IT SPECIALIST

Duties DUTY 1: In a Career Broadening capacity, provides technical guidance and activities to the J631. Develops and maintains working relationships with professional peers authorized to represent the Command's external program partners (e.g., DISA, NSA, Services, Gov't Agencies). DUTY 2: Serves as a Career Broadener, leads and personally contributes expertise to preliminary analyses of issues concerning the J63 operations and to conduct direct defensive cyber operations across the command. Advises the J6 as to what team and other specialized SME resources should be leveraged to provide in-depth assessment of issues identified as requiring high priority. DUTY 3: In a Career Broadening capacity, serves as a lead technical oversight of command proactive defensive cyber operations. Drives the development of long- and short-term plans and policies for the Network Threat Response, Vulnerability Management, and Cyber Threat Analysis teams IAW all relevant policies and guidance. DUTY 4: As a Career Broadener, serves as a technical and subject matter expert and principal advisor. Serves as a principal staff advisor on a wide-range of cyber threat and vulnerability topics affecting USSTRATCOM and/or the DoD. Establishes, develops, and maintains effective working relationships with SES and general/flag officer (GO/FO)-level officials in USSTRATCOM, Joint Staff, USCYBERCOM, JFHQ-DODIN, NITTF, other DoD agencies (DIA, DISA, etc.), NSA, National Guard, supported Component Commands, international coalition partners, non-government organizations, local installation points of contact, and cyber industry professionals. Requirements Conditions of Employment * U.S. Citizenship is required. * Mobility is a condition of employment. Employee must sign AF-wide mobility agreement. * Employee must obtain and maintain a TOP SECRET/SPECIAL COMPARTMENTED INFORMATION (TS/SCI) security clearance as a condition of employment. * PCS travel expenses will be paid IAW JTR and AFMAN 36-606. * PCS cost will be paid IAW Career Broadening Policy under this agreement. * Career Broadening positions are managed by AFPC/DPCZ and are centrally funded. * Positions are established specifically to provide developmental experience designed to broaden the skills and/or enhance the leadership perspective of a high-potential, mid-level manager. * Career Broadening also provides training and developmental opportunities at various organizational levels. * These assignments offer the qualified candidate a unique assignment in that the candidates brings certain experience to the assignment while gaining new experiences in a different work environment. * TEMPORARY PROMOTION: If the position is filled as a temporary promotion, upon completion of the career broadening assignment, the temporary promotion may lead to permanent promotion without further competition. * This position has been designated as a Testing Designated Position (TDP). Incumbent is required to: (a) refrain from the use of illegal drugs, and (b) if requested, submit to urinalyses testing. * Work may occasionally require travel away from the normal duty station on military and/or commercial aircraft. * The employee may be required to work other than normal duty hours which may include evenings, weekends, and/or holidays. * Recall to duty may be a requirement of this position. * Overtime and/or emergency overtime may be required. * Information Assurance (IA) Certification is a condition of employment. Per DoD 8570.01-M, the incumbent of this position must achieve the appropriate IA certification within six months of assignment of these duties. A waiver may be granted. Qualifications SPECIALIZED EXPERIENCE: Individuals must have IT-related experience demonstrating each of the four competencies listed below: * Attention to Detail - Is thorough when performing work and conscientious about attending to detail. * Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. * Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. * Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. AND One year of specialized experience which includes experience that has equipped the applicant with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. This definition of specialized experience is typical of work performed at the GS-13 grade/level or equivalent in the federal service. FEDERAL TIME-IN-GRADE (TIG) REQUIREMENT FOR GENERAL SCHEDULE (GS) POSITIONS: Applicants must have served at least 52 weeks at the GS-13 or higher grade (or equivalent in an alternate pay system) within the Federal Civil Service to be considered for referral. TIG applies if you are in a current GS position or held a GS position within the previous 52 weeks. KNOWLEDGE, SKILLS AND ABILITIES (KSAs): Your qualifications will be evaluated on the basis of your level of knowledge, skills, abilities and/or competencies in the following areas: * Knowledge of a full range of IT and cybersecurity principles, concepts, and methods as well as risk management processes (e.g., methods for assessing and mitigating risk), specific operational impacts of cybersecurity lapses and their application to the organization's core mission processes, and emerging technologies that have potential for exploitation by adversaries sufficient to provide expert technical advice to management on a wide range of complex IT issues, to manage the evaluation of risks and vulnerabilities, to oversee the development of mitigating improvements, and to manage the dissemination of IT security tools and procedures. * Knowledge of computer networking concepts and protocols (e.g., TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services); network security methodologies and architecture concepts including topology, components, and principles (e.g., application of defense-in depth); and related computer disciplines such as systems, communication lines, intrusion detection systems, firewalls, and routers as they relate to computer network defense (CND) operations and environments. * Knowledge of cyber threats, vulnerabilities, and attack methodologies and stages (e.g., foot printing and scanning, enumeration, gaining access, escalation or privileges, maintaining access, network exploitation, covering tracks); threat types and capabilities; different classes of attacks (e.g., passive, active, insider, close-in, distribution); and system and application threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code). * Knowledge of complex cyber forensics, cyber threat, and intrusion detection concepts, disciplines, methodologies, and techniques for detecting host and network-based intrusions via intrusion detection technologies sufficient to oversee the development of countermeasures to classified and unclassified computer network and system attacks. * Knowledge of advanced incident management, analysis, and response concepts and procedures; incident categories, incident responses, and timelines for responses; incident response and handling methodologies; and computer security incident response processes including countermeasure mitigation strategies, malware analysis, network traffic analysis, and network system analysis/forensics. * Knowledge of vulnerability management processes and procedures; vulnerability categories, responses, and timelines for response; as well as computer network defense and vulnerability assessment tools (commercial and open source) and their capabilities, network traffic analysis tools, identification and authentication technologies, Security Information and Event Management (SIEM) tools, firewalls, malicious code identification tools, intrusion detection/prevention tools, proxies, email security filters, and vulnerability scanning tools among other technologies designed to protect systems and networks. * Skill in conducting technical and non-technical risk and vulnerability assessments, in administering and utilizing vulnerability scanning tools to protect systems and networks; in using network analysis tools to identify vulnerabilities; and in recognizing and categorizing types of vulnerabilities and associated attacks. * Ability to communicate effectively, clearly, interpret, implement, and apply Federal cybersecurity and cyber defense laws, policies, regulations, procedures, standards, and compliance measures to command information systems and to the development of policy, plans, and strategies in support of cyber activities and the DoD Information Network (DODIN) security posture. Education This job does not have an education qualification requirement. Additional information PCS restrictions: An employee selected to make a PCS to a Career Broadening assignment is restricted from making a second PCS for 12 months Defense National Relocation Program is