This position is located in the NIH Business System, Office of Management (OM), Office of the Director (OD), National Institutes of Health (NIH), U.S. Department of Health and Human Services (DHHS). The incumbent serves as Information System Security Officer (ISSO) within the NBS and is the principal security advisor to the NBS Director.

Duties

The ideal candidate possesses two or more of the following active IT Security Certifications: Certified Information System Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Cloud Security Professional (CCSP) As an IT Specialist (INFOSEC), you will perform various IT security and security systems management duties including the following: Serve as the Information Security System Officer (ISSO) within NBS with responsibility for network security; virus/malware incidents and responses; prevention of virus outbreaks through software testing; and responding to and correcting any security or intrusion problems. Ensure IT security/intrusion measures are integrated with other security disciplines. Apply security/intrusion measures to multiple IT disciplines, internet and intranet, applications software and operating systems software, telecommunications. Maintain a total infrastructure protection environment for the NBS. Develop security documentation and ensure systems meet systems security certification and accreditation requirements, and that security/intrusion measures meet Federal information systems security protocols. Ensure the overall networking systems, including end-to-end systems performance, network architecture, transmissions protocols, broadcasting, switching, control and management is monitored and problems addressed in a proactive way. Stays informed about the NBS's InfoSec needs and represents the NBS's security interests to NIH. Ensures that federal InfoSec directives and policies are implemented at NBS. Requests NBS exceptions to NIH policies and procedures, if exclusion from the standard requirements is warranted. Perform reviews and analysis of the Office of Management and Budget (OMB) regulations, Department of Homeland Security (DHS) Binding Operational Directives, Federal Information Processing Standards, and National Institute of Standards and Technology (NIST) implementation guidance. Recommends improvements and updates to local and NIH policies and procedures. Evaluates NBS security related tools and procedures, recommends changes to ensure implementation of best practices. Makes recommendations on the approval of various computer operations based on security guidelines. Utilizes working knowledge of FedRAMP, National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 security controls and the NIST SP 800-37 Risk Management Framework to interpret standards, requirements, and their application to enterprise Cloud environments.

Requirements

• U.S. Citizenship requirement or proof of being a U.S. National must be met by closing date.
• Employment is subject to the successful completion of a background investigation, verification of qualifications, completion of onboarding forms, submission of required documents, and any other job-related requirement before or after appointment.
• Applicants must meet all qualification requirements by the closing date of this announcement.
• Males born after December 31, 1959 must be registered with the Selective Service.

Qualifications

In order to qualify for the IT Specialist (INFOSEC), GS-2210-14 position, you must have IT related experience demonstrated by paid or unpaid experience obtained in either the private or public sector, and/or completion of specific, intensive training that demonstrates that you possess each of the following four competencies: Attention to Detail - Is thorough when performing work and conscientious about attending to detail; Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services; Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately; Problem Solving - identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND You must demonstrate in your resume that you have at least one (1) year of qualifying specialized experience equivalent to at least the GS-13 level in the Federal service obtained in either the private or public sector, typically gained in the IT field or through performing IT related tasks such as: developing, implementing, and coordinating activities designed to ensure, protect and restore IT systems, services and capabilities; monitoring and evaluating systems' compliance with IT security requirements; providing advice and guidance in implementing IT security policies and procedures in the development and operation of network systems and overall IT security; defining the scope and level of detail for IT security plans and policies applicable to an IT security program; and conducting tests and exercises to ensure disaster recovery efforts are effective and secure. You will receive credit for all experience material to the position, including experience gained in religious, civic, welfare, service, and organizational activities, regardless of whether you received pay. Do not copy and paste the duties, specialized experience, or occupational assessment questionnaire from this announcement into your resume as that will not be considered a demonstration of your qualifications for this position. Preview assessment questionnaire before you apply: https://apply.usastaffing.gov/ViewQuestionnaire/12107145

Education

This job does not have an education qualification requirement.

Contacts

• Address National Institutes of Health 6701 Rockledge Dr Bethesda, MD 20892 US
• Name: Terri Joya
• Phone: 301-827-9039
• Email: [email protected]