Skip to main content
U.S. flag
Back to results

Cybersecurity Specialist

Department of Justice
Federal Bureau of Investigation
This job announcement has closed

Summary

As an FBI IT Professional, your job is to ensure our law enforcement systems, as well as the entire cyberspace within which we work, are protected. This means applying your knowledge of computer technology, cybersecurity, and more to safeguard information across the FBI, as well as our domestic and international law enforcement partners.

Overview

Help
Reviewing applications
Open & closing dates
10/01/2025 to 10/10/2025
Salary
$63,163 to - $138,296 per year

Salary shown is the BASE SALARY for the grade level. Appropriate locality pay will be applied according to the location of the official duty station.

Pay scale & grade
GS 11 - 14
Locations
many vacancies in the following locations:
Huntsville, AL
Clarksburg, WV
Remote job
No
Telework eligible
No
Travel Required
Occasional travel - You may be expected to travel for this position.
Relocation expenses reimbursed
No
Appointment type
Permanent
Work schedule
Full-time
Service
Excepted
Promotion potential
14
Job family (Series)
Supervisory status
No
Security clearance
Sensitive Compartmented Information
Drug test
Yes
Financial disclosure
Yes
Bargaining unit status
No
Announcement number
DESTIMP-12779759-25-VL
Control number
846193100

This job is open to

Help

The public

U.S. Citizens, Nationals or those who owe allegiance to the U.S.

Federal employees - Competitive service

Current federal employees whose agencies follow the U.S. Office of Personnel Management's hiring rules and pay scales.

Federal employees - Excepted service

Current federal employees whose agencies have their own hiring rules, pay scales and evaluation criteria.

Internal to an agency

Current federal employees of the hiring agency that posted the job announcement.

Career transition (CTAP, ICTAP, RPL)

Federal employees whose job, agency or department was eliminated and are eligible for priority over other applicants.

Veterans

Veterans of the U.S. Armed Forces or a spouse, widow, widower or parent of a veteran, who may be eligible for derived preference

Military spouses

Military spouses of active duty service members or whose spouse is 100 percent disabled or died on active duty.

Individuals with disabilities

Individuals who are eligible under Schedule A.

Clarification from the agency

All U.S. Citizens.

Duties

Help

  • Monitor network traffic and security alerts for malicious activities and indicators of compromise (IOCs).
  • Conduct incident response analysis during possible security breaches, coordinating remediation activities and ensuring effective communication.
  • Conduct digital forensic investigations to support incident resolution, compliance, and regulatory requirements.
  • Drive continuous improvement in cybersecurity operations through innovation and adoption of new detection technologies.
  • Prepare comprehensive reports and briefings for leadership on incident findings, risk assessments, and threat intelligence updates.
  • Perform cyber threat intelligence analysis, including threat hunting, and manage Threat Intelligence Platforms (TIPs).

Requirements

Help

Conditions of employment

  • Must be a U.S. citizen
  • Must be able to obtain a Top Secret-SCI clearance
  • All federal employees who opted into the Deferred Resignation program (DRP) MUST resign prior to appointment in their new position.

Qualifications

GS-11: Applicant must possess at least one (1) year of SE equivalent to the GS-09 grade level. SE is defined as follows:

  • Demonstrated experience monitoring and analyzing network traffic, logs, and security alerts for basic indicators of compromise (IOCs) and suspicious activities.
  • Demonstrated experience supporting incident response efforts, under supervision, including documenting incidents, performing preliminary triage, and escalating as needed.
  • Exposure to cyber threat intelligence processes, including initial research, data enrichment, and contribution to Threat Intelligence Platforms (TIPs).
  • Familiarity with common cybersecurity tools (e.g., SIEMs, IDS/IPS) and basic scripting or query skills for analyzing security data.
GS-12: In addition to the above, applicant must possess at least one (1) year of SE equivalent to the GS-11 grade level. SE is defined as follows:
  • Demonstrated experience detecting, analyzing, and responding to security threats, including the ability to independently lead initial incident response activities and recommend remediation strategies.
  • Demonstrated experience conducting digital forensic investigations, such as log analysis, data extraction, malware analysis, and ensuring evidence integrity for legal and compliance purposes.
  • Experience in cyber threat intelligence operations, including threat hunting, adversary profiling, and integrating intelligence into the organization's defensive posture.
  • Strong ability to collaborate with internal and external stakeholders to resolve security incidents, communicate risks, and implement mitigations.
  • Experience integrating new tools or technologies into incident detection and response workflows.
GS-13: In addition to the above, applicant must possess at least one (1) year of SE equivalent to the GS-12 grade level. SE is defined as follows:
  • Demonstrated experience leading high-severity cybersecurity investigations, including coordinating cross-departmental efforts and developing comprehensive incident containment, eradication, and recovery strategies.
  • Demonstrated the ability to manage complex investigations, handle advanced malware analysis, perform network forensics, and ensure compliance with legal and regulatory frameworks.
  • Demonstrated experience managing threat intelligence platforms (TIPs) and leading threat intelligence operations, including collaborating with external intelligence-sharing communities and agencies.
  • Demonstrated leadership in mentoring and guiding junior specialists, and leading major IT projects.
GS-14: In addition to the above, applicant must possess at least one (1) year of specialized experience equivalent to the GS-13 grade level. SE is defined as follows:
  • Experience using project management practices to support various IT functions.
  • In-depth knowledge of IT and the application of advanced cybersecurity engineering concepts and practices.
  • Experience using information technology to identify, forecast, analyze, and research automated systems to discern solutions to problems, approaches, methods, and procedures.
  • Demonstrated capacity to lead a team of technical personnel, expertly communicate, and collaborate with subordinates, colleagues, stakeholders, partners, and executives to achieve results.
Desired Skills

Desired skills are NOT mandatory and will NOT be utilized to minimally qualify applicants.

Desired Skills are:
  • CompTIA Security + CE
  • Certified Ethical Hacking
  • CompTIA Cybersecurity Analyst +

Education

All degrees must be from an accredited college or university. Education may be substituted for specialized experience as follows:

Degrees must be in one of the following fields: computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management OR a degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks.

Education completed in foreign colleges or universities may be used to meet the above requirements provided you can show foreign education is comparable to that received in an accredited educational institution in the United States.

GS-11: Applicant must have a Ph.D. OR equivalent doctoral degree OR 3 full years of progressively higher level graduate education leading to such a degree OR LL.M., if related.

Additional information

This position advertised has been exempted from the federal civilian hiring freeze.

In order to recruit and retain highly qualified candidates, selectees may be eligible for relocation or recruitment incentives. To be eligible for a relocation incentive, proof of change of residency will be required. Prior to receiving a relocation or recruitment incentive, an employee must sign a written service agreement to complete a specific period of employment with the FBI at the new duty station.

Memorandum for Record: Work performed outside assigned duties (that would not normally be documented on an SF-50, i. e., back-up duties), has to be documented in detail by an immediate supervisor in order to receive full credit for amount of time worked in that position. If no documentation is furnished no credit will be given for time worked in that position. The following notations must be specified in the documentation (Memorandum for Record):
a. Percent of time worked in the particular position (cannot conflict with main duties).
b. The month/year work began.
c. Frequency worked (i.e., daily, monthly, etc.)
d. Specific duties performed.

Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Your application will be evaluated and rated under the FBI's Candidate Rating Procedures. Your resume and supporting documentation will be used to determine whether you meet the job qualifications listed in this announcement and will be compared to your responses to the online assessment questionnaire. High self-assessment in the vacancy questions that is not supported by information in your resume, and/or supporting documents may eliminate you from Most Competitive status.

Your application will then be placed in one of three categories: Most Competitive, Competitive, or Least Competitive. Names of candidates in the Most Competitive category will be sent to the hiring official for employment consideration. Veterans' preference will be applied.

Your session is about to expire!

Your USAJOBS session will expire due to inactivity in 8 minutes. Any unsaved data will be lost if you allow the session to expire. Click the button below to continue your session.