Senior Cybersecurity Specialist
JOB DESCRIPTION
Typical work assignments include:
- Serving as a Regional Cybersecurity Analyst within the Regional Office responsible for tracking, analyzing, reporting on, and assisting with deconfliction of critical data and information for steady-state activities, incident response operations, and analytical support activities.
- As a member of the Regional Operations Team, receives and coordinates cybersecurity service delivery data from headquarters, combines it with regionally delivered cybersecurity services data, and maintains a database of CISA- delivered cybersecurity services (assessments, training, and exercises) to stakeholders within the region for regional awareness, trends analysis, and reporting requirements.
- Supports regional assignment and completion of Administrative Subpoenas, entity notifications, and vulnerability notifications though tracking and coordination.
- Assists with processing of new requests for regional cybersecurity advisor-delivered services and tracks status through delivery. Coordinates to obtain status on headquarters delivered service requests.
- Maintains awareness of cybersecurity intelligence, threats, and operations and provides appropriate briefings to leadership.
- Helps identify trends and emerging intelligence and operational issues for regional leadership, in close coordination with field staff.
- Supports development and implementation of regional guidance for priority engagements, notifications, and other cybersecurity activities.
- Assesses regional critical infrastructure dependencies/interdependencies and impacts and identifies risk mitigation solutions.
- Analyzes data/information from one or multiple sources, coordinates and responds to requests for information, and develops requirements in support of cybersecurity planning and operations.
- Develops regional intelligence and risk assessments of critical infrastructure information technology (IT) and operational technology (OT) systems to identify threats, vulnerabilities, and consequences.
- Supports regional incident support operations during critical cyber-related events. Using available tools, conducts trend analysis related to indicators of compromise and other threats and hazards.
REQUIREMENTS – CONDITIONS OF EMPLOYMENT
- You must be a U.S. citizen.
- Selective Service – Males born after 12/31/59 must be registered or exempt from Selective Service, see http://www.sss.gov/
- All Federal employees are required to participate in Direct Deposit/Electronic Funds Transfer for salary payments.
- DHS uses E-Verify, an Internet-based system, to confirm the eligibility of all newly hired employees to work in the United States. Learn more about E-Verify, including your rights and responsibilities.
- This position has been identified as a drug testing designated position (TDP) for purposes of the CISA’s Drug-Free Workplace Program. All applicants tentatively selected for this position will be required to submit to a drug test to screen for illicit/illegal drug use prior to receiving a final offer of employment. A final offer of employment is contingent upon a negative drug test result. After appointment, you may be subject to periodic random drug testing.
- You must be able to obtain and maintain a security clearance suitable for Federal employment as determined by a background investigation. This may include a credit check, a review of financial issues, as well as certain criminal offenses and illegal use or possession of drugs.
- One-year probationary period may be required.
- This position may be designated as essential personnel. Essential personnel must be able to serve during continuity of operation events without regard to declarations of liberal leave or government closures due to weather, protests, and acts of terrorism or lack of funding. Failure to report for or remain in this position may result in disciplinary or adverse action in accordance with applicable laws, rules, and regulations (5 U.S.C. 7501-7533 and 5 CFR Part 752, as applicable).
QUALIFICATIONS
To be considered minimally qualified for this position, you must demonstrate that you have the required education or experience for the respective grade level in which you are applying:
EDUCATION: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks.
All academic degrees and coursework must be from accredited or pre-accredited institutions.
A transcript must be submitted with your application if you are basing your qualifications on education. Applications submitted without this information may not be considered.
GS-09
Master’s degree or equivalent graduate degree or two (2) full years of progressively higher-level graduate education leading to a master’s degree or equivalent graduate degree.
GS-11
Ph.D. or equivalent doctoral degree or three (3) full years of progressively higher-level graduate education leading to a Ph.D. or equivalent doctoral degree.
OR
EXPERIENCE: Experience must be Information Technology (IT)-related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate.
You must have IT-related experience demonstrating each of the four competencies listed below:
- Attention to Detail – Is thorough when performing work and conscientious about attending to detail.
- Customer Service – Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
- Oral Communication – Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
- Problem Solving – Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
AND
SPECIALIZED EXPERIENCE: In addition to meeting the qualification requirement listed above, you must have at least one year of specialized experience at the next lower GS-grade level (or equivalent). Specialized experience is experience that has equipped you with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT.
GS-09
You qualify for the GS-09 grade level if you have at least one (1) year of specialized experience at the GS-07 grade level (or equivalent) performing the following duties:
- Comprehending procedures used for documenting and querying reported cybersecurity incidents, problems, and events;
- Recognizing cyber threats and vulnerabilities; and
- Preparing and presenting cyber-related briefings.
GS-11
You qualify for the GS-11 grade level if you have at least one (1) year of specialized experience at the GS-09 grade level (or equivalent) performing the following duties:
- Recognizing various cyber-attack methods and techniques;
- Researching and implementing feedback from incidents and real-world situations to improve organizational cybersecurity operational processes, products, and services; and
- Understanding intelligence frameworks and utilizing multiple intelligence sources across all intelligence disciplines.
GS-12
You qualify for the GS-12 grade level if you have at least one (1) year of specialized experience at the GS-11 grade level (or equivalent) performing the following duties:
- Evaluating, analyzing, and synthesizing large quantities of data and metrics into high-quality, fused targeting/intelligence products;
- Writing, reviewing and editing cyber-related intelligence/assessment products from multiple sources to develop and implement guidance and recommendations for national critical infrastructure protection; and
- Interpreting national critical infrastructure protection and incident response laws, regulations, policies, and guidance documents.
GS-13
You qualify for the GS-13 grade level if you have at least one (1) year of specialized experience at the GS-12 grade level (or equivalent) performing the following duties:
- Developing and implementing mitigation guidance on various cyber-attack stages;
- Deciphering intelligence on cyber threats and vulnerabilities;
- Comprehending organizational issues, objectives, and operations in cyber as well as regulations and policy directives governing cyber operations of national critical infrastructure; and
- Possess the experience to lead regional projects across different functional areas to improve regional cybersecurity efforts for critical infrastructure.
National Service Experience (i.e., volunteer experience): Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
All qualification requirements must be met by the closing date of this announcement.
EDUCATION
If you are relying on your education to meet qualification requirements, you MUST submit a copy of your transcripts if you want to substitute your education for experience. Unofficial transcripts will be accepted that includes your name, the name of the educational institution, course title(s), number of credits, grade, and date of completion. An official transcript will be required if you are selected.
Education must be from an accredited institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education.
Foreign Education: Education completed in foreign colleges or universities may be used to meet the qualification requirements. You must show the education credentials have been evaluated by a private U.S. organization that specializes in interpretation of foreign educational credentials and such education has been deemed equivalent to that gained in an accredited U.S. education program. It is your responsibility to provide such evidence with your application. See Recognition of Foreign Qualifications for more information.
ADDITIONAL INFORMATION
- Permanent Change of Duty Station (PCS) Expenses will not be paid.
- Other incentives may be authorized.
- If you receive a conditional offer of employment for this position, you will be required to complete an Optional Form 306, Declaration for Federal Employment, and to sign and certify the accuracy of all information in your application, prior to entry on duty. False statements on any part of the application may result in withdrawal of offer of employment, dismissal after beginning work, fine, or imprisonment.
- This position has been designated excluded from bargaining unit representation under the national security provision of 5 USC Section 7112(B)(6).
- When entering a federal job at a grade level lower than the highest promotion potential level, you may be promoted to more complex duties and work more independently, as your career progresses. NOTE: Career ladder promotions are not automatic, and all eligibility and qualifications requirements must be met in order to progress to the next grade level.