Information Technology Specialist (Cyber)

Department of Energy - Agency Wide | Pittsburgh, PA

Posted Date 4/01/2024
Description
These positions are to be filled under the OPM Government-Wide Direct Hire Authority for Cyber Positions for grades GS 12-15. This serves as a public notice for the use of the Direct Hire Authority in accordance with 5 U.S.C. 3327 and 3330 and 5 CFR 330. Under this recruitment procedure, applications will be accepted for each location/ installation identified in this Public Notice. There may or may not be actual/projected vacancies at the time you submit your application.
The Department of Energy is seeking motivated and highly-qualified candidates for exciting positions available in multiple locations throughout the United States.

The mission of the Energy Department is to ensure America's security and prosperity by addressing its energy, environmental and nuclear challenges through transformative science and technology solutions.

This series covers positions that manage, supervise, lead, administer, develop, deliver, and support information technology (IT) systems and services. This series covers only those positions for which the paramount requirement is knowledge of IT principles, concepts, and methods; e.g., data storage, software applications, networking. Additionally, these positions have a cybersecurity requirement which involves the security of and operations in cyberspace and encompasses the full range of threat reduction, vulnerability reduction, deterrence, international engagement, incident response, resiliency, and recovery activities, including computer network operations, information assurance, diplomacy, military, and intelligence missions as they relate to securing the global information and communication infrastructure.

As an IT Cybersecurity Specialist, at minimum you will:
  • Evaluate system security plans and procedures, and assist in managing and directing the operations and functions of the office support contractors, addressing IT out-of-compliance issues, preparing, implementing, monitoring, and updating the project plan
  • Develop Plans of Actions and Milestones (POA&Ms) to correct findings of non-compliance
  • Initiate, direct and participate in the full life cycle of cyber security appraisals and network penetration testing of geographically dispersed and operationally diverse agency facilities
  • Develop and recommend new and/or revised inspection, evaluation, and penetration testing methodologies for cyber security appraisals
  • Provide recommendations on implementation strategies and policy recommendations based on industry best practices and governing directives
  • Assist the Division by conducting research, conducting investigations of cyber events to include those that potentially violate regulatory requirements
  • Collaborate with senior leadership, departmental and contractor managers and staff in scheduling, planning, coordinating, and implementing the Independent Oversight Cyber Security Appraisal Program.

You must meet both the Basic Requirement and the Specialized Experience to qualify for this series as described below.

BASIC REQUIREMENT
Applicants must have IT-related education and experience demonstrating each of the four competencies listed below at a proficiency level equivalent to the next lower grade level in federal service.

  1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
  2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
  3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
  4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

SPECIALIZED EXPERIENCE REQUIREMENTS
In addition to the basic requirement, a qualified candidate's online application and resume must also demonstrate at least one year of specialized experience equivalent to the next lower grade level in the Federal service. Specialized experience for these positions are defined as:

GS-12: You must have one year of specialized experience equivalent to the next lower grade (GS-11). Specialized experience for this position is defined as meeting at least 2 of 4 of the following:
  • Assisting with monitoring and evaluating systems' compliance with IT security requirements;
  • Following standard procedures to implement IT security policies and procedures in the development and operation of network systems;
  • Participating in the collection and analysis of technical and management data associated with cyber security programs;
  • Participating in activities designed to ensure, protect, and restore IT systems, services and capabilities.
GS-13: You must have one year of specialized experience equivalent to the next lower grade (GS-12). Specialized experience for this position is defined as meeting at least 2 of 4 of the following:
  • Developing, implementing, and coordinating activities designed to ensure, protect, and restore IT systems, services and capabilities;
  • Monitoring and evaluating systems' compliance with IT security requirements;
  • Providing advice and guidance on implementing IT security policies and procedures in the development and operation of network systems;
  • Ensuring proper protection of evidence used in investigating computer crimes.
GS-14: You must have one year of specialized experience equivalent to the next lower grade (GS-13). Specialized experience for this position is defined as meeting at least 2 of 4 of the following:
  • Providing technical advice, counsel, and instruction on cyber security issues, including preparing various reports, briefings, summaries, and progress reports;
  • Initiating, directing, and participating in the full life cycle of cyber security appraisals and network penetration testing of geographically dispersed and operationally diverse company or agency facilities;
  • Integrating information systems security with other security disciplines and ensuring coordination and/or collaboration on security activities;
  • Evaluating and certifying systems or network accreditation.
GS-15: You must have one year of specialized experience equivalent to the next lower grade (GS-14). Specialized experience for this position is defined as meeting at least 2 of 3 of the following:
  • Presenting data to an audit team, performing spot audits, defending compliance positions or creating plans and procedures designed to meet industry, company, or governmental policies or regulatory requirements;
  • Developing and recommending new and/or revised inspection, evaluation, and penetration testing methodologies for cyber security appraisals;
  • Leading the development of long-range plans for IT security systems that anticipate, identify, evaluate, mitigate, and minimize risks associated with IT systems vulnerabilities.
NOTE: There is no substitute of education for experience at any of these levels.

"Experience" refers to paid and unpaid experience. Examples of qualifying unpaid experience may include: volunteer work done through National Service programs (such as Peace Corps and AmeriCorps); as well as work for other community-based philanthropic and social organizations. Volunteer work helps build critical competencies, knowledge, and skills; and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

OPM Qualification Standards for the GS-2210 series can be found at the following website: OPM Qualification Standards for the GS-2210 series.

CTAP/ICTAP candidates: To be considered "well qualified" you must meet all of the requirements as described in this section.

This public notice will be used to fill multiple positions as needed, therefore referral lists may be issued daily. Applications must be submitted and qualification requirements met by 11:59 p.m. ET each day in order to be referred on any certificates issued the following day.

Salary86,962.00 - 191,900.00 Annual

Share this job