This position is part of the Defense Human Resources Activity. The incumbent will be responsible for the reliability, security, and performance of critical infrastructure supporting DoD ID card issuance systems. This role requires a strong technical background in Public Key Infrastructure (PKI), smart card technology, network engineering, and cybersecurity, with a growing understanding of Post-Quantum Cryptography (PQC).
You may qualify at the GS-GS-14, if you fulfill the following qualifications: A. One year of specialized experience equivalent to the GS-13 grade level in the Federal service: Broad and in-depth knowledge of DoD's enterprise credential issuance infrastructure Prior experience in a technical implementation of large scale and complex credential issuance infrastructure components in a cross-agency environment Prior experience as a technical team lead guiding others through technical troubleshooting, transaction tracing through complex network, cyber security remediation and analysis-of-alternative processes Strong understanding of PKI concepts, including certificate authorities, digital certificates, and cryptographic algorithms such as Post-Quantum Cryptography (PQC) algorithms and technologies. Experience with smart card technology, including card management systems, smart card readers, and security protocols. Hands on experience in Hardware Security Module (HSM) and Key Management System. Demonstrated experience with the Risk Management Framework (RMF) process and achieving Authorization to Operate (ATO). Solid knowledge of network engineering principles, including TCP/IP, DNS, routing, and firewalls. Experience with monitoring and logging tools (e.g., Elastic stack, Splunk). Experience with cloud platforms (e.g., AWS, Oracle Cloud Infrastructure) and familiar with Oracle database. Experience in Site Reliability Engineering, DevOps, or a similar role. In addition to meeting qualifications, your application package must reflect the applicable experience to meet the Individual Occupational Requirements for the 2210, series as listed below: Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
As a SUPV IT SPEC (SYSANALYSIS) at the GS-2210-14 some of your typical work assignments may include: Provide technical leadership in the design, build, and maintain highly available and scalable infrastructure to support DoD ID Card issuance systems. Design and build system monitoring, performance and incident response of credential issuance systems. Define and track key performance indicators (KPIs) to measure ID Card issuance system reliability, security, and performance. Generate regular reports for stakeholders, perform capacity planning to ensure adequate resources are available to meet current and future demands of DoD Card issuance infrastructure. Lead conduct root cause analysis, implementing preventative measures, develop and maintain comprehensive monitoring and alerting systems to proactively identify and address potential issues regarding ID Card Issuance Infrastructure. Collaborate with different teams within organization to improve system reliability by developing and maintain automation scripts and system tools. Profile system performance and identify bottlenecks. Fine-tune system parameters for optimal performance. Oversee the management and integration of Hardware Security Module (HSM), Public Key Infrastructures (PKI) and DISA Certificate Authority (CA) used for digital certificates implementation within DoD Credential program. This includes certificate lifecycle management, key management, and adherence to relevant security standard. Lead research, evaluate, and plan for the integration of Post Quantum Cryptography (PQC) algorithms and Algorithm Evolution (AE) technologies to mitigate risks associated with quantum computing for ID Card issuance system and smart card platforms. Manage physical ID cards from requirements to secure destruction. Oversee for procurement & Logistics, handling vendor selection, ordering, shipping, receiving, and inventory control, testing and integration support of new token platform. Lead efforts to achieve and maintain Authorization to Operate (ATO) for ID card issuance systems, ensuring compliance with the Risk Management Framework (RMF) and other applicable security regulations. Ensure the security of network infrastructure supporting ID card issuance, including firewalls, intrusion detection/prevention systems. Contribute to the design and implementation of a Zero Trust architecture for ID card issuance systems, focusing on continuous authentication and least privilege access. Maintain compliance with relevant security regulations and policies (e.g., FIPS 201, NIST Special Publications 800-73-x). Manage and develop compliance testing methodology and testing plans for new and existing industry and federal standard of identity credential. Perform compliance checks based on internal and external regulatory requirements and submit testing reports to senior management and to government compliance agency.