Summary

This serves as a public notice for the use of the Direct Hire Authority. The APPLY button is deactivated. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this Direct Hire Authority flyer to be considered. This direct hire public notice is to gather applications that may or may not result in a selection. Notice of Result letters will not be sent to applicants who respond to this flyer.

Duties

This position is located within the U.S. Department of State (State or Department), Office of Inspector General (OIG), which has statutory oversight responsibility covering the Department, the U.S. Agency for Global Media (USAGM), and the International Boundary and Water Commission (IBWC). The IT Operations is part of Management and Resources (MR). IT Operations focuses on ensuring mission-centric approach to IT operations focused on customer service, collaboration, and innovation.

• Serve as primary technical consultant and source of authoritative information regarding all aspects of assigned area of responsibility, including, Palo Alo, Zscaler, Juniper, Cisco and Azure Cloud Networking in ipv4 and ipv6.
• Develop policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data;
• Develop systems security plans (SSP), contingency plans, and disaster recovery procedures;
• Interpret and implements higher-level security requirements such as those resulting from laws, regulations, directives, and Executive Orders;
• Use various cybersecurity and compliance tools such as vulnerability scanning tools, endpoint detections and responses (EDR), and Security Information and Event Management (SIEM); assist with incident response processes to detect and isolate threats;
• Identify threats and vulnerabilities of information system(s) and develop security risk profiles and/or plan of action and milestones (POA&Ms);
• Assess security events to determine impact, initiate the intendent response process, and implement corrective actions;
• Facilitate the gathering, analysis, and preservation of evidence to support the incident response process;
• Identify the need for changes based on new security technologies or threats; perform security analysis of proposed system changes;
• Participate in network and systems design to ensure implementation of appropriate systems controls and policies;
• Develop and implement programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures;
• Ensure the rigorous application of information security information assurance policies, principles, and practices in the delivery of all IT services.
• Promote awareness of security issues among management and ensuring sound security principles are reflected in organizations' visions and goals;
• Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs;
• Review proposed new systems, networks, and software designs for potential security risks and recommend security controls;
• Conduct systems security evaluations, audits, and reviews;

• U.S. Citizenship is required.
• Incumbent will be subject to random drug testing.
• Overtime and shift work may be required to include nights, holidays, and weekends in support of related mission requirements, as a condition of employment. Call back/virtual reporting and emergency duty are regular requirements of this position.
• Must be able to obtain and maintain a Top Secret security clearance.
• Successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit: www.dhs.gov/E-Verify/
• Males born after 12/31/1959 must be registered with Selective Service.
• One-year probationary period may be required, unless excepted by regulation.
• Incumbent may be required to carry a Government Furnished Equipment (GFE) cellular device and maintain a personal working cell/home telephone at all times.
• If selected, you will be required to file a Confidential Financial Disclosure (OGE Form 450).

1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

• Experience developing Cybersecurity plans, strategy and policies to support and align with organizational Cybersecurity initiatives and regulatory compliance.
• Experience in developing policies related to the protection and security of systems, networks, and data. In accordance with cybersecurity standard. (e.g., Federal Information Security Modernization Act (FISMA) and National Institute Standards and Technology (NIST) Risk Management Framework (RMF)).
• Experience conducting risk assessments of planned and installed information systems.
• Experience utilizing knowledge of network, systems design and evaluating the implementation of security controls to mitigate risks and meet compliance requirements.
• Experience investigating, analyzing and responding to cyber using data collected from a variety of cyber defense tool and following established incident response process.

• For reasonable accommodation at the U.S. Department of State, please contact the Office of Accessibility and Accommodations at (202) 663-3474 or OAA@state.gov.
• If eligible, telework agreements may be permitted with supervisory approval.
• Multiple positions may be filled from this announcement. If eligible, applicants to this announcement may be referred to other similar positions in other Bureaus/Offices in the Department for up to 240 days. Telework eligibility and security clearance requirements may vary for such similar positions.
• Recruitment, relocation or other incentives may be offered if found to be in the best interest of the government.

• Benefits
  
  A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new window Learn more about federal benefits.
  
  Review our benefits
  
  Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.

• Ability to develop, interpret, and apply polices governing information technology throughout the agency.
• Knowledge of information technology life cycle management concepts.
• Knowledge of information technology performance measures.
• Skill in conducting risk assessments of planned and installed information systems.
• Skill in conducting systems security evaluations, audits, and reviews.
• Ability to develop systems security contingency plans and disaster recovery procedures.
• Knowledge of information technology specialty areas (e.g., application, system design database management, computer equipment, software, systems).
• Knowledge of Federal Information Security Management Act (FISMA) process.
• Experience in managing government-wide recommendations for remediating cybersecurity incidents.