IT Specialist (Security)
Washington, DC

Job Description

* Duties

Help Duties Summary

This position is located in the Occupational Safety and Health Administration (OSHA), Directorate of Administrative Programs (DAP), Office of Information Technology (OITS). OITS provides enterprise-wide IT Security support for mission-critical automated information systems, and communication needs for OSHA National, Regional, and Area Offices, and State and Consultation Programs.

* This position is inside the Bargaining Unit.

Learn more about this agency

Responsibilities

Major duties for this position include but are not limited to, the following:

* Establishes and maintains the computer security documentation for OITS. Performs a wide variety of evaluations, assessments, audits, and activities involving OSHA systems, hardware, and software tools. Works with IS Specialists to create specifications and adds to or modifies basic user instructions used in evaluations and audit activities. Applies knowledge of and experience with NIST cybersecurity access controls to manage the annual and otherwise periodic certifications of OSHA system and provisioning of OSHA system-user access.
* Monitors and ensures compliance with FISMA, OMB, NIST and the DOL Security Handbook with DOL cybersecurity policies.
* Monitors The Computer Security Incident Response Center (CSIRC) announcements, disseminates announcements to OSHA system owners, and tracks OSHA responses. Works with OSHA system owners to ensure Plans of Action and Milestones (POA & Ms) are developed, accurately and completely documented, and monitored through to completion and compliance.
* Applies close attention to detail where work requires consideration of multiple variables, interrelated regulations, policies, methods, procedures, standards, principles, and procedural instructions requiring recognition of varied conditions.
* Manages user provisioning and maintenance of access privileges for OSHA's system users. Troubleshoots problems, manages conflict resolution, and resolves access-provisioning issues independently. Advises management on the analysis and resolution of problems.
* Remains up to date on the latest directions and issues in cybersecurity. Proactively identifies and recommends possible areas of improvement to improve service delivery. Integrates complex information from multiple sources in order to provide the most complete, pertinent, and efficient responses to queries.
* Participates on behalf of OSHA on DOL OCIO security committees and task forces as assigned by the OSHA Security POC or Supervisor. Participates in reviews and discussions for current and new OSHA systems, hardware, and software tools. As part of the reviews and discussions, identifies, monitors, and evaluates potential risks and system vulnerabilities in an effort to maintain the appropriate security posture of OSHA's systems.
* Assists the OSHA Security POC and IT Specialists with all facets of the NIST, DOL, and OSHA security program activities. Coordinates and leads special projects with OITS offices relating to a wide variety of security evaluations, audits, and reviews for OSHA. Assists with and implements the design, creation, documentation, and execution of complex plans and implementations of various data structures and software designs which support long-term security and performance of OSHA systems. Identifies potential risks and system vulnerabilities in order to maintain the appropriate security posture of systems in OSHA.

Travel Required

Occasional travel - Occasional travel may be required.

Supervisory status

No

Promotion Potential

11 - This position is at the Full-Performance Level (FPL).


* Job family (Series)

2210 Information Technology Management


* Requirements

Help Requirements Conditions of Employment

* Appointment to this position may require a background investigation.
* Requires a probationary period if requirement has not been met.
* U.S. Citizenship.and Must be at least 16 years of age.
* Position requires Public Trust-Low Risk Background Investigation.

Applicants must meet time-in-grade, time-after-competitive-appointment and qualifications requirements within 30 calendar days after the closing date of the vacancy to be eligible for consideration for selection.

Federal Employees Please Note: Your SF-50 must include enough information to be able to determine that time-in-grade requirements have been met and reflects your position title, pay plan/series/grade, tenure and the type of appointment (i.e. competitive/excepted). In some cases you may need to submit more than one SF-50.

Reference the "Required Documents" section for additional requirements.

Qualifications

For the GS-11: Applicants must have 52 weeks of specialized experience equivalent to at least the next lower grade level, GS-09, in the Federal Service. Specialized experience is defined as experience with information technology security controls, best practices and methodologies to assist in the design and development of system security procedures to ensure reliability and prevent systems and data from unauthorized access.

OR

Ph.D or equivalent doctoral degree or 3 full years of progressively higher level graduate education leading to a Ph.D. or equivalent doctoral degree.

OR

A combination of education and experience.

Education

Any applicant falsely claiming an academic degree from an accredited school will be subject to actions ranging from disqualification from federal employment to removal from federal service.

If your education was completed at a foreign college or university, you must show comparability to education received in accredited educational institutions in the United States and comparability to applicable minimum course work requirements for this position. Click Evaluation of Foreign Education for more information.