IT CYBERSECURITY SPECIALIST (INFOSEC)

In order to qualify, you must meet the quality experience requirements described in the Office of Personnel Management (OPM) Qualification Standards, Information Technology (IT) Management Series 2210 (Alternative A). BASIC REQUIREMENT OR INDIVIDUAL OCCUPATIONAL REQUIREMENT: For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. In addition to meeting the basic requirement above, to qualify for this position you must also meet the qualification requirements listed below: EXPERIENCE REQUIRED: Your resume must reflect the quality level of experience which demonstrates the possession of the knowledge, skills, abilities, and competencies necessary for successful job performance required for this position. Examples of creditable experience include: knowledge of a wide range of cybersecurity concepts, principles, and practices. Knowledge of Cross Domain Solutions technologies, IT server and client technologies, network security architecture, threat assessment methodologies, common system vulnerabilities and the ability to analyze and resolve cybersecurity problems. KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: 1. Extensive knowledge of risk management processes and requirements in alignment with Risk Management Framework (RMF), and organizational risk management directly related to the display, discussion, processing, storage, and connectivity of classified data. 2. Advanced knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth, Zero Trust, Cross Domain Solutions, data-centric security) relative to information technology (IT) goals and objectives. 3. Advanced knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation) and ability to assess risk in application of these principles and requirements to protect systems and applications against security threats and vulnerabilities. 4. Proficient knowledge of incident response and handling methodologies. 5. Skill in reviewing operational requirements and application of network/device/software protection methods (e.g., security controls, control systems, intrusion detection/protection systems, network data flow controls, identity and access management schemas, etc.) PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week. VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. Click on "Learn more about this agency" button below for IMPORTANT additional information. The primary purpose of this position, IT Cybersecurity Specialist (INFOSEC), GG-2210-12, is to serve as a Cybersecurity Specialist, performing Risk Management Framework (RMF) package reviews and security assessments for Air Force Materiel Command (AFMC) systems within the Air Force Intelligence Community (IC).