Public Notice for Direct Hire - IT Cybersecurity Specialist

As a global leader in public health & health promotion, CDC is the agency Americans trust with their lives. In addition to our everyday work, each CDC employee has a role in supporting public health emergency management, whether through temporary assignments to emergency responses or sustaining other CDC programs and activities while colleagues respond. Join our team to use your talent, training, & passion to help CDC continue as the world's premier public health organization. Visit www.cdc.gov

Qualifications:

Basic Qualifications:

For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below.

1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

In addition to Basic Qualifications above, Minimum Qualifications must be met:

• GS-12:
  • At least 1 year of specialized experience, equivalent to the GS-11 grade level in the Federal service, to include experience advising on matters relating to vulnerabilities and threats to computer systems; and ensuring security, continuity and efficiency of automated data processing operations.
• GS-13:
  • At least 1 year of specialized experience, equivalent to the GS-12 grade level in the Federal service, to include experience advising on matters relating to vulnerabilities and threats to computer systems; ensuring security, continuity and efficiency of automated data processing operations; and implementing, modifying and/or supporting information technology security systems, including hardware, software, systems and/or communications and related services.
• GS-14:
  • At least 1 year of specialized experience, equivalent to the GS-13 grade level in the Federal service, to include experience supporting activities related to both on premise and cloud-hosted scientific computing environments; assessing security risks and vulnerabilities; and recommending and implementing mitigation strategies for the ecosystem throughout the lifecycles of the various components in accordance with cybersecurity guidelines (FedRAMP, FISMA, NIST, etc.).
• GS-15:
  • At least 1 year of specialized experience, equivalent to the GS-14 grade level in the Federal service, to include experience directing a program responsible for aspects of information systems security to ensure confidentiality, integrity, and availability of systems, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information system security program policies, procedures, and tools within and across the enterprise.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Promotion potential: Promotion to the next grade level is at management's discretion and is based on your meeting qualifications and time-in-grade requirements, demonstrated ability to perform the higher-level duties, the continuing need for the higher-level duties, and administrative approval. Promotion to the next grade level is not guaranteed and no promise of promotion is implied.

Responsibilities:

The CDC utilizes Direct/Expedited Hire Authorities to fill vacancies in a variety of occupations. This vacancy is a REPOSITORY of applications. Duties and responsibilities vary and may increase according to the grade level of the position. Applications may be periodically referred to hiring managers both during the open period and after the closing date. Because of the large number of applications anticipated, applicants' status will not be updated.

This public notice will be used to fill the positions listed below at multiple grade levels and locations.

• IT Cybersecurity Specialist: Grades GS-12 through GS-15

Applicant Expiration: Applications will expire 4 months after submission/resubmission. To remain eligible for consideration, reapplying is required.

Duties may include but are not limited to:

• Providing expert technical guidance, interpretation, and implementation oversight of applicable information technology policies, processes, and practices.
• Assessing security risks and vulnerabilities; builds, tests, and recommends cloud security solutions; and manages cloud environments in accordance with CDC approved cybersecurity security guidelines.
• Advising senior leadership on latest IT technologies to aid in decision making.
• Developing threat models and security requirements for Application Programming Interfaces (API).
• Developing procedures, awareness programs, and supporting templates.
• Developing and executing strategies for information technology quality assurance (QA).
• Preparing internal and external reports that may include providing audit liaison support to IT operations
• Analyzing short, medium, and long-range projects for solutions of complex operational or policy issues in areas such as information security, information security reporting, systems development life cycle, quality assurance, etc.

Salary : $86,962