Public Notice For IT Specialist (Infosec) (Direct Hire)

## Cybersecurity Specialist

We are seeking a highly skilled Cybersecurity Specialist to ensure the security and compliance of information systems and networks.

### Key Responsibilities

• Apply FISMA and NIST Risk Management Framework (RMF) for compliance and risk management.
• Conduct independent security assessments of information systems and networks.
• Evaluate security controls, identify vulnerabilities, and recommend corrective actions.
• Prepare and present comprehensive security assessment reports.
• Assist in developing and implementing security policies and procedures.
• Develop, update, and maintain cybersecurity documentation, ensuring NIST standard compliance (including NIST 800-30 Rev 1 risk assessments).
• **For Senior Levels (SV-J/GS-14 equivalent):**

* Manage security assessment teams, providing oversight and guidance. * Address complex security challenges with innovative solutions. * Effectively communicate security risks and compliance requirements to senior leadership. * Manage multiple cybersecurity projects concurrently, ensuring timely delivery.

### Core IT Competencies

All candidates must demonstrate proficiency in:

• **Attention to Detail:** Thorough and conscientious in work.
• **Customer Service:** Assess needs, provide assistance, resolve problems, and ensure satisfaction.
• **Oral Communication:** Express information effectively and make clear presentations.
• **Problem Solving:** Identify problems, evaluate alternatives, and make sound recommendations.

### Experience Requirements

Candidates must have IT-related experience demonstrating the above competencies and meet the following specialized experience criteria:

• **SV-I Pay Band (Equivalent to GS-13):** One year of specialized experience (at SV-H or GS-12 equivalent) including:

* Applying FISMA and NIST RMF. * Conducting security assessments using NIST RMF methodologies independently. * Evaluating security controls to mitigate risks and recommend actions. * Preparing security assessment reports and assisting with policy development.

• **SV-J Pay Band (Equivalent to GS-14):** One year of specialized experience (at SV-I or GS-13 equivalent) including:

* Developing/maintaining NIST-compliant cybersecurity documentation (NIST 800-30). * Managing security assessment teams and guiding assessors. * Communicating security risks and compliance to senior leadership. * Managing multiple projects, meeting deadlines, and delivering high-quality results.

### Important Notes

• Experience credit is based on a 40-hour workweek. Part-time and qualifying volunteer experience are credited proportionately.
• Current or former political appointees must disclose this information.
• You must meet qualifications by the vacancy announcement closing date.

### To Apply Email your resume to: IT.IAD.Recruiting@tsa.dhs.gov and reference "Announcement Vacancy Number 12802345."