Information Technology (IT) Specialist (Information Security (INFOSEC)

Deputy Assistant Secretary for Information and Technology | Altoona, PA

Posted Date 4/05/2019
Description The Information System Security Officer (ISSO) is a position in the Office of Information Technology (OIT), IT Operations and Services (ITOPS), Enterprise Security Operations (ESO). In this position, you will support either a VA facility or specified program area of responsibility and reports to the Information System Security Manager (ISSM) .Please read this public notice in its entirety prior to submitting your application. The opening period has been extended to October 4th, 2019

You are applying to a public notice that will be used to fill current and future vacancies. Please note, there may or may not be actual/projected vacancies at the time you submit your application. Your resume and any supporting documentation will be retained with other applicants and reviewed as vacancies occur.

We will not review your resume for qualifications until we receive a request to fill a vacancy using this public notice at which time you will be notified about the status of your application. You will not receive a notice regarding the status of your application other than the initial acknowledgement until a request is received to fill a position using this public notice.

Major Duties:
  • Actively participate in network and systems design to ensure implementation of viable systems security policies and procedures.
  • Conduct systems security evaluations, audits and reviews; and develop Automated Information Systems (AIS) security contingency plans and disaster recovery procedures, as part of the local business continuity team.
  • Monitor and track controlled access programs to ensure implementation and viability of appropriate systems security policies, as well as the acquisition of IT security tools.
  • Conduct vulnerability analysis and risk assessment studies of planned and installed information systems to assure that local AIS security plans and policies established are adequate for protection needs and comply as required by statute.
  • Facilitate and coordinate the gathering, analysis and preservation of evidence used in addressing security violations.

Work Schedule: Monday-Friday 8:00am - 4:30pm. Compressed/Flexible Schedule available upon supervisory approval.

Virtual: This is not a virtual position

Telework: Available upon supervisory approval

Relocation/Recruitment Incentives: Not Authorized

Financial Disclosure Report: Not Required

Compressed/Flexible Schedule: Available

Position Description Title/PD#: IT Specialist (INFOSEC), PD# 06047A/06024A

Physical Requirements: The work is primarily sedentary in nature. No special physical demands are required to perform the work.

Promotion Potential: The selectee may be promoted to the full performance level without further competition when all regulatory, qualification, and performance requirements are met. Selection at a lower grade level does not guarantee promotion to the full performance level.This position involves a multi-grade career ladder. The major duties listed below represent the full performance level of GS-12. At the GS-11 grade level, you will perform assignments of a more limited scope and with less independence. You will progressively acquire the background necessary to perform at the full performance level of GS-12. Promotion is at the discretion of the supervisor and is contingent upon satisfactory performance, availability of higher level work, and availability of funds.

To qualify for this position, applicants must meet all requirements by the closing date of this announcement.

Selective Placement Factor: This position includes a skill, knowledge, ability or other worker characteristic basic to -and essential for- satisfactory performance of the job. Selective Placement Factors are a prerequisite to appointment and represent minimum requirements for a position. Applicants who do not meet it are ineligible for further consideration. Evidence of the Selective Placement Factor must be reflected in your resume.

The Selective Placement Factor for this position is: You must possess knowledge and application of information security guidance and laws pertaining to any of the following: National Institute of Standards and Technology (NIST) Special Publications, Federal Information Processing Standards (FIPS), Federal Information Security Modernization Act of 2014 (FISMA), Risk Management Framework (RMF), DOD Information assurance Certification and Accreditation Process (DIACAP), Sarbanes-Oxley (SOX), or SAS-70.


AND

You may qualify based on your education/experience, as described below:

For all grade levels for this position individuals must have IT-related experience demonstrating each of the four competencies listed below.

1) Attention to Detail - Is thorough when performing work and conscientious about attending to detail.

2) Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.

3) Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.

4) Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

AND

Specialized Experience: You must have one year of specialized experience equivalent to the next lower grade level in the federal service; experience that equipped the applicant with the particular knowledge, skills and abilities (KSA's) and other characteristics to perform successfully the duties of the position, and that is typically in or related to the work of the position to be filled, in the normal line of progression for the occupation in the organization.

For the GS-11, you must have one year of specialized experience equivalent to the GS-9 level that includes: conducting systems security evaluations and reviews of policy enforcement practices to ensure secure information systems reliability and accessibility; evaluating local Automated Information System (AIS) security program(s) to protect AIS from unauthorized access.

For the GS-12, you must have one year of specialized experience equivalent to the GS-11 level that includes: developing procedures and conducting systems security evaluations, audits and reviews of policy enforcement practices to ensure secure information systems reliability and accessibility; developing Automated Information Systems (AIS) security contingency plans and disaster recovery procedures as part of a local business continuity team.

OR

Education: Applicants may substitute education for the specialized experience required for each grade level. (Unofficial Transcripts Required)

For the GS-11, you must have a Ph.D. or equivalent doctoral degree; or 3 full years of progressively higher level graduate education leading to a Ph.D. or equivalent doctoral degree.

For the GS-12, there is no substitution for education for specialized experience at this grade level.

Note: Undergraduate and graduate degrees must be in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. (Unofficial Transcripts Required)

Note: Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religions; spiritual; community; student; social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Share this job