Job summary

See below for important information regarding this job. GS-12: Position will be filled at any of the locations listed below. Site specific salary information as follows: Battle Creek, MI: $86,962 - $113,047 Columbus, OH: $90,669 - $117,866 Dayton, OH: $90,178 - $117,227 Fort Belvoir, VA: $99,200 - $128,956 New Cumberland, PA: $99,200 - $128,956 Ogden, UT: $86,962 - $113,047 Philadelphia, PA: $95,694 - $124,398 Richmond, VA: $90,751 - $117,972

Major duties

Supports access control office of primary responsibility and internal use software program manager with risk management internal controls and financial system audit types of requests. Analyzes and determines the impact of new or revised corrective action plans and policies on current system programs and operations for actual or potential effectiveness in achieving planned goals and objectives in relation to access controls. Performs risk assessment and reviews of the IT systems, software and access controls which incorporates a risk based approach used to analyze the impact. Develops test plans, conducts tests to validate compliance with access controls and internal use software policy and procedures and analyzing the effectiveness of the controls in place. Documents findings on system access control deficiencies and recommends corrective actions and generates internal Control Observations to initiate corrective actions. Develops local policies and procedures that reflect the legislative intent of the application information assurance laws and regulations. Collects/maintains/analyzes requests for access to various systems and serves as the subject matter expert on user account administration tasks to include creating/changing/deleting user accounts, and assigning privileges with information systems. Uses Document Automation and Content Services to store and maintain user requests for access to DOD and DLA systems. Establish and maintain communications with appropriate staff within Department of Defense and the Defense Logistics Agency ensuring plan execution and sustainment.

Qualification

To qualify for an IT Specialist (INFOSEC), your resume and supporting documentation must include: A. Specialized Experience: One year of specialized experience that equipped you with the particular competencies to successfully perform the duties of the position, and is directly in or related to this position. To qualify at the GS-12 level, applicants must possess one year of specialized experience equivalent to the GS-11 level or equivalent under other pay systems in the Federal service, military or private sector. Applicants must meet eligibility requirements including Time-in-grade (General Schedule (GS) positions only), time after competitive appointment, minimum qualifications, and any other regulatory requirements by the cut-off/closing date of the announcement. Creditable specialized experience includes: Documents findings on system access control deficiencies and recommends corrective actions and generates internal control observations to initiate corrective actions. Collects, maintains and analyzes all requests for access to the various systems on user account administration tasks to include creating, changing, deleting user accounts, and assigning privileges with information systems. Develops local policies and procedures that reflect the legislative intent of the application information assurance laws and regulations. Performs risk assessment and reviews of the IT systems, software and access controls which incorporates a risk based approach used to analyze the impact. Develops test plans, conducts tests to validate compliance with access controls and internal use software policy and procedures and analyzing the effectiveness of the controls in place. B. Education Substitution: Applicants may not qualify for this position based on education in lieu of specialized experience. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

Substitution of education may not be used in lieu of specialized experience for this grade level.

Evaluations

The assessments for this job will measure the following Competencies: IT Cybersecurity Architecture (INFOSEC) IT Network Defense (INFOSEC) Once the application process is complete, a review of your resume and supporting documentation may be completed and compared against your responses to the assessment questionnaire to determine if you are qualified for this job. The rating you receive is based on your responses to the assessment questionnaire. The score is a measure of the degree to which your background matches the competencies required for this position. If your resume and/or supporting documentation is reviewed and a determination is made that you have inflated your qualifications and or experience, you may lose consideration for this position. Please follow all instructions carefully. Errors or omissions may affect your rating.