• Videos

  • Help



    This position will support the Federal Government's response efforts to COVID-19

    This position is located in the Department of Veterans Affairs (VA), Office of Information & Technology (OIT), Office of Information Security (OIS), Cybersecurity Operations Center (CSOC). The incumbent serves as a senior Cyber Incident Management IT Specialist and ensures the confidentially, integrity, and availability of systems, networks, and data through the detection and mitigation of cybersecurity threats.

    Learn more about this agency


    Amended to extend the announcement open period and to provide information on how applicants will be reviewed and referred.

    Please read this public notice in its entirety prior to submitting your application.

    Vacancies may not presently exist but may become available at any point during the opening period of this vacancy announcement. Applicant resumes will not be reviewed until there is a request to fill a vacancy. Your resume and any supporting documentation will be retained with other applicants and reviewed as vacancies occur.

    You will not receive a notice regarding the status of your application other than the initial acknowledgement until a request is received to fill a position.

    Once a request to fill a vacancy is received, the first 100 qualified and eligible candidates who applied will be considered for referral to the selecting official. Additional candidates will be referred based on hiring needs. Applicants will be notified about the status of their application, if referred and/or if all vacancies have been filled.

    This is a temporary appointment not to exceed 1 year. This appointment may be extended up to a maximum of 1 additional year (24 months of total service).

    Major Duties:

    • Serves as a senior Cyber Security Watch Officer for the VA Cybersecurity Operations Center (VA CSOC), providing technical advice, guidance, and assistance on cyber security events/incidents; and understands, analyzes, and identifies effective responses to reported incidents.
    • Identifies and analyzes threats, provides mitigation strategies, and documents and presents the impact of resulting attacks via Executive Summaries, After Action Reports, and Metrics Reports to improve and enhance the VA security posture to management and senior leadership.
    • Responds to potential cyber security events/incidents by analyzing the impact, scope, and trends, and provides containment recommendations; validates appropriate response actions were adhered to and the cyber incident has been properly handled/closed out.
    • Serves as the principal staff advisor and technical subject matter expert on all issues relating to the vulnerabilities and threats to VA enterprise and coordinates appropriate mitigation strategies information systems and network devices.
    • Oversees the monitoring of the Security Information and Event Management solution, other security tools, situational awareness reports, and open source intelligence to identify anomalous activity, malicious artifacts, indicators of compromise and take corrective actions.
    Work Schedule: Hines, IL: Tue-Sat 5:30am - 2:00pm/Tue-Sat 1:30pm - 10pm/Sun-Thur 1:30pm - 10pm; Martinsburg, WV: Tue-Sat 6:30am-3:00pm
    Compressed/Flexible Schedule: Not Available
    Telework: May be available upon supervisory approval
    Virtual: Not Available
    Position Description Title/PD#: IT Specialist (INFOSEC)/ PDCV19-17053T
    Relocation/Recruitment Incentives: Not Authorized
    Financial Disclosure Report: Not Required
    Physical Requirements: The work is sedentary. Typically, the employee sits comfortably to do the work. However, there may be some walking; standing; bending; carrying of light items, such as papers, books, small parts, or laptop; or driving an automobile. No special physical demands are required to perform the work.

    Travel Required

    Occasional travel - Travel required up to 10% of the time.

    Supervisory status


    Promotion Potential


This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/566001200. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.