See below for important information regarding this job. Position will be filled at any of the locations listed below. Site specific salary information as follows: Battle Creek, MI: $124,531- $161,889 Columbus, OH: $129,946- $168,929 Dayton, OH: $129,169 - $167,919 Fort Belvoir, VA: $142,488- $185,234 New Cumberland, PA: $142,488- $185,234 Ogden, UT: $124,531- $161,889 Philadelphia, PA: $137,222- $178,388 Richmond, VA: $130,084- $169,108
To qualify for an IT Specialist (INFOSEC), your resume and supporting documentation must support: A. Specialized Experience: One year of specialized experience that equipped you with the particular competencies to successfully perform the duties of the position and is directly in or related to this position. To qualify at the GS-14 level, applicants must possess one year of specialized experience equivalent to the GS-13 level or equivalent under other pay systems in the Federal service, military, or private sector. Applicants must meet eligibility requirements including time-in-grade (General Schedule (GS) positions only), time-after-competitive appointment, minimum qualifications, and any other regulatory requirements by the cut-off/closing date of the announcement. Creditable specialized experience includes: - Develops and interprets policies, providing expert advice to management and other IT Specialists; - Utilizes (DoD) and/or National Institute of Standards and Technology (NIST) guidance and policy to protect the integrity, confidentiality, and availability of an organization's data and automated information systems by conducting and producing risk assessment reports; - Interprets and applies applicable laws, regulations and policies that affect Cyber Resilience, testing, and performance management; - Applies federal security requirements to assess and make security risk assessments for entities (Federal Organizations) with the intent to design, implement and operate internal controls to achieve its objectives related to operations, reporting and compliance; - Manages project and programs, to include including developing or ensuring the development of time-phased action plans; - Develops project controls, and monitoring project progression; overseeing the administration of contracts, and contract support; and preparing and providing status reports and briefings. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.
Serves as a Cybersecurity Integration and Development Project Manager ensuring that DLA is responsible, accountable, and in compliance with overarching DoD directives and guidance within assigned areas.
Serves as a member of, and in close coordination with, members representing organizational governance, risk, and compliance as part of a cross functional working group...
...e.g., ERM Office and/or Integrated Process Teams (IPT) for policies, procedures, and processes, to include implementation of any new initiatives.
Participates and leads in cybersecurity related (J6) discussions to clearly define objectives for identifying risks, defining risk tolerances, and identifying, analyzing, and responding to Cyber risks.
Performs multiple projects concurrently, e.g., DLA Strategic Initiatives, to include but not limited to, internally driven-integrated Command Post Exercises (CPX) and the ALCC.
Establishes and maintains effective and purposeful priority based daily bi-directional communication process to enhance agency Crisis Management support.
Integrates Mission Assurance processes to forecast the impact strategic alignment will have on cyber (J6) equities (e.g., Mission Relevant Terrain – Cyber, Task Assets).
Serves as a Cyber Integrator responsible for extracting information from several areas which could include, Critical Infrastructure, Application, Network, Cloud, and...
... Internet of Things (IoT) Security, and findings gleaned from CPX After Action Reports (AAR), etc., due to Cyber Integration's ever-increasing scope of engagement into DoD/DLA Enterprise-wide events.
Performs as a key stakeholder and Subject Matter Expert (SME) for agency cross-functional teams by identifying and addressing legacy, deficient...
... (or possibly non-existing) methodologies/ practices, and processes, e.g., principles of Enterprise Risk Management (ERM).