IT Specialist (INFOSEC)

Summary
This position is within the Office of Information Technology (OIT), Division of Information Security (DIS). The incumbent in this position serves as the IT security expert, responsible for planning, developing, organizing and coordinating IT security projects. The incumbent in this position reports to the Cybersecurity Incident Response Team Lead.

• Develop IHS-wide cybersecurity policies, standard operating procedures, guidelines and other documents in accordance with the National Institute of Standards and Technology (NIST), HHS, OMB and other applicable Federal Government requirements, guidance, and directives.
• Promote awareness of cybersecurity issues across the agency through a variety of methods such as email blasts, posters, newsletters, bulletins, presentations, conferences, National Cybersecurity Awareness Month and the IHS ISSA Training course.
• Manages Division of Information Security (DIS) projects and develop methodologies to assist in the monitoring of projects. Function as the project manager for various cybersecurity projects. Ensure that assigned DIS projects are appropriately approved, prioritized, documented, and managed to maximize the quality and value of deliverables and minimize defects, duplication of effort, and waste.
• Validates and maintains incident response plans and processes to address potential threats. Supports the Agency Chief Information Officer (CIO) in making decisions by providing written analysis of an incident with its effects on the agency security posture.
• Perform cyber defense incident triage, to include determining scope, and potential impact, identifying the specific vulnerability, and making recommendations.
• Prepares internal and external reports that may include providing audit liaison support to IT operations, such as the Federal Information Security Act (FISMA), Chief Financial Officer, and others as directed.
• Prepares position papers, executive submittals, presentations, memoranda, and other correspondences, as directed, in response to the most far-reaching proposals that relate to investigative findings, enterprise-wide information security policies and standards requirements or modifies existing organizational arrangements.

Requirements
Conditions of Employment

• Must pass pre-employment examination.
• Selectee may be subject to a probationary period
• U.S. Citizenship is required
• Selective Service Registration is required for males born after 12/31/1959
  

Successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit www.dhs.gov/E-Verify/.
Background Investigation

: If you are selected for this vacancy, you must undergo a pre-employment fingerprint check and background investigation. Fingerprint results and background investigation documentation must be cleared prior to hire. After you begin your employment, your continued employment is contingent upon the outcome of a complete background investigation as determined by the sensitivity level of your position. The investigation must find that you are suitable for Federal employment in your position. If you are found not suitable, you will be terminated after you begin work. If you make a false statement in any part of your application, you may not be hired; you may be fired after you begin work; or subject to possible criminal charges. You may be subject to a credit check as a part of the background investigation process.
Qualifications
To qualify for this position, your resume must state sufficient experience and/or education, to perform the duties of the specific position for which you are applying.
Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; social). You will receive credit for all qualifying experience, including volunteer and part time experience. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week.
To meet minimum qualification requirements, applications must meet 1) Basic, 2) Selective Placement Factor and 3) Minimum Qualification; to include Specialized Experience requirements.

• BASIC REQUIREMENT(S): Information Technology (IT) Management Series 2210 (Alternative A) (opm.gov)
  

For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below:

• Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
• Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
• Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
• Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.
• Selective Placement Factor Requirement: In order to be eligible for consideration, all applicants must possess:
• An active and valid CISSP - Certified Information Systems Security Professional certification.
• MINIMUM QUALIFICATIONS: Your resume must demonstrate at least one (1) year of specialized experience equivalent to at least the next lower grade (GS-12) level in the Federal service obtained in either the private or public sector.
  

Qualifying examples of specialized experience must include but is not limited to at least 3 of the 4 below requirements.

• Experience evaluating, developing and implementing cybersecurity policies, standard operating procedures, and guidelines based on National Institute of Standards and Technology (NIST) acceptable practices/standards.
• Experience capturing and analyzing network traffic, network signature development, network behavioral analysis, and conducting log analysis and anomaly detection for incident response.
• Experience conducting threat hunting and incident response capabilities and detection gap-analysis to identify courses of action for national mission capability enhancements.
• Experience correlating incident data to identify exploited vulnerabilities or system weaknesses and make recommendations that enable expeditious remediation.
  

You must meet all qualification requirements within 30 days of the closing date of the announcement.
Education
There are no education requirements.
Additional information
This position is eligible for remote work in accordance with the HHS Workplace Flexibilities policy. https://www.hhs.gov/about/agencies/asa/ohr/hr-library/990-1/index.html.
Federal Employees earn annual leave at a rate (4, 6 or 8 hours per pay period) which is based on the number of years they have served as a Federal employee. IHS may offer newly-appointed Federal employees credit for their directly related previous non-federal experience or active duty uniformed military service. This credited service can be used in determining the rate at which they earn annual leave.
Read more

• Help A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.
  

Review our benefits
Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.
IHS Headquarter
5600 Fishers Lane
Rockville, MD 20857
US