Logo
U.S. Army Cyber Command

IT Specialist (INFOSEC)

U.S. Army Cyber Command, Fort Knox, Kentucky, United States, 40122


Summary About the Position: This position is a DOD Cyber Excepted Service (CES) personnel system position in the Excepted Service under 10 USC 1599f. Employees occupying CES positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction 1400.25. Serves as a Vulnerability Assessment Analyst in support of Information Systems Security Manager (ISSM). Responsibilities Provide oversight of the installation Information Assurance Vulnerability Management (IAVM) and Anti-virus programs. Disseminates Information Assurance Vulnerability Alerts (IAVAs) to System/Network Administrators (SAs/NAs). Conduct network security scanning for threat and vulnerability assessments to assess and determine effective measures to minimize risks and ensure local area network (LAN) is operational and secure. Ensure patches, hot fixes, system change packages, and Assurance Vulnerability definition updates are applied, as directed by the Command. Reports program effectiveness to the ISSM and the Cybersecurity Division Chief. Report security incidents and technical vulnerabilities to the Regional Cyber Center, and other Army agencies, as required. Utilizes the Army Enterprise Service Management Platform (AESMP) system to report and resolve customer issues. Assist the Cybersecurity contingency planning programs for data processing for the installation and for other activities across the supported communities. Assist in ensuring that security procedures are in place for recovery from loss or destruction of data and program files, or from physical damage to the installation. Plan, develop, and implement standard operating procedures and periodically tests security procedures to make certain they work. Requirements Conditions of Employment Qualifications Who May Apply: Only applicants who meet one of the employment authority categories below are eligible to apply for this job. You will be asked to identify which category or categories you meet, and to provide documents which prove you meet the category or categories you selected. See Proof of Eligibility for an extensive list of document requirements for all employment authorities. Army CES positions apply Veteran's Preference to preference eligible candidates, as defined by Section 2108 of Title 5 U.S.C., in accordance with the procedures provided in DoD Instruction 1400.25, Volume 3005, "CES Employment and Placement". If you are a veteran claiming veterans' preference, as defined by Section 2108 of Title 5 U.S.C., you must submit documents verifying your eligibility with your application package. In order to qualify, you must meet the education or experience requirements described below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). You will receive credit for all qualifying experience, including volunteer experience. Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application. Additional information about transcripts is in this document. To qualify based on your experience, your resume must describe at least on year of specialized experience that demonstrates the possession of knowledge, skills, abilities, and competencies necessary for immediate success in the position. Such experience is typically in or directly related to the work of the position to be filled. To qualify based on your experience, your resume must clearly describe the following quality experience:participating in risk or vulnerability analyses for organizational information systems; using software tools or anti-virus programs to protect information systems; reporting security incidents or technical vulnerabilities to higher authority as required; and conducting information security surveys or inspections for compliance. The specialized experience must include, or be supplemented by, information technology related experience (paid or unpaid experience and/or completion of specific, intensive training, as appropriate) which demonstrates each of the four competencies, as defined: (1) Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Examples of IT-related experience demonstrating this competency include: completing work independently that rarely requires editing or review by others. (2) Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Examples of IT-related experience demonstrating this competency include: resolving simple and routine problems, questions, or complaints and providing support and guidance to customers on non-routine issues; serving as a primary resource for customers, requesting assistance with complex issues when necessary; and participating in meetings and providing advice to customers in own area of expertise. (3) Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Examples of IT-related experience demonstrating this competency include: expressing facts and ideas in a clear, concise, convincing, and organized manner; clearly conveying moderately complex ideas, concepts, and information to customers; exhibiting active listening by demonstrating understanding of audience comments and/or questions. (4) Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Examples of IT-related experience demonstrating this competency include: identifying and solving problems by gathering and applying information from a variety of materials or sources that provide several alternatives; recognizing and taking action to address non-routine problems; soliciting feedback from multiple stakeholders to understand an issue or problem and accurately assess its root causes and potential solutions; seeking supervisory review where appropriate. OR Education: Ph.D. or equivalent doctoral degree or 3 full years of progressively higher level graduate education leading to such a degree from an accredited or pre-accredited institution in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management; or, three full years of graduate education from an accredited or pre-accredited institution that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems, or networks. Education FOREIGN EDUCATION: If you are using education completed in foreign colleges or universities to meet the qualification requirements, you must show the education credentials have been evaluated by a private organization that specializes in interpretation of foreign education programs and such education has been deemed equivalent to that gained in an accredited U.S. education program; or full credit has been given for the courses at a U.S. accredited college or university. For further information, visit: https://sites.ed.gov/international/recognition-of-foreign-qualifications. Additional Information If you are a current federal career/career-conditional employee, you will be placed on an excepted appointment. This position is in the Professional Category at the Full Performance within the CES Occupational Structure. Male applicants born after December 31, 1959, must complete a Pre-Employment Certification Statement for Selective Service Registration. You will be required to provide proof of U.S. Citizenship. Direct Deposit of Pay is required. Must be able to obtain and maintain a Secret security clearance. Incumbent (or Selectee) is required to satisfactorily complete the appropriate training and obtain the required certification/recertification for this position as outlined in DoDM 8140.03 Cyberspace Workforce Qualification and Management Program dated 15 February 2023. Selection is subject to restrictions resulting from Department of Defense referral system for displaced employees. If you have retired from federal service and you are interested in employment as a reemployed annuitant, see the information in the Reemployed Annuitant information sheet. This is an Information Technology Management Career Field position. TERM: This announcement is for a Cyber Term position. Permanent employees who apply, are selected for, and ultimately accept this position will be converted to a Cyber Term appointment. Term positions in CES may be extended up to a maximum of five years. This position may be converted to permanent without further competition after completion of three years of continuous service in this position. Multiple positions may be filled from this announcement. Salary includes applicable locality pay or Local Market Supplement. Payment of Permanent Change of Station (PCS) costs is not authorized, based on a determination that a PCS move is not in the Government interest. Recruitment or relocation incentives MAY be authorized for highly qualified candidates. This position is also required to have a Computing Environment certification. This certification will be one of the following: Microsoft 365 Certified: Endpoint Administrator Associate, ExamSC-200: Microsoft Security Operations Analyst, Exam SC-300: Microsoft Identity and Access Administrator, Exam SC-400: Administering Information Protection and Compliance in Microsoft365.) Incumbent is required to complete this certification within 9 months of official start date and maintained for continued employment.