This position is in the National Security Division (NSD) in the Office of Homeland Security (OHS), United States Department of Agriculture (USDA). As an Insider Risk Data Analyst, the incumbent will leverage User Activity Monitoring (UAM) tools and other data analytics to identify and analyze potential insider risks to the Department.
Applicants must meet all qualifications and eligibility requirements by the closing date of the announcement including basic IT competencies and specialized experience, as defined below. Basic Requirements: Applicants must meet the following individual occupational requirements in order to be considered for the 2210, Information Management Series: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Minimum Qualifications: In addition to meeting the Basic Requirements as shown above, applicants must also meet the Specialized Experience requirements as shown below. If qualifying based on experience, your application or resume must clearly show that you possess the specialized experience requirements. Specialized experience is defined as experience that is typically in or related to the work of the position to be filled and has equipped you with the particular knowledge, skills, and abilities to successfully perform the duties of the position. At the GS-12: Qualifying experience for GS-12 includes one year of specialized experience comparable to GS-11 which is directly related to the work of this position and which has equipped the applicant with the knowledge, skills, and abilities to perform successfully the duties of the position. For this position, specialized experience is performing all of the following: applying requirements, methods, and techniques of security incident investigation, to include fact-finding, analysis, risk assessment, resolution of security problems; performing system administration on cyber defense applications and systems; and, evaluating and monitoring user activity data for insider risks. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
Assists the Insider Risk Program Manager by evaluating existing capabilities of User Activity Monitoring tools.
Prioritizes the review and response on User Activity Monitoring alerts marked as critical or high severity.
Capturing relevant user activity data to identify potential insider risks.
Triages critical and high severity alerts generated by monitoring tools for the protection against insider risks.
Contributes to the development and improvement of insider risk training, policy, and procedures that are consistent with law, policy, and regulation.
Responsible for data collection and applying critical thinking to draft case reports, referral letters, and annual reports in support of the Insider Risk Program.
Briefs National Security Division leadership on highly technical and/or complex data for review and acceptance.