- Position Title
- IT Specialist (Cyber)
- Agency
- National Telecommunications and Information Administration
- Announcement Number
- NTIA-OPCM-DE-24-12215173 Opens in new window
- Open Period
- Tuesday, November 28, 2023 to Tuesday, December 5, 2023
For preview purposes only. To apply, please return to the USAJOBS announcement and click the Apply button.
Eligibilities
1.
Do you claim Veterans’ Preference?
2.
If you are a Federal civilian employee, under what type of appointment are you currently serving?
Note: If you are unsure of your appointment type, refer to your most recent Notification of Personnel Action (SF-50), ask your servicing human resources office, or contact the human resources representative listed in the vacancy announcement.
Note: If you are unsure of your appointment type, refer to your most recent Notification of Personnel Action (SF-50), ask your servicing human resources office, or contact the human resources representative listed in the vacancy announcement.
3.
If you answered "Other" to the previous "Federal Civilian Appointment Type" question , please enter your current appointment type. Otherwise, enter "Not Applicable" if this does not apply to you.
4.
If you are a current Federal civilian employee, by what agency/office or Department of Commerce bureau are you employed?
5.
If you answered "Other" to the "Federal Civilian Agency Employment" question, please enter the agency and organization. Otherwise enter 'Not Applicable' if this does not apply to you.
6.
If you are eligible for reinstatement based on prior Federal service and you are NOT currently serving in the competitive service as a permanent career or career-conditional Federal civilian employee, please indicate the beginning and ending dates of your prior Federal civilian employment. If you are not eligible for reinstatement please enter NA. Note: Use the format From MM-YYYY to MM-YYYY.
7.
If you are eligible for appointment under an Interchange agreement or similar authority, please identify the organization in which you work(ed). Enter 'Not Applicable' if this does not apply to you.
8.
If you are, or ever were, a Federal civilian employee, please indicate the pay plan of the highest grade level or pay band you held on a permanent basis. Enter 'Not Applicable' if this does not apply to you.
Note: You can locate your pay plan in Block #16 on your Notification of Personnel Action (SF-50).
Note: You can locate your pay plan in Block #16 on your Notification of Personnel Action (SF-50).
9.
If you are, or ever were, a Federal civilian employee, please indicate the highest grade level (or equivalent) you held on a permanent basis.
10.
What is your grade level? Enter 'Not Applicable' if this does not apply to you.
Note: You can locate your grade level (or equivalent) in Block #18 on your Notification of Personnel Action (SF-50).
Note: You can locate your grade level (or equivalent) in Block #18 on your Notification of Personnel Action (SF-50).
11.
If you are, or ever were, a Federal civilian employee, please indicate the beginning and ending dates of the highest grade level (or equivalent) that you held. Enter 'Not Applicable' if this does not apply to you.
12.
If you are, or ever were, a Federal civilian career or career in the competitive service, what is the highest full performance level (promotion potential) of the position you held on a permanent basis?
Note: Your highest full performance level should be shown in the "Remarks" section of you Notification of Personnel Action (SF-50) that documents your initial placement into that position.
Note: Your highest full performance level should be shown in the "Remarks" section of you Notification of Personnel Action (SF-50) that documents your initial placement into that position.
13.
Does the Department of Commerce employ any member of your family?
14.
If you are a male at least 18 years of age, born after December 31, 1959, have you registered with the Selective Service system?
15.
Are you a retiree receiving a Federal annuity?
Note: If you are an annuitant, your salary or annuity may be reduced upon employment.
Note: If you are an annuitant, your salary or annuity may be reduced upon employment.
16.
Have you accepted a Voluntary Separation Incentive Payment (VSIP) from a Federal agency within the past 5 years?
17.
Are you an active duty service member? You must submit a statement of discharge/certification of release or an official written document from the armed forces that certifies you are expected to be discharged or released from active duty service in the armed forces under honorable conditions no later than 120 days from the date the announcement closes. Enlisted Record Briefs and military identification do NOT qualify as official documentation. If the appropriate information is not submitted to confirm the discharge status, dates of service, etc., you will not be considered for this job opportunity under Veteran Preference procedures. To gain access to your DD-214 online please visit http://www.archives.gov/veterans/military-service-records
18.
Are you a current or former federal employee displaced from the agency hiring for this position?
If yes, confirm:
• you are located in the same local commuting area of the vacancy; AND,
• you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
• you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
• your last performance rating of record is at least fully successful or the equivalent.
For more information, review the USAJOBS Help Center.
To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice or a Proposed Removal/Separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.
If yes, confirm:
• you are located in the same local commuting area of the vacancy; AND,
• you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
• you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
• your last performance rating of record is at least fully successful or the equivalent.
For more information, review the USAJOBS Help Center.
To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice or a Proposed Removal/Separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.
19.
Are you a current or former federal employee displaced from a position in a Federal agency other than the agency hiring for this position?
If yes, confirm:
• you are located in the same local commuting area of the vacancy; AND,
• you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
• you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
• your last performance rating of record is at least fully successful or the equivalent.
For more information, review the USAJOBS Help Center.
To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.
If yes, confirm:
• you are located in the same local commuting area of the vacancy; AND,
• you are applying to a position that is at or below the grade level of the position from which you were or will be separated; AND,
• you are applying to a position that does not have greater promotion potential than the position from which you were or will be separated; AND,
• your last performance rating of record is at least fully successful or the equivalent.
For more information, review the USAJOBS Help Center.
To verify your eligibility, you must submit supporting documentation such as a Reduction in Force (RIF) separation notice to include your latest performance rating (if the notice does not have this information included, you must submit a copy of your most recent performance appraisal) and a copy of your latest Notification of Personnel Action, Standard Form 50.
Preferences
1.
Select the location(s) you want to be considered for. You must choose at least one location.
2.
Select the lowest grade you are willing to accept for this position.
3.
Have you held a political appointment within the previous 5-year period?
4.
I authorize the sharing of my application for other similar positions.
Assessment 1
Thank you for your interest in the Information Technology (IT) Specialist (Cyber) position. We will evaluate your resume and your responses to this assessment questionnaire to determine if you meet the minimum qualifications for this position and are among the best qualified for this position. Your responses are subject to verification. Please review your responses for accuracy before you submit this questionnaire.
Select “Yes” or “No” to the following question(s).
1.
Do you have Information Technology (IT) Specialist related experience that demonstrates proficiency in each of the following competencies?
2.
I have one year of specialized experience equivalent to the GS-11 grade level in the Federal service performing the following duties:
- Providing senior-level knowledge of advanced principles and best practices for cybersecurity incident response.
- Implementing methodologies to determine root cause, source, and recommendation for mitigation of incident.
- Using network traffic analysis, packet-level analysis, and malware analysis tools to conduct analysis of cybersecurity incidents.
- Implementing and managing strict security controls for systems, network infrastructure, and perimeter networks as well as leading investigation for incidents or events that impact the security posture of the network.
- Conducting investigations of raw events, Indications of Compromise (IOCs), and hashes to measure the risk to the agency.
- Determining the root cause and course of action for containment and or eradicating risk to the Agency.
- Performing system administration duties for Windows and Linux systems in support of vulnerability management and digital forensics systems.
- Providing senior-level knowledge of advanced principles and best practices for cybersecurity incident response.
- Implementing methodologies to determine root cause, source, and recommendation for mitigation of incident.
- Using network traffic analysis, packet-level analysis, and malware analysis tools to conduct analysis of cybersecurity incidents.
- Implementing and managing strict security controls for systems, network infrastructure, and perimeter networks as well as leading investigation for incidents or events that impact the security posture of the network.
- Conducting investigations of raw events, Indications of Compromise (IOCs), and hashes to measure the risk to the agency.
- Determining the root cause and course of action for containment and or eradicating risk to the Agency.
- Performing system administration duties for Windows and Linux systems in support of vulnerability management and digital forensics systems.
3.
I have one year of specialized experience equivalent to the GS-12 grade level in the Federal service performing the following duties:
- Providing technical advice, counsel, and instruction on cyber security issues- to include the Tactics, Techniques, and Procedures (TTP) best utilized by the MITRE ATT&CK Framework;
- Initiating, directing, and participating in the full life cycle of cyber security incident handling according to NIST SP-800-61 and network penetration testing of geographically dispersed and operationally diverse agency facilities;
- Participating in the arrogation of log collection and analysis for system security events associated with the agency cyber security programs;
- Maintaining continued technical liaison with the appropriate staff elements throughout the agency;
- Exchanging and reporting relevant cybersecurity events and vulnerabilities information with CISA and other agency as required;
- Preparing various cybersecurity reports, briefings, summaries, and progress reports; and
- Recommending methodologies that improve Information System security violations, systemic incidents, or breakdowns.
- Performing vulnerability scanning, analysis, and remediation of Information Assurance Vulnerability Alerts (IAVAs).
- Experience reviewing proposed system requirements, design and architecture documents to identify potential security issues in agency cloud and on-prem environments, information systems, and applications.
- Knowledge of security principles and best practices (Federal information security policies, practices, and legal requirements including FISMA, RMF, NIST, and FedRAMP).
- Providing technical advice, counsel, and instruction on cyber security issues- to include the Tactics, Techniques, and Procedures (TTP) best utilized by the MITRE ATT&CK Framework;
- Initiating, directing, and participating in the full life cycle of cyber security incident handling according to NIST SP-800-61 and network penetration testing of geographically dispersed and operationally diverse agency facilities;
- Participating in the arrogation of log collection and analysis for system security events associated with the agency cyber security programs;
- Maintaining continued technical liaison with the appropriate staff elements throughout the agency;
- Exchanging and reporting relevant cybersecurity events and vulnerabilities information with CISA and other agency as required;
- Preparing various cybersecurity reports, briefings, summaries, and progress reports; and
- Recommending methodologies that improve Information System security violations, systemic incidents, or breakdowns.
- Performing vulnerability scanning, analysis, and remediation of Information Assurance Vulnerability Alerts (IAVAs).
- Experience reviewing proposed system requirements, design and architecture documents to identify potential security issues in agency cloud and on-prem environments, information systems, and applications.
- Knowledge of security principles and best practices (Federal information security policies, practices, and legal requirements including FISMA, RMF, NIST, and FedRAMP).
4.
Coordinate computer security incident response activities against threats to include, but not be limited to viruses, worms, Trojan horses, other malicious code, system security breaches, and cyber-terrorist attacks. (Select the one statement most accurately describes training and experience carrying out each task using the scale provided.))
5.
Research and apply technical security requirements for IT systems for enterprise-wide implementation. (Select the one statement most accurately describes training and experience carrying out each task using the scale provided.)
6.
Brief and provide technical recommendations to senior management on cybersecurity threats, vulnerabilities and incidents. (Select the one statement most accurately describes training and experience carrying out each task using the scale provided.)
7.
Investigation based on known Indicators of Compromise or Indicators of Attack. (Select the one statement most accurately describes training and
experience carrying out each task using the scale provided.)
experience carrying out each task using the scale provided.)
8.
Conduct proactive threat reconnaissance from the perspective of an adversary with the internal knowledge of the blue team and red team tactics. (Select
the one statement most accurately describes training and experience carrying out each task using the scale provided.)
the one statement most accurately describes training and experience carrying out each task using the scale provided.)
9.
Use vulnerability scanners to analyze and communicate information relating to IT system vulnerabilities, risk, and intrusions. (Select the one statement
most accurately describes training and experience carrying out each task using the scale provided.)
most accurately describes training and experience carrying out each task using the scale provided.)
10.
Please identify from the below list of preferred information technology certification(s) you currently possess. (Select all that apply.)
11.
Skill in applying the Risk Management Framework (RMF) concepts sufficient to provide advice and guidance on a complex and wide range of Information Assurance Assessment and Authorization Process issues. (Select the one statement that most accurately describes training and experience carrying out each task using the scale provided.
12.
Skill in applying systems security and authorization requirements and processes. (Select the one statement that most accurately describes your training and experience carrying out each task using the scale provided.)
13.
Of the following, which statement best describes your experience detecting network and cybersecurity threats. (Select the one statement that most
accurately describes your training and experience carrying out each task using the scale provided.)
accurately describes your training and experience carrying out each task using the scale provided.)
14.
Of the following, which statement best describes your experience implementing defensive measures to protect information and information systems from
network and cybersecurity threats. (Select the one statement that most accurately describes training and experience carrying out each task using the scale
network and cybersecurity threats. (Select the one statement that most accurately describes training and experience carrying out each task using the scale
15.
Lead or participate in technical working groups, and meetings to resolve specific problems. (Select the one statement that most
accurately describes training and experience carrying out each task using the scale provided.)
accurately describes training and experience carrying out each task using the scale provided.)
16.
Conduct briefings material for senior management officials where analyses are presented, along with conclusions and recommendations.. (Select the
one statement that most accurately describes your training and experience carrying out each task using the scale provided.)
one statement that most accurately describes your training and experience carrying out each task using the scale provided.)
17.
Develop briefing materials for senior management officials where analyses are presented, along with conclusions and recommendations.
Select “Yes” or “No” to the following question(s).
18.
Certification: Please certify that you have accurately and truthfully represented your level of work experience, knowledge, skills, abilities and/or education when completing this questionnaire as your responses, resume and supporting documents will be reviewed for accuracy and completeness as appropriate. Deliberate attempts to falsify information are grounds for non-selection and for termination. Failure to agree to the statement below will disqualify you from further consideration for the position.