"Alerted.org

Summary Are you a cyber professional with the drive and expertise to be on the forefront of the cyber fight; tackling NSA's complex mission to defend against cyber threats of today and tomorrow? NSA, the nation's leading cyber agency, has exciting and challenging positions in Cyber Security Engineering and Cyber vulnerability analysis/mitigation. Responsibilities Information System Security Professionals at NSA play a vital role in Security Architecture and Engineering, Communication and Network Security, Software Development Security, Security Operations, Identity and Access Management, Asset Security, and Security and Risk Management: - Defining information system security requirements and functionality - Designing system architectures, modeling, and network designs - Ability to implement systems engineering principles/methodology - Assessing the effectiveness of security solutions against present and projected threats - Knowledge of Cloud Engineering and Security - Producing formal and informal reports, briefings, and direct input to the customer regarding security and functionality of requirements, system architecture, application security, and security planning - Understanding concepts, principles, structure and standards used to design, implement, monitor and secure operating systems, equipment, networks, applications and controls to enforce levels of confidentiality, integrity and availability - Conducting security engineering/hardening of the latest operating systems, tailoring them for use in the specific mission area - Reviewing requests for security relevant changes on the mission infrastructures, ensuring risk is adequately mitigated - Understanding of cryptography and ability to program (Python, Java, etc.) - Knowledge of Systems Lifecycle Development, Threat Intelligence, and Incident Management - Ensuring appropriate operational security posture is maintained for a system or program; assessing compliance with the Federal Government's Risk Management Framework (RMF), as maintained by the National Institute of Standards and Technology (NIST) - Providing recommendations on Plan of Action & Milestones (POA&M) - Working with system owners to accredit/re-accredit critical mission systems Depending on their experience and preferences, Information System Security Professionals are hired into positions directly supporting a technical mission office or into the Cybersecurity Engineering Development Program (CSEDP). The development program is 3 years in length and combines formal training and diverse work assignments. Requirements Conditions of Employment Qualifications The qualifications listed are the minimum acceptable to be considered for the position. Degree must be in Computer Science or a related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems). Relevant experience must be in one or more of the following areas: computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or updating information assurance documentation (for example System Security Plans, Risk Assessment Reports, Certification and Accreditation packages, and System Requirements Traceability Matrices). Network and system administration may account for some, but not all, of the experience. Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards the relevant experience requirement (i.e., 20-24 weeks course will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). ENTRY/DEVELOPMENTAL Entry is with a Bachelor's degree and no experience. An Associate's degree plus 2 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Education Additional Information Pay: Salary offers are based on candidates' education level and years of experience relevant to the position and also take into account information provided by the hiring manager/organization regarding the work level for the position. Salary Range: $86,498 - $122,157 (Entry/Developmental) Salary range varies by location, work level, and relevant experience to the position. Training will be provided based on the selectee's needs and experience. Benefits: NSA offers a comprehensive benefits package. Work Schedule: This is a full-time position, Monday - Friday, with basic 8hr/day work requirement between 6:00 a.m. and 6:00 p.m. (flexible). DCIPS Trial Period: If selected for this position, you will be required to serve a two-year DCIPS trial period, unless you are a veterans' preference-eligible employee, in which case you are required to serve a one-year trial period. This trial period runs concurrently with your commitment to the position, if applicable. Before finalizing your appointment at the conclusion of your trial period, NSA will determine whether your continued employment advances the public interest. This decision will be based on factors such as your performance and conduct; the Agency's needs and interests; whether your continued employment would advance the Agency's organizational goals; and whether your continued employment would advance the efficiency of the Federal service. Upon completion of your trial period, your employment will be terminated unless you receive certification, in writing, that your continued employment advances the public interest. If you do not receive certification for continued employment, you should receive written notice prior to the end of your trial period that your employment will be terminated and the effective date of such termination.