This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/job/476918200. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.
JOB DESCRIPTION: Information Assurance (IA) Technical Officers conduct comprehensive assessments and continuous monitoring of the operational and technical security controls employed within or inherited by an information system (IS) to determine the overall effectiveness of the controls. They provide assessments of threats and vulnerabilities, determine deviations from acceptable configurations or policy, assess the level of risk, and develop and/or recommend appropriate mitigation countermeasures. These officers also recognize potential security violations, report incidents, and mitigate any adverse impact. In addition, they conduct the integration/testing, operations, and maintenance of systems security.
Learn more about this agency08/14/2017 to 08/26/2017
$66,510 - $123,234 per year
IA 03
2 vacancies in the following location:
No
Permanent - This is a permanent position.
Full-time - Full Time
No
20171752
476918200
ADDITIONAL INFORMATION: The Office of the Chief Information Officer and Information Technology Services Directorate (CIOT) is seeking an experienced, innovative, highly motivated, self-starting Information Assurance Technical Officer (IATO). This individual is responsible for enabling the GEOINT Mission through the effective execution of the Risk Management Framework (RMF).
Typical functions include performing comprehensive security assessments of identified and applied security controls and provide summaries of assessments in Security Assessment Reports (SAR) that address the technical evaluation and results of assessment, identify weaknesses or deficiencies, and recommend corrective actions for risk mitigation. They provide security policy interpretation, conducting audits, providing briefings and presentations to senior audiences, negotiating among different parties, formulating positions across a wide range of information security issues, and project management of activities within their assigned area of work. They support the identification and assessment of IT security risk, mitigations, and mission tradeoffs in support of security risk acceptance decisions.
The IATO serves as a principal advisor on all matters, technical and otherwise, involving the security of their assigned information systems. This includes providing senior level analysis and review of security considerations in context of NGA missions and providing critical thinking in applying security controls to a system design. They may perform and provide risk tradeoff analysis to implement the policies, processes, models, assessments, and standards needed to recommend risk acceptance authorization for complex systems and mission enablement. They provide the information system owners (ISOs) detailed and constructive recommendations for correction, along with references to appropriate government regulations and explanations and desired specific outcome(s) of the corrections. They conduct activities and work with government personnel, supervisors, contractors, and liaise with other government agencies throughout the DoD and the IC.
SPECIAL INFO:
- Direct Deposit Required
- Two Year Probationary Period
- U.S. Citizenship Required
- Position Subject to Drug Testing
- Security Clearance Required
- Top Secret
- Sensitive Compartmented Information
- Polygraph Test Required
SPECIAL REQUIREMENTS:
You must be able to obtain and retain a Top Secret security clearance with access to Sensitive Compartmented Information. In addition, you are subject to a Counterintelligence Polygraph examination in order to maintain access to Top Secret information. All employees are subject to a periodic examination on a random basis in order to determine continued eligibility. Refusal to take the examination may result in denial of access to Top Secret information, SAP, and/or unescorted access to SCIFs.
Employees with SCI access and who are under NGA cognizance are required to submit a Security Financial Disclosure Report, SF-714, on an annual basis in order to determine continued eligibility. Failure to comply may negatively impact continued access to Top Secret information, Information Systems, SAP, and/or unescorted access to SCIFs.
NGA utilizes all processes and procedures of the Defense Civilian Intelligence Personnel System (DCIPS). Non-executive NGA employees are assigned to five distinct pay bands based on the type and scope of work performed. The employee's base salary is established within their assigned pay band based on their unique qualifications. A performance pay process is conducted each year to determine a potential base pay salary increase and/or bonus. An employee's annual performance evaluation is a key factor in the performance pay process. Employees on term or temporary appointments are not eligible to apply for internal assignment opportunity notices.
This position is a DCIPS position in the Excepted Service under 10 U.S.C. 1601. DoD Components with DCIPS positions apply Veterans' Preference to preference eligible candidates as defined by Section 2108 of Title 5 USC, in accordance with the procedures provided in DoD Instruction 1400.25, Volume 2005, DCIPS Employment and Placement. If you are an external applicant claiming veterans' preference, as defined by Section 2108 of Title 5 U.S.C., you must self-identify your eligibility in our ERecruit application.
This position is funded by the National Intelligence Program (NIP).
MANDATORY QUALIFICATION CRITERIA: For this particular job, applicants must meet all competencies reflected under the Mandatory Qualification Criteria to include education (if required). Online resumes must demonstrate qualification by providing specific examples and associated results, in response to the announcement's mandatory criteria specified in this vacancy announcement:
1.) Ability to identify systemic security issues based on the analysis of vulnerability and configuration data;
2.) Perform host and network based security control assessments, prepare assessment test reports, prepare and assess test plans, and provide formal recommendations in support of authorization and residual security risks;
3.) Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code, etc.);
4.) Knowledge of network security architecture and systems security engineering concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth);
5.) Using knowledge and experience to look at a situation objectively, setting aside any biases, and determining the best long term solution.
EDUCATION REQUIREMENT: A. Education: Bachelor's degree in Computer Information Systems, Computer Science, Information Technology, Information Science, Information Systems, or a related discipline. -OR- B. Combination of Education and Experience: A minimum of 30 semester (45 quarter) hours of college coursework in any area listed in option A, plus experience in IT security testing, or in a closely-related area that demonstrates the ability to successfully perform the tasks associated with this work. As a rule, every 30 semester (45 quarter) hours of college work is equivalent to one year of experience. Candidates should show that their combination of education and experience totals 4 years. -OR- C. Experience: Six years of experience in IT security testing, or a closely-related area that demonstrates the ability to successfully perform the tasks associated with this work. Information Assurance Technician I (IAT I) certification must be obtained within 6 months.
DESIRABLE QUALIFICATION CRITERIA: In addition to the mandatory qualifications, experience in the following is desired:
1.) Developing and/or applying Information Assurance/ Cybersecurity principles, policies, practices, standards, and controls, to include application of NIST Risk Management Framework (RMF), relevant to confidentiality, integrity, availability, authentication, and non-repudiation;
2.) Experience with virtual and cloud computing technologies and concepts;
3.) Experience with developing system security requirements;
4.) Knowledge of penetration testing principles, tools, and techniques (e.g., metasploit, neosploit); Information Assurance Technical (IAT) Level II certification in accordance with the DoD 8570-01-M; Degree and/or Certifications technical disciplines such as: Cybersecurity, Information Security, Computer Science, Information Technology, Information Systems, Systems Engineering, Electrical Engineering, Physics, Mathematics;
5.) Demonstrated creative thinking, problem solving, and analytical techniques;
6.) Continuously looking for ways to improve results, showing resourcefulness, and pushing for excellence.
You will be evaluated for this job based on how well you meet the qualifications above.
Applicants are NOT required to submit a cover letter. The entire cover letter cannot exceed the specified limits provided in the Cover Letter field (3,000 characters). Pages exceeding this limit will not be considered. THE COVER LETTER IS RECOMMENDED BUT IS NOT REQUIRED FOR EMPLOYMENT CONSIDERATION WITH THE NATIONAL GEOSPATIAL-INTELLIGENCE AGENCY.
APPLICANT EVALUATION PROCESS: Applicants will be evaluated for this job opportunity in three stages:
1) All applicants will be evaluated using the Mandatory Qualification Criteria,
2) Qualified applicants will then be evaluated by an expert or panel of experts using a combination of qualification criteria to determine the best-qualified candidates,
3) Best-qualified applicants may then be further evaluated through an interview process.
Applicants are encouraged to carefully review the Assignment Description, Additional Information Provided By the Selecting Official, and the Qualification Requirements; and then construct their resumes to highlight their most relevant and significant experience and education for this job opportunity. This description should include examples that detail the level and complexity of the performed work. Applicants are encouraged to provide any education information referenced in the announcement. If education is listed as a mandatory requirement, only degrees obtained from an institution accredited by an accrediting organization recognized by the Secretary, US Department of Education will be accepted.
As a condition of employment at NGA, persons being considered for employment must meet NGA fitness for employment standards.
In accordance with section 9902(h) of title 5, United States Code, annuitants reemployed in the Department of Defense shall receive full annuity and salary upon appointment. They shall not be eligible for retirement contributions, participation in the Thrift Savings Plan, or a supplemental or redetermined annuity for the reemployment period. Discontinued service retirement annuitants (i.e., retired under section 8336(d)(1) or 8414(b)(1)(A) of title 5, United States Code) appointed to the Department of Defense may elect to be subject to retirement provisions of the new appointment as appropriate. (See DoD Instruction 1400.25, Volume 300, at http://www.dtic.mil/whs/directives.)
All candidates will be considered without regard to race, color, religion, sex, national origin, age, marital status, disability, or sexual orientation.
NGA provides reasonable accommodations to applicants with disabilities. Applications will only be accepted online. If you need a reasonable accommodation for any part of the application and hiring process, please notify us at recruitment@nga.mil. The decision on granting reasonable accommodation will be on a case-by-case basis.
None
Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education.
Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.
Application submission involves applying using NGA's on-line application process. Application Instructions can be found by visiting: http://www.intelligencecareers.gov/NGA
All announcements close at 7:59PM EDT on the closing date listed. Be sure to complete and submit your application by that time in order to be considered.
ONLY ELECTRONIC SUBMISSIONS WILL BE ACCEPTED.
After visiting https://www.nga.mil/Careers and applying via NGA's on-line application process, applicants can follow their status via that same NGA on-line application functionality. Several other topics relating to what is involved in the hiring process and how long it takes can be found by visiting http://www.intelligencecareers.gov/NGA and choosing Frequently Asked Questions.
The Federal hiring process is set up to be fair and transparent. Please read the following guidance.
This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/job/476918200. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.
Learn more about