Clarification from the agency

This announcement uses the OPM Federal Wide Direct Hire Authority to recruit and appoint qualified candidates to certain positions in the competitive service where a critical hiring need has been identified.

• Serve as Lead Information Technology Specialist (INFOSEC), Cybersecurity Operations (SECOPS) responsible for contributing to the Agency’s IT Security Program, directs SECOPS, coordinates, and maintains inputs to EEOC's IT Security Program.
• Advise and support the Chief Information Security Officer (CISO) on developments in Cybersecurity (CS), Information Security (INFOSEC) and IT Security emerging technical threat vectors, advanced persistent threats (APT), attack surface or weaknesses.
• Advise Agency-level technical implementation or introduction of policy and orders, proactively developing supporting documentation and drafts for implementation.
• Direct the Commission’s Cybersecurity Operations (SECOPS) cell, influences a range of the EEOC’s operations, many of which have a direct and corresponding impact to the mission of the EEOC and its' critical infrastructure.
• Enables and administrates incident handling (IH) and response (IR), security incident and event management (SIEM) dashboards, inputs, “playbooks” and metrics to achieve efficiency.
• Facilitates, coordinates, and administers EEOC's CyberSecurity Operations (SECOPS) in support of the Information Security (INFOSEC) Program, and aids Agency Information system security program officers.
• Advising authority for threat, vulnerability, and configuration management; conveys threat product recommendations to EEOC staff and customers; and provides expertise and insight to OIT for industry attack trends, mitigations, and active defenses.

Conditions of employment

• Must be a U.S. Citizen or National
• Males born after 12-31-59 must be registered for Selective Service
• Suitable for Federal employment, determined by a background investigation
• May be required to successfully complete a probationary period

Qualifications

IT-related experience; experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. Experience must have demonstrated each of the four competencies listed below.

1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Desirable Qualifications
Certification in one or more of the following: CISSP, CCSP OSCP, GIAC technical practitioner

For the GS-14: You must have one year of specialized experience equivalent to the GS-13 level in federal service.

Specialized experience must include demonstrated experience in leading and coordinating incident response activities to include detection, analysis, containment, eradication, and/or recovery; conducting threat intelligence and analysis techniques to include utilizing threat intelligence to proactively identify and mitigate potential threats; and applying security monitoring and detection methods to include ensuring continuous monitoring of networks, systems, and applications for security anomalies; and performing malware analysis techniques to include conducting static and dynamic malware analysis to understand malware behavior and impact; and serving as a working professional and utilizing technical knowledge and hands-on experience with security tools and processes. This includes administrating incident handling (IH) and response (IR), security incident and event management (SIEM) dashboards, inputs, "playbooks" and metrics to achieve efficiency; demonstrated ability to enhance SIEM, associated SOC/SECOPS toolsets and procedures to sustain posture, achieve cybersecurity maturity as well as sufficient continuous monitoring (CONMON); develop or maintain organizations cybersecurity policy incident and event monitoring (SIEM) triage and response procedures standard in compliance with established laws or regulations; provides guidance to staff on standardized approach for secure cloud offerings in support of secure services. Identify technical threat vectors, advanced persistent threats (APT), attack surface or weaknesses then implements practical technical mitigations and remediation where available.

Applicants must meet all eligibility requirements (e.g., time-in-grade and qualification requirements) within 30 days of the closing date specified in the vacancy announcement.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

This position will be filled through the Direct Hire Authority. Under this authority, competitive rating, ranking, and veterans' preference procedures do not apply. Once the application process is complete, your resume and supporting documentation will be used to determine whether you meet the job qualifications listed on this announcement. Applicants who meet minimum qualification requirements will be certified for further consideration. If you rate yourself higher than is supported by your application materials, your responses may be adjusted and/or you may be excluded from consideration for this job.

Your qualifications will be evaluated on the following competencies (knowledge, skills, abilities and other characteristics):

• Compliance
• Computer Network Defense
• Information Systems/Network Security
• Technical Competence

Career Transition Assistance Programs: These programs apply to employees who have been involuntarily separated from a Federal service position within the competitive service or Federal service employees whose positions have been deemed surplus or no longer needed. To receive selection priority for this position, you must: 1) meet CTAP or ICTAP eligibility criteria; 2) be rated well-qualified for the position with a score of 85 or above based on the competencies listed above; and 3) submit the appropriate documentation to support your CTAP or ICTAP eligibility. For more information visit: https://www.opm.gov/policy-data-oversight/workforce-restructuring/employee-guide-to-career-transition/

Equal Employment Opportunity
The United States government does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service or other non-merit factor.