This position is being recruited under 10 USC 1599f into the Cyber Excepted Service and does NOT convey eligibility to be converted to the Competitive Service. It has been identified as a position necessary to carry out and support the mission of the US Cyber Command. It is in the professional Work Category at the full performance Work Level within the CES Occupational Structure. It is located in the DISA - FE/Special Services/Infrastructure Office.
In order to qualify for this position, you must meet the requirements described below. Basic Requirements: Undergraduate or Graduate Education: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. OR Attention to Detail - experience reviewing my own information technology-related work or data and have been responsible for reviewing the work of others to ensure accuracy, completeness, and consistency with standards Customer Service - developing and maintaining relationships with customers, anticipating and assessing the current and future information technology needs of customers, and developing or identifying information technology products or services that are tailored to meet customer needs Oral Communication - briefing senior-level management and IT staff on the status of information technology systems, projects, or daily operations, including the communication of complex technical information to a non-technical audience Problem Solving - identifying alternatives to address unique, highly complex, or sensitive information technology-related issues. I have anticipated information technology-related problems and have identified and evaluated potential sources of information to generate alternative solutions AND Qualifying Experience: To qualify at the GG-13, your resume must describe at least one year of experience that demonstrates the competencies necessary for immediate success in the position. Experience refers to any paid or unpaid experience, including volunteer work and Military service, that would be considered equivalent to work normally performed at the next lower grade level in the federal service. For this position, qualifying experience is defined as: Experience managing projects related to cyber security over a range of information technology disciplines, systems, and applications; information systems security management.
As the ISSM or ISSO, evaluates DoD and DISA information systems to assess security effectiveness and reviews security artifacts for system authorizations, assessing both the technical and functional adequacy of the cybersecurity controls.
Develops an authorization package with all required artifacts in accordance with NIST SP 800-37 that includes risk analysis/assessment and determination along with recommendations for the Authorizing Official's authorization decision.
Continually reviews computer security technology developments applicable to system and/or network design, development, operations, and maintenance
Reviews various information system's Risk Management Framework (RMF) Assessment and Authorization (A+A) packages in eMass including but not limited to security control test results and System Security Plan (SSP).
Reviews Plan of Action and Milestones (POAM, authorization boundary diagrams, Security Assessment Reports (SAR), and Security Technical Implementation Guide (STIG) results.