This position is located in the Government Accountability Office (GAO), Information Systems and Technology Services (ISTS), Information Systems Security Group (ISSG). ISSG is responsible for GAO’s information security program within the Classified Computer Processing Environment. The purpose of this position is to provide the daily operations management over the classified computer processing environment develop methods, approaches, and procedures to enhance security measures.
Learn more about this agency
Configure, updates, and maintains information and security technologies (listed below) in support of existing “defense in depth” implementations of security strategies:
Drafts standard operating procedures and security policies supporting the operations and maintenance of the security technologies.
Ensures the compliance to Department of Defense (DOD) standards for system configuration, security monitoring, security assessments, and system authorizations as part of the classified computer processing environment. Provides information and feedback on GAO efforts to comply with the DOD guidelines and National Institute of Standards and Technology (NIST) guidance on information security.
Responsible for and manages classified infrastructure, serving as system administrator, ensuring that stored programs and data are provided to only authorized personnel.
Participates in the security incident response program providing constant analysis of network traffic, and initiates a forensics review of potential breaks in the agency’s security posture and investigates security incidents to determine impact and prevent recurrence. Responsible troubleshooting security hardware equipment issues and software errors.
Supports network assessments to troubleshoot anomalies to the network. Coordinates and drafts risk mitigation action plans for any risks or vulnerabilities that are identified during assessments and reviews.
Conditions of Employment
- You must be a U.S. Citizen
- You may be required to submit a financial disclosure statement.
- You must be suitable for federal employment.
- You may be required to complete a one year probationary period.
- Registered for Selective Service, if applicable. (www.sss.gov)
Applicants must have IT-related experience demonstrating each of the four competencies listed below:
Applicants must have 1 year (52 weeks) of specialized experience at the next lower band level equivalent to GS-11 grade level in the Federal Service, which has equipped the applicant with the skills and knowledge to successfully perform the duties of the position. Specialized experience is defined as experience providing daily operations management over a classified computer processing environment to develop methods, approaches, and procedures to enhance security measures; performing system administration tasks including, installing new information and security hardware and software technologies; troubleshooting security hardware equipment issues and software errors; and supporting customer needs based upon configuration standards, implementation requirements, and system security polices supporting this processing environment.
You must meet all of the requirements before the closing date of the announcement.
NOTE: We recommend that your application clearly show your possession of the specialized experience qualification requirement and the four competencies listed above.
Note: CISSP, CISM and/or CISA certification are not required but desired.
There is no education requirement for this position.
This is a bargaining unit position.
You must be able to obtain and maintain a security clearance of SECRET.
Based on the staffing needs, additional selections may be made through this vacancy announcement.
Selectee may be required to file a Financial Disclosure Statement.
Travel and relocation expenses will not be paid for by the GAO.
Males born after 12/31/59 and at least 18 years of age must be registered with the Selective Service System. Visit http://www.sss.gov/.
Please be aware that applicants will be required to complete questions contained on the Declaration for Federal Employment (OF-306) at the time a tentative job offer is made. If selected, at the time of appointment, selectees will be required to update the OF-306.
REASONABLE ACCOMMODATION: GAO provides reasonable accommodations to applicants, employees, and interns with disabilities. To request an accommodation, please email ReasonableAccommodations@gao.gov
If you are selected for this position, you will be subject to a determination of your suitability for Federal employment.
The U.S. Government Accountability Office’s policy is to provide equal employment opportunity for all regardless of race, religion, color, sex (including pregnancy), national origin, age, disability, genetic information, sexual orientation, or gender identity.
The U.S. GAO is part of the Legislative Branch of the Federal government. As such, all positions are in the excepted service. Initial appointments, permanent or indefinite, to the GAO require completion of a one-year or two-year probationary period.
How You Will Be Evaluated
You will be evaluated for this job based on how well you meet the qualifications above.
If you meet the qualification requirements stated above, you will be further rated based on your responses to the vacancy questions. Please make sure that your responses to the vacancy questions are supported in your resume. Follow all instructions carefully as incomplete answers, errors, or omissions may affect your rating. Your rating will be invalid if you fail to include a narrative reply to any vacancy question(s) that requires further explanation or your reply is “see resume.”
All applicants will be rated on the following KSA’s or competencies:
- Knowledge of IT technology, design, and architectural utilization in supporting classified and unclassified networks.
- Knowledge of network operations and protocols to advise on implementing IT security policies and procedures in the development and operation of network systems.
- Ability to draft security policies, system operating procedures, effectively implement and manage security technologies using a “defense-in-depth” strategy, provide routine assessments of security controls, and document risks in the implementation of security strategies.
- Knowledge of IT security certification and accreditation requirements to evaluate systems’ compliance with IT security requirements.
- Knowledge of methods for implementing, and disseminating IT security tools and procedures to implement and coordinate activities to protect and restore IT systems and services.
- Knowledge of the infrastructure protection environment to recommend actions for mitigation or countermeasures.
- Knowledge of network operations and protocols to advise on designing and implementing IT security policies and procedures in the development and operation of network systems.
- Ability to troubleshoot research and solve technically challenging problems involving security, operations, and maintenance of information systems and technology.
- Knowledge of interrelationships of multiple IT disciplines including Desktop Management, Network Management, Communications (external connections), Database Management, Server Management, Security (firewalls, VLANS, Intrusion Detection, Incident Response), to resolve integration issues related to the implementation of new systems within the existing infrastructure.
- Skill in effectively communicate orally and in writing to prepare reports, participate in interviews and meetings, and to make presentations. By way of definition, oral communication may include methods used by employees with disabilities such as sign language interpretation, text-to-speech or TTY technology, and amplification devices.
- Ability to collaborate and work effectively in a group setting.
To preview questions please click here .
Background checks and security clearance
Drug test required
You must provide a complete application package which includes:
– Resume: must be created using the USAJOBS resume builder and show relevant work experience.
– Current or former federal employees may submit their most recent Notification of Personnel Action (SF-50 or equivalent), showing tenure, type of service (competitive/excepted) and the highest grade held.
Failure to submit any of the above mentioned required documents will result in loss of consideration due to an incomplete application package. .
If you are relying on your education to meet qualification requirements:
Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education .
Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.