USA Staffing

Position Title: IT SPECIALIST (INFOSEC)
Agency: Securities and Exchange Commission
Announcement Number: 23-DH-11958384-SH Opens in new window
Open Period: Tuesday, May 16, 2023 to Tuesday, May 30, 2023

For preview purposes only. To apply, please return to the USAJOBS announcement and click the Apply button.

1. Do you claim Veterans’ Preference?

A. No, I do not claim Veterans' Preference

B. 0-point Sole Survivorship Preference (SSP)

C. 5-point preference based on active duty in the U.S. Armed Forces (TP)

D. 10-point preference for non-compensable disability or Purple Heart (XP)

E. 10-point preference based on a compensable service connected disability of at least 10% but less than 30% (CP)

F. 10 point preference based on widow/widower or parent of a deceased veteran, or spouse or parent of a disabled veteran (XP)

G. 10-point preference based on a compensable service connected disability of 30% or more (CPS)

2. Are you a current or former federal employee displaced from the agency hiring for this position? If yes, confirm:

you are located in the same local commuting area of the vacancy; AND,
you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
your last performance rating of record is at least fully successful or the equivalent.

For more information, review the USAJOBS Help Center.

To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice or a Proposed Removal/Separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.

A. Yes

B. No

3. Have you served on a Schedule C appointment or as a political appointee anytime within the last 5 years?

A. Yes

B. No

4. Are you a current or former federal employee displaced from a position in a Federal agency other than the agency hiring for this position? If yes, confirm:

you are located in the same local commuting area of the vacancy; AND,
you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
your last performance rating of record is at least fully successful or the equivalent.

For more information, review the USAJOBS Help Center.

To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.

A. Yes

B. No

5. Are you a previous federal employee with Securities and Exchange Commission?

A. Yes

B. No

6. Are you a current SEC employee?

A. Yes

B. No

1. From the options below, please indicate the choice that BEST describes your situation:

A. I am an external candidate and I certify that I have read and understand that should I be selected for the position, the resume and application materials I have submitted will be used to determine salary. I also understand that I will not be permitted to provide an updated resume to OHR after the application period has closed.

B. I am a current SEC employee and I certify that I have read and understand that should I be selected for this position and it results in a promotion, the standard percentage increase will be applied (i.e., 6% for non-supervisory and 10% for supervisory positions) to determine my salary. I also understand that should I be selected for this position and it results in lateral movement (i.e. no change in grade) I will maintain my current salary.

2. How did you hear about this position?

3. Please specify based on your selection above as applicable:

1. Select one statement from the choices below to show how you meet the basic qualification requirements for the position.

A. I possess IT related experience demonstrating each of the four competencies: reviewing work to ensure it is in line with established standards or to identify deficiencies (Attention to Detail); collaborating with stakeholders to make progress towards a common goal (Customer service); explaining technical information orally to non-technical audiences (Oral Communication); and evaluating alternatives to recommend solutions to hardware or software problems (Problem Solving).

B. I do not possess the four competencies shown above.

2. Applicants must have one year of specialized experience at the SK/GS-13 the Federal service (obtained in either the public or private sectors); which required 1) performing historical and near real-time network traffic and log analysis; 2) performing static and dynamic analysis of suspect websites, documents, binaries, or other artifacts; AND 3) automating analytical tasks related to network defense and incident response. Choose the response below that bests describes your education and/or experience.

A. I have fifty-two (52) weeks of experience at the GS/SK-13 level as described above.

B. I do not have fifty-two (52) weeks of experience at the GS/SK-13 level as described above.

3. Please select the statement below that demonstrates you have a deep understanding of current cybersecurity attacks and countermeasures as well as experience performing network traffic and log analysis.

A. I have no experience with cybersecurity attacks and countermeasures.

B. I have some knowledge, training, or education related to this topic but have not y performed this duty professionally.

C. I have worked as a Computer Incident Response Team (CIRT) analyst, Computer Emergency Response Team (CERT) analyst, Computer Security Incident Response Center (CSIRC) analyst or a Security Operations Center (SOC) analyst.

D. I have worked as a mid-level analyst in one of the above listed organizations and possess significant expertise in implementing the Cyber Kill Chain (CKC) for the purposes of identifying and preventing cybersecurity attacks.

E. I have extensive experience as a senior or principal security analyst in one of the above listed organizations, am a SME in the CKC, and have experience supplementing the CKC with additional frameworks such as the Diamond Model of Intrusion Analysis, the Pyramid of Pain, and MITRE ATT&CK for the purpose of identifying and preventing cybersecurity attacks.

4. Please select the statement below that describes your experience applying incident handling policy and guidance such as CISA's Federal Incident Notification Guidelines and CISA's Incident Response Playbook.

A. I have no experience with incident handling policy and guidance.