Description:
Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information.The primary purpose of this position is to support security and information assurance and other critical functions within the Bioeffects Division (RHD).
Requirements:
Experience requirements are described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, Information Technology (IT) Management Series 2210 (Alternative A) . Due to the use of 120-day rosters, this period of experience may be completed within 120 days of the closing date of this announcement.SPECIALIZED EXPERIENCE: Applicants must have at least 1 year (52 weeks), or will have one year within 120 days of closing of this announcement, specialized experience equivalent to the DO-01, or equivalent grade level in the Federal service. Specialized experience includes planning, organizing, and managing Information Assurance (IA) Program activities for computer systems; serving as Information System Security Officer (ISSO/M); managing network security programs; implementing and advising on IT security policies and procedures; and/or serving as a Cybersecurity Liaison Officer.
Desired Qualifications
CERTIFICATIONS:
- Required Certifications: CompTIA Security+, CISSP and/or CISM
- Desired Certifications, but not necessary: CGRC/CAP, SSCP
EXPERIENCE:
- Experience in developing/researching/implementing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data;
- Experience in serving as, assisting, or assuming responsibilities of an Information Systems Security Manager (ISSM);
- Strong track record in conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs;
- Expertise with maintaining/assisting with a cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
- Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
- Knowledge of computer networking concepts and protocols, and network security methodologies.
- Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
- Skill in determining how an IT security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
- Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
- Continuously validate the organization's compliance with policies/guidelines/procedures/regulations/laws.
- Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
Feb 18, 2026;
from:
usajobs.gov