Clarification from the agency

"DO NOT APPLY THROUGH USAJOBS or EMAIL- APPLY ONLINE AT www.cbo.gov/careers"

The information security engineer develops and applies the tools and approach necessary to protect CBO's network and computer systems. This position involves a composite of engineering expertise with hands-on incident response and security analysis. The successful candidate will design, configure, and optimize security tools to enhance detection and response capabilities.

Conditions of employment

• US citizenship or current permanent residents seeking citizenship

SPECIAL REQUIREMENTS:

TOP SECRET BACKGROUND INVESTIGATION OR CLEARANCE

Qualifications

Candidates must have 8 to 10 years of information technology experience, with at least 5 years of recent experience in conducting risk analysis, analyzing audit logs, developing a zero trust architecture, identifying system vulnerabilities, and performing threat hunting to proactively identify and mitigate risks. The most important requirement for this position is demonstrated expertise in a variety of security systems and technologies currently in place. Candidates must also possess strong verbal and written communication skills, especially the ability to explain complex technical material clearly to senior staff, information systems professionals, and both technical and nontechnical users.
Specific duties include the following:
- Leading and participating in investigations of security incidents and ensuring rapid containment and remediation.
- Designing, implementing, and fine-tuning security tools and solutions, including Checkpoint EDR, CheckPoint VPN, iBoss, QRadar, and other security platforms.
- Developing and maintaining detection rules, alerts, and dashboards to improve visibility and threat detection.
- Integrating and optimizing threat intelligence feeds to enhance correlation and alerting capabilities.
- Troubleshooting and resolving performance issues with security tools and systems.
- Actively monitoring and managing security events, responding to alerts from SIEM and security tools.
- Aligning engineering and operations activities with federal requirements such as NIST 800-53, FISMA, and FedRAMP.
- Evaluating and recommending enhancements to security tools and processes.
- Staying current with emerging threats, vulnerabilities, and industry best practices to continuously evolve the security environment.
- Keeping track of tasks to ensure they are completed efficiently.
Candidates must be able to obtain and maintain a top-secret security clearance.

TECHNICAL QUALIFICATIONS:

Experience with information technology security concepts, NIST 800-53 controls and requirements, and the MITRE ATT&CK framework is preferred, as is knowledge of the fundamentals of AI and machine learning.
Recent experience with cloud security and advanced threat defense, firewall implementation and system penetration technology, malware detection, and network operating systems (the administration of Windows, Linux, or cloud operating systems is a plus) is required. Experience with information technology security concepts, NIST 800-53 controls and requirements, and the MITRE ATT&CK framework is preferred, as is knowledge of the fundamentals of AI and machine learning.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Your application includes your resume, responses to the online questions, and required supporting documents. Please be sure that your resume includes detailed information to support your qualifications for this position; failure to provide sufficient evidence in your resume may result in a not qualified determination. Those who aren't qualified will be informed and not considered further. Others will be referred to the hiring division for further consideration.

NOTE: To ensure consideration you must submit a complete application by June 2, 2025 at www.cbo.gov/careers (not USAJobs). Although we may continue to accept applications beyond that date, we are only ensuring that those who submitted by the deadline above will be considered. Should the hiring division wish to review candidates who applied after that date, we will then process those applications to determine if they are qualified and should be forwarded for management review.