Clarification from the agency

All Members of the Washington Air National Guard, or U.S. Citizens willing to join the Washington Air National Guard

A GS-2210-11, IT SPECIALIST (INFOSEC):

• Serves as the Wing Information Assurance Manager. Applies Information
  Technology (IT) security principles, methods, and security products to protect and
  maintain the availability, integrity, confidentiality, and accountability of
  information system resources and information processed throughout the system's
  life cycle. Establishes and publishes base-wide policy to manage the INFOSEC (also
  known as COMPUSEC) program and provides advice and guidance in its
  implementation and in procedures used in the development and operation of
  systems. Assists all base organizations in the development of their individual
  INFOSEC program. Disseminates information and ensures computer security
  practices are adhered to by all functional areas. Reviews, analyzes, and validates
  certification and accreditation (C&A) packages. Continuously identifies and
  analyzes threats and vulnerabilities to the information systems to maintain an
  appropriate level of protection. Ensures computer software designs address
  information system security requirements. Accomplishes risk analysis, security
  testing, and certification due to modifications or changes to computer systems.
  Evaluates, assesses, or locally tests and approves all hardware, software, and
  firmware products that provide security features prior to use on any accredited
  information system or network. Certifies all software prior to installation and use
  on communications and computer systems. Executes computer security plans and
  enforces mandatory access control techniques such as trusted routers, bastion
  hosts, gateways, firewalls, or other methods of information systems protection.
• Manages the Network Security Program. Maintains required information
  assurance certification IAW DoD 8570.01-M, Federal Information Security
  Management Act of 2002, Clinger Cohen Act of 1996. Implements and advises on
  IT security policies and procedures to ensure protection of information transmitted
  to the installation, among organizations on the installation, and from the
  installation using Local Area Networks (LAN), Wide Area Networks (WAN), the
  World Wide Web, or other communications modes. Utilizes current and future
  multi-level security products collectively to provide data integrity, confidentiality,
  authentication, non-repudiation, and access control of the LAN. Reports to
  MAJCOM, Air Force Communications Agency, National Security Agency, and Air
  Force Computer Emergency Response Team all incidents involving viruses,
  tampering, or unauthorized system entry. Controls access to prevent unauthorized
  persons from using network facilities.
• Serves as the Communications Security (COMSEC) Manager for all
  cryptographic activities including managing the Cryptographic Access Program
  (CAP). Formulates and develops communications security criteria and
  requirements for inclusion in mobility, contingency, and exercise plans. Maintains
  accountability for sensitive cryptographic materials and related COMSEC
  information. Oversees issuance of COMSEC materials. Maintains COMSEC
  inventory. Prepares and evaluates written plans for emergency actions and
  ensures personnel are fully qualified in the execution of plans. Investigates
  COMSEC security incidents to determine the possibility of compromise to COMSEC
  materials and ensures documentation and reporting to appropriate channels.
  Performs destruction, receiving, issuing transferring and inspecting COMSEC
  material within the most stringent timelines.
• Implements and manages the Electronic Key Management System (EKMS)
  program. This includes system configuration and operation of the Local
  Management Device, Data Transfer Device, and Key Processor. Initializes the
  system, performs system backups, determines operator access, and control
  functions (privilege management), reloads and configures the operating system's
  parameters. Installs or oversees installation of local COMSEC account hardware
  and software, including training alternates in the AFEKMS operations. Serves as
  secure voice equipment (e.g., STE, secure VoIP) user Representative and
  Emissions Security Program Manager. Develops, implements, and monitors
  security systems for the protection of controlled cryptographic cards, documents,
  ciphers, devices, communications centers, and equipment.
• Adheres to management control plan requirements by conducting self inspection
  and staff assistance visits. Resolves identified discrepancies
• Other duties as assigned.

Conditions of employment

MILITARY REQUIREMENTS:

Military Grades: E1-E6

Compatible Military Assignments: 1D771Q

- Applicants need not be assigned to the position or possess the AFSC to apply or be considered for selection. Selected applicant must be assigned to a compatible Military position and attain AFSC within 1 year of appointment action.

- Participation in direct deposit is mandatory.

- Males born after 31 December 1959 must be registered for Selective Service.

- Must maintain membership in the WA Air National Guard for continued employment.

- Must be able to obtain and maintain the appropriate security clearance of the position.

- This position is covered by the Domestic Violence Misdemeanor Amendment (30 Sep 96) of the Gun Control Act (Lautenberg Amendment) of 1968. An individual convicted of a qualifying crime of domestic violence may not perform the duties of this position.

- Position requires ability to establish effective professional working relationships with coworkers and customers, contributing to a cooperative working environment and successful accomplishment of the mission.

- May occasionally be required to work other than normal duty hours; overtime may be required.

- The duties and responsibilities of your job may significantly impact the environment. You are responsible to maintain awareness of your environmental responsibilities as dictated by legal and regulatory requirements, your organization, and its changing mission.

Qualifications

GENERAL EXPERIENCE:
Experience, education or training that has provided a basic knowledge of data processing functions and general management principles that enabled the applicant to understand the stages required to automate a work process. Experience may have been gained in work such as computer operator or assistant, computer sales representative, program analyst, or other positions that required the use or adaptation of computer programs and systems.

SPECIALIZED EXPERIENCE:
Must have at least 36 months of experience, education, or training that approaches techniques and requirements appropriate to an assigned computer applications area or computer specialty area in an organization. Experience planning the sequence of actions necessary to accomplish the assignment where this entailed coordination with others outside the organizational unit and development of project controls. Experience that required adaptations of guidelines or precedents to meet the needs of the assignment. Experience preparing documentation on cost/benefit studies where is involved summarizing the material and organizing it in a logical fashion.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Once the announcement has closed, your resume and supporting documentation will be used to determine if you meet the qualifications listed on this announcement. If you are minimally qualified, your resume and supporting documentation will be compared to your responses on the assessment questionnaire to determine your level of experience. If you rate yourself higher than is supported by your application package, your responses may be adjusted and/or you may be excluded from consideration for this position. You may also be excluded from consideration if you indicate that you are unwilling to accept the lower grade and a determination is made that you are not qualified at the higher grade. If you are found to be among the top qualified candidates, you will be referred to the selecting official for employment consideration.

Verbiage displayed on your resume or application must contain your own words. You may refer to position descriptions, as well as the general and specialized experience located within the vacancy announcement, to assist with describing work experiences; however, resumes or applications received in verbatim will not be considered. In your resume you will need to address the general and specialized experience listed above. Please use as much detail as needed, giving dates (months and years) of the experience, position title and how the experience was gained. This information is needed to determine if you are qualified for the position.

Your qualifications will be evaluated on the following competencies (knowledge, skills, abilities, and other characteristics). NOTE: You do not have to respond to the KSA's separately but your resume should contain sufficient information to demonstrate possession of the KSA's.

• Extensive knowledge of the organizational structure of the state, to include technical knowledge of the data flow and requirements at each level in the state command structure.
• Extensive knowledge of computer operating systems and network operating systems, to include but not limited to, Windows NT, Windows 2000, CISCO OS, and UNIX. Operational and technical knowledge of all types of database engines, system configurations, and formats in use in the network infrastructure. This may include, but is not limited to, Structured Query Language (SQL), Microsoft Access, Oracle, Informix, and Sybase.
• Extensive knowledge of security required for Network Operating Systems (NOS) in the state and the impact they have on data flow and capabilities. This may include but is not limited to, Windows NT, Windows 2000, UNIX (NETBIOS over TCP/IP and TCP/IP), and NOVELL (IPX / SPX).
• Extensive knowledge of the critical systems within the state and ability to prioritize protection of these and respond to new requirements in the IT architecture.
• Thorough knowledge and sufficient skill to conduct effective security reviews of present systems and networks and to recommend revised or new measures based upon accreditation reviews or new equipment fielding requirements.
• Sufficient knowledge to evaluate various authentication technologies and recommend purchase of hardware, software, or both to meet security requirements. Implementation includes adequate administration and oversight of the program.