IT CYBERSECURITY SPECIALIST (INFOSEC)

Basic Requirement: Applicants must have IT-related experience demonstrating the following competencies appropriate to, or above, the level of this position. For vacancies below the full-performance level of the position, the basic requirement will be evaluated on a developmental basis. Your resume and work experience should clearly support your ability to meet these competencies and will be evaluated as part of the entire application process. Attention to Detail – experience reviewing my own information technology-related work or data and have been asked by others to review their work or data to ensure accuracy, completeness, and consistency with standards. Customer Service – experience maintaining relationships with customers, assessing current information technology needs of customers, and developing or identifying information technology products and services that are tailored to meet customer needs. Oral Communication – briefing mid-level management and IT staff on the status of information technology systems, projects, or daily operations, including the communication of technical information to a non-technical audience. Problem Solving – identifying alternatives to address complex information technology-related issues by gathering and applying information from a variety of sources that provide a number of potential solutions. In addition to the Basic Requirement: One year of specialized experience equivalent in level of difficulty and responsibility to that of the next lower grade (GS-11) within the federal service, which demonstrates the ability to perform the duties of the position, is required. Specialized Experience is defined as: Identifying, implementing, testing, and remediating issues in accordance with technical security requirements for assigned technologies, environments and systems; interpreting, managing, or facilitating changes to cybersecurity policies and procedures; conducting assessment procedures of security controls; assisting with the development of security controls for common IT processes (e.g., access management) based on best practices, policies, and laws.