Clarification from the agency

Open to US Citizens; Veteran's Preference collected (documentation required to award preference).

As an IT CYBERSECURITY SPECIALIST (INFOSEC), GS-2210-12, you will perform the following duties:

1. Serves as a technical expert and focal point for Information Technology (IT) security and information assurance policies, planning, programs, initiatives, certification and accreditation. Provides advice and assistance regarding security aspects of processing, storage, retrieval, transmission, and access of classified and unclassified information. Administers and monitors installation compliance with all applicable DoD, USAF, National Guard Bureau (NGB) and Air National Guard (ANG) Information Assurance regulations and policies. Administers and maintains the organization certification & accreditation process for assigned SCIF(s) using the Risk Management Framework (RMF), and coordinates, compiles and maintains all certification & accreditation documentation for appropriate accreditation authorities. Reviews and implements local policies regarding system access, network rights, and physical access to systems and equipment. Conducts risk and vulnerability assessments of DoD classified information systems to identify associated vulnerabilities, risks and protection needs. Leads or serves as a member of the configuration control board for applicable installation facilities/networks.

2. Evaluates and assesses vulnerabilities of classified network and application server hardware, operating system software, and peripheral network equipment such as routers, bridges, switches, attached cabling system, network interface cards, modems, multiplexers, and concentrators. Updates hardware and software architecture databases to reflect installations, turn-ins, and changes in reportable software. Provides input to the ANG Continuity of Operation Plan (COOP)procedures for system disaster recovery. COOP recovery includes reestablishment of systems at multiple sites and locations. Conducts evaluations to ensure compliance with applicable standards. Ensures system backups are performed to ensure expedient restoration of respective network equipment.

3. Reviews national, DOD and other policies, program proposals, operational and strategic plans, and identifies issues requiring tier two actions or inputs. Based on these reviews, provides technical recommendations for changes to the security posture to the Wing Information System Security Manager (ISSM). Prepares and presents applicable briefings and reports to high-level managers. Advises the Wing ISSM and Group/Squadron Commander on the impact of tier two level Information Assurance (IA) and Computer Network Defense (CND) policy on squadron group/squadron activities. Implements audit measures to ensure activity compliance with regulatory requirements. Participates in inspections and surveys of computer system. Incumbent makes recommendations to the Wing ISSM on the approval of various computer operations based on security guidelines. When feasible, provides alternatives to the Wing ISSM and Group/Squadron Commander to meet security requirements based on the unique needs of the organization and mission requirements. Develops guidance papers on security issues affecting classified systems, enclaves, and applications.

4. Analyzes equipment and software reliability and suitability for vulnerability assessment utilization. Conducts analyses of classified network usage, hardware and software capabilities, ineffective practices or procedures, equipment shortcomings, and other relevant factors. Recommends methods and procedures and coordinates corrective action to optimize utilization of present equipment. Uses benchmarks, performance measurement, and evaluation data, in conjunction with vulnerability assessment techniques. Develops recommendations or proposals involving a variety of specialized systems to improve operational efficiency.

5. Determines, develops, and ensures cooperation and coordination with related IA/CND program efforts. Incumbent must analyze the vulnerabilities and weaknesses of existing computer security programs that could benefit from group training and translate those needs into training and education media for the ISSM. Designs and delivers to the Group/Squadron Commander tailored programs of instruction to reduce risks, increase the level of computer security awareness, and improve the security posture for the automated systems and activities.

6. Performs other duties as assigned.

*The above duty description does not contain all details of the official position description. A copy of the entire position description can be found on FASCLASS by searching the position description PD#: (T5895000). https://acpol2.army.mil/fasclass/search_fs/search_fasclass.asp

Conditions of employment

• Must possess a TOP SECRET clearance with SCI prior to appointment.
• Must possess a Security+ Certification
• Ability to establish effective professional working relationships with coworkers and customers, contributing to a cooperative working environment and successful accomplishment of the mission.
• The duties and responsibilities of your job may significantly impact the environment. You are responsible to maintain awareness of your environmental responsibilities as dictated by legal and regulatory requirements.
• Selectee must meet position requirements for certification at Level II in Information Assurance Technician (IAT-II) within 6 months or less of appointment. Requirements may be found in DoD 8570.01-M Information Security Workforce Improvement Program.
• May be required to travel by car, in military and/or commercial aircraft, and by other means of transportation as appropriate, to perform temporary duty assignments.
• Irregular and overtime (compensatory) hours may be required to support operational requirements or contingencies.
• The employee will be required to have, or obtain, and maintain a valid driver’s license.
• Position is designated as OM-ADM-001 within the Defense Cybersecurity Workforce as guided by NIST SP 800-181. (https://www.nist.gov/itl/applied-cybersecurity/nice/nice-framework-resource-center).
• This position is designated as Essential Personnel and may be subject to duty in preparation for, or in response to, a state emergency or disaster declaration. This will not exceed 14 calendar days per year unless approved in advance by the TAG.
• This is a Testing Designated Position (TDP). The employee is subject to random drug testing. Pre-employment drug testing and participation in random drug testing is a condition of employment.
• This position is covered by the Domestic Violence Misdemeanor Amendment (30 Sep 96) of the Gun Control Act (Lautenberg Amendment) of 1968. An individual convicted of a qualifying crime of domestic violence may not perform the duties of this position.

Qualifications

GENERAL EXPERIENCE: Must have IT-related experience demonstrating each of the four competencies listed below.

1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

SPECIALIZED EXPERIENCE: One year of specialized experience at the next lower GS-grade (or equivalent). Specialized experience is experience that has equipped the applicant with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. The employing agency is responsible for defining the specialized experience based on the requirements of the position being filled.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Once the announcement has closed, your resume and supporting documentation will be used to determine if you meet the qualifications listed on this announcement. If you are minimally qualified, your resume and supporting documentation will be compared to your responses on the assessment questionnaire to determine your level of experience. If you rate yourself higher than is supported by your application package, your responses may be adjusted and/or you may be excluded from consideration for this position. If you are found to be among the top qualified candidates, you will be referred to the selecting official for employment consideration.

Your qualifications will be evaluated on the following competencies (knowledge, skills, abilities and other characteristics):

• Compliance
• Technical Problem Solving