See below for important information regarding this job. Position will be filled at any of the locations listed below. Site specific salary information as follows: Battle Creek, MI: $89,508 - $ 116,362 Columbus, OH: $93,400 - $121,422 Dayton, OH: $92,841- $120,696 Fort Belvoir, VA: $102,415- $133,142 New Cumberland, PA: $102,415- $133,142 Ogden, UT: $89,508 - $ 116,362 Philadelphia, PA: $98,630- $128,221 Richmond, VA: $93,499- $121,551
To qualify for an IT Specialist (INFOSEC), your resume and supporting documentation must support: A. Specialized Experience: One year of specialized experience that equipped you with the particular competencies to successfully perform the duties of the position and is directly in or related to this position. To qualify at the GS-12 level, applicants must possess one year of specialized experience equivalent to the GS-11 level or equivalent under other pay systems in the Federal service, military, or private sector. Applicants must meet eligibility requirements including time-in-grade (General Schedule (GS) positions only), time-after-competitive appointment, minimum qualifications, and any other regulatory requirements by the cut-off/closing date of the announcement. Creditable specialized experience includes: - Applies regulations governing the Cyber Assurance Program in order to interpret/clarify, investigate, isolate and resolve issues affecting the security and constant reliability of DLA's Systems/Applications Apply federal security requirements (i.e., Clinger-Cohen Act, Federal Information Security Modernization Act, RMF, National Institute of Standards & Technology Special Program 800, Office of Management & Budget (0MB) A-130) to assess and conduct security risk assessments. Experience with RMF assessment tools such as eMASS, Xacta, CSET, or similar tools used within the Department of War. B. Education: Applicants may not qualify for this position based on education in lieu of specialized experience. For all positions individuals must have IT-related experience demonstrating each of the four competencies listed: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
Serves as a cybersecurity Subject Matter Expert (SME) and Information System Security Manager (ISSM), providing cybersecurity assistance to the Primary ISSM, as well as guidance to Program/System Managers (PM/SM).
As an ISSM, performs the assessment of the Risk Management Framework (RMF) security controls once implemented by System/Program Offices. Requires familiarity with NIST 800-553 rev. 5.
Responsible for supporting cybersecurity project plan development and management, cybersecurity policy and process development, cybersecurity technology assessments and analysis, and related cybersecurity guidance interpretation and dissemination.
Works with various DLA cybersecurity elements to recommend revisions and updates to cybersecurity policy, plans and assessments.
Performs cybersecurity analysis to ensure RMF security controls are actively applied in order to facilitate confidentiality, integrity, authentication, and non-repudiation.
Monitors implementation of security guidance and directs appropriate action to resolve identified discrepancies and/or deficiencies.