onion, McAfee Host Based Security Suite (HBSS), Assured Compliance Assessment Solution (ACAS), Security Event and Incident Management (SEIM).
Ensures patches, hot fixes, system change packages and current AV definitions are applied and compliance verified.
Surveys and evaluates network traffic and creates network diagrams.
Determines baselines for network devices and host machines.
Recognizes security events and takes appropriate action to identify threats and implement countermeasures.
Analyzes captured network traffic using filters to identify anomalous traffic.
Audits logs looking for anomalous actions and possible insider threats.
Appointment may be subject to a suitability or fitness determination, as determined by a completed background investigation.
Two year trial/probationary period may be required.
Male applicants born after December 31, 1959, must complete a Pre-Employment Certification Statement for Selective Service Registration.
This position may require the incumbent to take and successfully pass a Counterintelligence Scope Polygraph (CI/Poly).
This position may require shift work to provide coverage on evenings, weekends, holidays, or special situations.
Due to the nature of this position, employees may be required to work both planned and unscheduled overtime.
The incumbent may be required to carry a cellular telephone and maintain a working personal telephone at all times.
This position may be designated as Key. The position cannot be vacated during a national emergency or mobilization without seriously impairing the mission.
This position may require the incumbent be able to obtain and maintain a determination of eligibility for a Secret or Top Secret security clearance or access for the duration of employment.
This position requires the incumbent to obtain and maintain the appropriate Information Assurance certification in accordance with DoD 8570.01-M, Information Assurance Workforce Improvement Program, within 6 months of entry onto duty.
This position may require a physical examination with a lifting requirement.
The duties of this position may require the incumbent to possess or obtain and maintain a valid state Driver's License in one of the 50 U.S. states or possessions to operate vehicles.
This position may require the incumbent to possess, or obtain and maintain, a valid regular or official U.S. Passport.
This position MAY be eligible for situational telework only, including emergency and OPM prescribed "Unscheduled Telework".
Service credit for annual leave accrual may be granted for certain non-Federal work experience and experience in the uniformed service.
Student Loan Repayment MAY be authorized for highly qualified candidates.
Recruitment or relocation incentives MAY be authorized for highly qualified candidates.
Permanent Change of Station (PCS) allowances may be authorized, subject to the provisions of the Joint Travel Regulations and an agency determination that a PCS move is in the Government Interest.
Qualifications
Who May Apply: US Citizens
In order to qualify, you must meet the education and/or experience requirements described below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). You will receive credit for all qualifying experience, including volunteer experience. Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application. Additional information about transcripts is in this document.
Minimum Qualifications: GS-05
Experience: Information technology related experience demonstrating each of the four competencies, as defined in the bottom of this section. OR Education: See "EDUCATION" section below.
GS-07 Specialized Experience: One year of specialized experience which includes monitoring network traffic and/or host processes to determine anomalies (such as monitoring the network via a network intrusion detection system (NIDS), monitoring host machines with host based intrusion detection system (HIDS), or using Security Information and Event Management (SIEM) tools). This definition of specialized experience is typical of work performed at the second lower grade/level position in the federal service (GS-07). OR Education: See "EDUCATION" section below.
GS-09 Specialized Experience: One year of specialized experience which includes performing configuration of network devices, host machines and/or servers (such as using a software product or scripting language to securely configure an initial network baseline, or build, install, or configure host images). This definition of specialized experience is typical of work performed at the second lower grade/level position in the federal service (GS-07). OR
Education: See "EDUCATION" section below.
GS-11 Specialized Experience: One year of specialized experience which includes performing analysis to determine vulnerabilities on the network (such as analyzing network diagrams, scans of networks and hosts, interviewing stake holders, developing risk assessment matrixes, threat reporting, and emergency communications planning), and creating threat or vulnerability reporting based off analysis. This definition of specialized experience is typical of work performed at the second lower grade/level position in the federal service (GS-09). OR
Education: See "EDUCATION" section below.
GS-12 Specialized Experience: One year of specialized experience which includes performing analysis in response to network (network devices, servers, hosts etc.) anomalies, intrusions, or security incidents (such as using the kill chain method to determine if an adversary is on the network, or determining system or permission misconfigurations), and creating threat, vulnerability, or correction reports. This definition of specialized experience is typical of work performed at the next lower grade/level position in the federal service (GS-11).
Applicants utilizing experience to qualify must have specialized experience that includes, or is supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined:
1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Examples include:
GS-05: completing work that sometimes requires editing by others, or requires review prior to completion.
GS-07/09/11: completing work independently that rarely requires editing or review by others.
GS-12: completing thorough and accurate work independently, even in the most difficult or stressful situations; occasionally reviewing work completed by others.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Examples include: GS-05: resolving simple and routine problems, questions or complaints; asking appropriate questions to clarify information about issues, escalating non-routine issues to the appropriate individual, team, or organizational group; and responding to inquiries in a timely manner and keeping customers informed of status and status changes.
GS-07/09/11: resolving simple and routine problems, questions, or complaints and providing support and guidance to customers on non-routine issues; serving as a primary resource for customers, requesting assistance with complex issues when necessary; and participating in meetings and providing advice to customers in own area of expertise.
GS-12: resolving routine and non-routine problems, questions, or complaints; developing and maintaining strong, mutually supportive working relationships with customers; conducting evaluation of support to determine quality of services and customer satisfaction, and recommending procedural changes based on customer need or changes in policy and/or regulation.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Examples include: GS-05: providing answers to routine inquiries in a clear, concise, and organized manner; actively listening to others, paying attention to verbal and non-verbal cues and listening for misunderstanding and misinterpretation.
GS-07/09/11: expressing facts and ideas in a clear, concise, convincing, and organized manner; clearly conveying moderately complex ideas, concepts, and information to customers; exhibiting active listening by demonstrating understanding of audience comments and/or questions.
GS-12: convincingly conveying complex information to customers; presenting thoughts that are well-organized and demonstrating confidence in the facts and ideas; adjusting style when working with individuals with different levels of understanding.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendation. Examples include: GS-05: making routine decisions independently, where there is a standard process; identifying problems or inefficiencies in work processes and activities and recommending solutions; recognizing situations when further guidance is needed from senior colleagues or supervisors.
GS-07/09/11: identifying and solving problems by gathering and applying information from a variety of materials or sources that provide several alternatives; recognizing and taking action to address non-routine problems; soliciting feedback from multiple stakeholders to understand an issue or problem and accurately assess its root causes and potential solutions; seeking supervisory review where appropriate.
GS-12: solving complex or sensitive problems by developing and proposing strategic alternatives; identifying possible conflicts and shared benefits; helping team anticipate problems and identifying and evaluating potential sources of information; providing feedback and coaching to others to help solve problems; engaging appropriate stakeholders when developing solutions in order to understand and incorporate multiple perspectives and needs; evaluating the effectiveness of decisions and adjusting future decisions as appropriate.
Education
Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you may qualify if your education meets the definitions below:
GS-05: Bachelor's degree (or higher degree) from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, a bachelor's degree (or higher degree) from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
GS-07: One full year of graduate level education from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, graduate level education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
*OR*
Superior Academic Achievement: Successful completion of all the requirements for a bachelor's degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, bachelor's degree from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks. Superior Academic Achievement is based on: (1) Class Standing - You must be in the upper third of the graduating class in the college, university, or major subdivision, such as the College of Liberal Arts or the School of Business Administration, based on completed courses; OR (2) Grade-Point Average (G.P.A.) - You must have a grade-point average of either (a) 3.0 or higher out of a possible 4.0 ("B" or better) as recorded on your official transcript, or as computed based on 4 years of education, or as computed based on courses completed during the final 2 years of the curriculum; or (b) 3.5 or higher out of a possible 4.0 ("B+" or better) based on the average of the required courses completed in the major field or the required courses in the major field completed during the final 2 years of the curriculum.; OR (3) Honor Society Membership - You may be considered eligible based on membership in one of the approved national scholastic honor societies listed by the Association of College Honor Societies (https://www.achsnatl.org/).
GS-09: Master's or equivalent graduate degree or 2 full years of progressively higher level graduate education leading to such a degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, two full years of graduate education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
GS-11: Ph.D. or equivalent doctoral degree or 3 full years of progressively higher level graduate education leading to such a degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, three full years of graduate education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
For this job at the GS-12 level, you must meet the qualification requirement using experience alone--no substitution of education for experience is permitted.
FOREIGN EDUCATION: If you are using education completed in foreign colleges or universities to meet the qualification requirements, you must show the education credentials have been evaluated by a private organization that specializes in interpretation of foreign education programs and such education has been deemed equivalent to that gained in an accredited U.S. education program; or full credit has been given for the courses at a U.S. accredited college or university. For further information, visit: http://www.ed.gov/about/offices/list/ous/international/usnei/us/edlite-visitus-forrecog.html
EDUCATION IN PROGRESS: Applications can be accepted from students who expect to complete qualifying education within 90 days from the date of application. You must still include transcripts with your application package, showing the courses and semester hours you have completed and courses in-progress, even though you have not earned a degree yet. You will not be able to start employment until you have completed the full education requirement and final transcripts have been verified.
Additional information
The duties of this position may meet the criteria for compliance with Federal and Department of the Army Drug Free Workplace Programs. Detection of the presence of drugs may be warranted. This position may be subject to a pre-employment screening, and random testing thereafter, to include testing based on reasonable suspicion and testing due to direct involvement with an on-duty accident.
In accordance with AR 690-11, this position has been designated as "Emergency-Essential". Emergency-Essential designation takes precedence over any transportation agreement or military recall status. In the event of a crisis situation or wartime, the incumbent must continue to perform the duties and requirements of the position to ensure the success of combat operations or to support combat essential systems subsequent to mobilization or an evacuation order. This position is designated as Key. The position cannot be vacated during a national emergency or mobilization without seriously impairing the mission. Additional training, medical requirements, and deployment responsibilities may apply to this position.
You will be required to provide proof of U.S. Citizenship.
Direct Deposit of Pay is required.
Selection is subject to restrictions resulting from Department of Defense referral system for displaced employees.
If you have retired from federal service and you are interested in employment as a reemployed annuitant, see the information in the Reemployed Annuitant information sheet.
This is a Career Program (CP) 34- Information Technology/Cyber Management position.
Multiple positions may be filled from this announcement.
Salary includes applicable locality pay or Local Market Supplement.
If you are unable to apply online or need to fax a document you do not have in electronic form, view the following link for information regarding an Alternate Application.
This position may require you to submit a Public Financial Disclosure Report (OGE 278) or a Confidential Financial Disclosure Report (OGE 450) upon entry, and annually thereafter.
This position may be obligated. An obligated position is one to which an employee has statutory restoration rights based on active military service, compensable injury or disability when fully recovered, return rights based on having served an overseas tour(s), and may also cover employees who have been on extended leave without pay under certain circumstances. During the obligation period, the position may be filled on a temporary or permanent basis. The selected employee is required to sign an agreement acknowledging that (s)he is aware of the obligation and accepts the fact that (s)he may be displaced under reduction in force procedures at a later time.
This position MAY be designated "Mission Essential." In the event of severe weather conditions or other such emergency type situations (natural or man-made disaster) the incumbent is required to report to work or remain at work as scheduled to support mission operations.
A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.
Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.
How you will be evaluated
You will be evaluated for this job based on how well you meet the qualifications above.
Once the announcement has closed, a review of your application package (resume, supporting documents, and responses to the questionnaire) will be used to determine whether you meet the qualification requirements listed on this announcement. If, after reviewing your résumé and/or supporting documentation, a determination is made that you have inflated your qualifications and/or experience, you may lose consideration for this position. Please follow all instructions carefully when applying, errors or omissions may affect your eligibility.
You should list any relevant performance appraisals and incentive awards in your resume as that information may be taken into consideration during the selection process. If selected, you may be required to provide supporting documentation.
Veterans and Military Spouses will be considered along with all other candidates.
Interagency Career Transition Assistance Program (ICTAP). If you are a Federal employee in the competitive service and your agency has notified you in writing that you are a displaced employee eligible for ICTAP consideration, you may receive selection priority for this position. To receive selection priority, you must: (1) meet ICTAP eligibility criteria (2) be rated well-qualified for the position and; (3) submit the appropriate documentation to support your ICTAP eligibility. To be considered well-qualified and receive selection priority applicants must satisfy all qualification requirements for the position. Additional information about the program is on OPM's Career Transition Resources website.
A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.
Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.
The documents you are required to submit vary based on whether or not you are eligible for preference in federal employment. A complete description of preference categories and the associated required documents is in the Applicant Checklist (External).
As described above, your complete application includes your resume, your responses to the online questionnaire, and documents which prove your eligibility to apply. If you fail to provide these documents, you will be marked as having an incomplete application package and you will not be considered any further.
1. Your resume:
Your resume may be submitted in any format and must support the specialized experience described in this announcement.
If your resume includes a photograph or other inappropriate material or content, it will not be used to make eligibility and qualification determinations and you may not be considered for this vacancy.
For qualifications determinations your resume must contain hours worked per week and the dates of employment (i.e., HRS per week and month/year to month/year or month/year to present). If your resume does not contain this information, your application may be marked as incomplete and you may not receive consideration for this position.
If you are relying on your education to meet qualification requirements: You MUST submit a copy of your transcript if you want to substitute your education for experience. If you claim qualifications based on education, and do not submit a transcript, your education will not be used in making a qualification determination and you may be found "not qualified." See: Transcripts and Licenses.
NOTE: Documents submitted as part of the application package, to include supplemental documents, may be shared beyond the Human Resources Office. Some supplemental documents such as military orders and marriage certificates may contain personal information for someone other than you. You may sanitize these documents to remove another person's personal information before you submit your application. You may be asked to provide an un-sanitized version of the documents if you are selected to confirm your eligibility.
If you are relying on your education to meet qualification requirements:
Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.
To apply for this position, you must complete the online questionnaire and submit the documentation specified in the Required Documents section below.
The complete application package must be submitted by 11:59 PM (EST) on 12/31/2020 to receive consideration.
To begin, click Apply to access the online application. You will need to be logged into your USAJOBS account to apply. If you do not have a USAJOBS account, you will need to create one before beginning the application (https://apply.usastaffing.gov/ViewQuestionnaire/10698288).
Follow the prompts to select your résumé and/or other supporting documents to be included with your application package. You will have the opportunity to upload additional documents to include in your application before it is submitted. Your uploaded documents may take several hours to clear the virus scan process.
After acknowledging you have reviewed your application package, complete the Include Personal Information section as you deem appropriate and click to continue with the application process.
You will be taken to the online application which you must complete in order to apply for the position. Complete the online application, verify the required documentation is included with your application package, and submit the application. You must re-select your resume and/or other documents from your USAJOBS account or your application will be incomplete.
It is your responsibility to verify that your application package (resume, supporting documents, and responses to the questionnaire) is complete, accurate, and submitted by the closing date. Uploaded documents may take up to one hour to clear the virus scan.
Additional information on how to complete the online application process and submit your online application may be found on the USA Staffing Applicant Resource Center.
To verify the status of your application, log into your USAJOBS account (https://my.usajobs.gov/Account/Login), all of your applications will appear on the Welcome screen. The Application Status will appear along with the date your application was last updated. For information on what each Application Status means, visit: https://www.usajobs.gov/Help/how-to/application/status/.
DZ-APF-W6ZBAA CYBER PROTECTION BRIGADE
DO NOT MAIL
Fort Gordon, GA 30905
US
Next steps
If you provided an email address, you will receive an email message acknowledging receipt of your application. Your application package will be used to determine your eligibility, qualifications, and quality ranking for this position. If you are determined to be ineligible or not qualified, your application will receive no further consideration.
The Federal hiring process is set up to be fair and transparent. Please read the following guidance.
The documents you are required to submit vary based on whether or not you are eligible for preference in federal employment. A complete description of preference categories and the associated required documents is in the Applicant Checklist (External).
As described above, your complete application includes your resume, your responses to the online questionnaire, and documents which prove your eligibility to apply. If you fail to provide these documents, you will be marked as having an incomplete application package and you will not be considered any further.
1. Your resume:
Your resume may be submitted in any format and must support the specialized experience described in this announcement.
If your resume includes a photograph or other inappropriate material or content, it will not be used to make eligibility and qualification determinations and you may not be considered for this vacancy.
For qualifications determinations your resume must contain hours worked per week and the dates of employment (i.e., HRS per week and month/year to month/year or month/year to present). If your resume does not contain this information, your application may be marked as incomplete and you may not receive consideration for this position.
If you are relying on your education to meet qualification requirements: You MUST submit a copy of your transcript if you want to substitute your education for experience. If you claim qualifications based on education, and do not submit a transcript, your education will not be used in making a qualification determination and you may be found "not qualified." See: Transcripts and Licenses.
NOTE: Documents submitted as part of the application package, to include supplemental documents, may be shared beyond the Human Resources Office. Some supplemental documents such as military orders and marriage certificates may contain personal information for someone other than you. You may sanitize these documents to remove another person's personal information before you submit your application. You may be asked to provide an un-sanitized version of the documents if you are selected to confirm your eligibility.
If you are relying on your education to meet qualification requirements:
Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.
To apply for this position, you must complete the online questionnaire and submit the documentation specified in the Required Documents section below.
The complete application package must be submitted by 11:59 PM (EST) on 12/31/2020 to receive consideration.
To begin, click Apply to access the online application. You will need to be logged into your USAJOBS account to apply. If you do not have a USAJOBS account, you will need to create one before beginning the application (https://apply.usastaffing.gov/ViewQuestionnaire/10698288).
Follow the prompts to select your résumé and/or other supporting documents to be included with your application package. You will have the opportunity to upload additional documents to include in your application before it is submitted. Your uploaded documents may take several hours to clear the virus scan process.
After acknowledging you have reviewed your application package, complete the Include Personal Information section as you deem appropriate and click to continue with the application process.
You will be taken to the online application which you must complete in order to apply for the position. Complete the online application, verify the required documentation is included with your application package, and submit the application. You must re-select your resume and/or other documents from your USAJOBS account or your application will be incomplete.
It is your responsibility to verify that your application package (resume, supporting documents, and responses to the questionnaire) is complete, accurate, and submitted by the closing date. Uploaded documents may take up to one hour to clear the virus scan.
Additional information on how to complete the online application process and submit your online application may be found on the USA Staffing Applicant Resource Center.
To verify the status of your application, log into your USAJOBS account (https://my.usajobs.gov/Account/Login), all of your applications will appear on the Welcome screen. The Application Status will appear along with the date your application was last updated. For information on what each Application Status means, visit: https://www.usajobs.gov/Help/how-to/application/status/.
DZ-APF-W6ZBAA CYBER PROTECTION BRIGADE
DO NOT MAIL
Fort Gordon, GA 30905
US
Next steps
If you provided an email address, you will receive an email message acknowledging receipt of your application. Your application package will be used to determine your eligibility, qualifications, and quality ranking for this position. If you are determined to be ineligible or not qualified, your application will receive no further consideration.
Fair and transparent
The Federal hiring process is set up to be fair and transparent. Please read the following guidance.
