Supervisory IT Specialist (INFOSEC)

To qualify for this position, applicants must meet all requirements by the closing date of this announcement, 05/19/2026. You may qualify based on your experience as described below: Basic Requirements: Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. For all positions individuals must have IT-related experience demonstrating each of the five competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND Selective Placement Factor: In addition to the minimum qualifications described above, you must meet the following requirement(s) to be considered qualified for the position: Supervise activities supporting VA audits and assessment activities in support of Federal and VA's risk management framework. Manage and support remediation of VA material weaknesses. Support audit compliance by generating and tracking audit metrics. Generate and track project plans to support VA audits and assessment activities. Support and facilitate communication and audit evidence gathering with several audit role players to include but not limited to VA executive management, Trusted Agents, Subject Matter Experts (SME), Enterprise Control Leads (ECL), Enterprise Control Providers (ECP) and System Control Providers (ECP). AND Specialized Experience: You must have one year of specialized experience equivalent to at least the next lower grade GS-13 in the normal line of progression for the occupation in the organization. Examples of specialized experience would typically include, but are not limited to: that includes being subject matter expert for the independent review and analysis of cybersecurity risk management data from multiple data sources to identify risks and systemic problems, and to determining the quality and appropriateness of cybersecurity risk management; conducting independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37); and performing cybersecurity risk management activities which are designed to improve the processes and procedures and overall cybersecurity of the enterprise. Applicant must also possess specialized experience supporting Risk Management Framework (RMF) compliance functions to include Governance, Risk and Compliance (GRC) capabilities and OIG Federal Information Security Management Act (FISMA) and Federal Information System Controls Audit (FISCAM) Audits. Applicants must also have specialized experience successfully supervising and managing teams of individuals with unique backgrounds and skill sets. For more information on these qualification standards, please visit the United States Office of Personnel Management's website at https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/. This is a Supervisory Information Technology Cybersecurity Specialist (INFOSEC) position with the purpose of supervising staff, developing and analyzing procedures and systems for identifying and assessing, mitigating and evaluating the effectiveness of VA's risk management framework in all aspects Information Technology. Risk management and compliance readiness is evaluated as it relates to both IT and traditional programs.