Summary
Location of Position: The Office GSA IT, Security Engineering Division (ISE).
This is a Virtual/Remote position. Duty location will be determined upon selection.
Note: We are currently filling one position but additional vacancies may be filled through this announcement in this or other GSA organizations within the same commuting area.
This job is open to
Clarification from the agency
THIS IS A PUBLIC NOTICE: This Notice is issued under direct-hire authority (DHA) to recruit new talent to this occupation for which there is a severe shortage of candidates or a critical hiring need. This means that we can hire any qualified candidate, either from this notice or from any source.
NOTE: Current civil service employees will receive new appointments if selected under this Direct Hire Authority.
For more information on DHA, please visit http//www.opm.gov/directhire/index.asp
Duties
As an IT Specialist (INFOSEC) you will perform the following duties:
The Office of GSA IT, Security Engineering Division (IPO) provides security consulting and engineering support for systems and emerging IT and IT security initiative.
- Lead the design, development, and continuous improvement of security engineering frameworks. Ensure Cloud security best practices are incorporated into the System Development Life Cycle (SDLC). Guide teams to integrate security practices throughout the software development process, ensuring the early identification and mitigation of vulnerabilities.
- Oversee the review, approval, and implementation of Cloud security architectures, ensuring all cloud infrastructure components are designed with robust security measures. Ensure compliance with GSA policy, CIS, NIST, and the Cloud current practices. Collaborate with product teams to address security challenges in scalable and complex Cloud architectures, ensuring alignment with Cloud security services like IAM, KMS, Access control Logging, and Security Monitoring.
- Spearhead the integration of security tools and practices into Cloud CI/CD pipelines using infrastructure-as-code (IaC) frameworks like Terraform and CloudFormation. Automate security testing, vulnerability scanning, and configuration management to detect and address issues early in the development lifecycle. Ensure seamless collaboration between development, security, and operations team.
- Lead the creation and enhancement of Terraform and Cloud-native IaC modules to secure cloud infrastructure. Define security policies and controls for Cloud deployments, ensuring compliance with FedRAMP, FISMA, and GSA policy. Implement automated guardrails and leverage Cloud services such as Config, Systems Manager, and Security Hub to enforce security policies and operational security.
- Develop and execute a cybersecurity strategy focused on Cloud environments, aligned with the organization’s business goals. Adopt a Zero Trust approach and implement Cloud-native security services to mitigate risks. Lead regular threat modeling, risk assessments, and vulnerability management initiatives specific to Cloud environments.
- Provide leadership and mentoring to security engineers, DevOps teams, and stakeholders on Cloud security best practices. Advocate for security initiatives at the executive level, ensuring cross-functional collaboration with product management, operations, and compliance teams. Facilitate Cloud-specific incident response planning and readiness, enabling swift response to security incidents.
- Experienced with microservice technologies, container orchestrations and tooling, and security practices using cloud native solutions. The incumbent should be highly technical, have strong problem-solving skills in securing large scale Kubernetes (K8s) environments and developing secure cloud and container applications. Solid development background and understanding of K8s pod security, service mesh and network policies to support micro segmentation are required. Hands-on skills include but not limit istio, calico, Kubernetes network policy, terraform, ansible, packer, python, golang, ruby, javascript, AWS Security principles and services such as AWS app mesh, EKS, ECS, ECR, IAM, Secret manager, KMS. Strong work ethic, be able to adapt quickly to manage enterprise risk and perform analytical and critical thinking. Expected to possess superior listening and communication skills in addition to expected technical expertise.
Requirements
Conditions of Employment
- US Citizenship or National (Residents of American Samoa and Swains Island)
- Direct Deposit of salary check to financial organization required.
- Register with the Selective Service if you are a male born after 12/31/1959
- You may be required to serve a trial period.
- You must apply on-line via the GSA website.
- Suitable for Federal employment, determined by a background investigation.
If selected, you must meet the following conditions:
- Receive authorization from OPM on any job offer you receive, if you are or were (within the last 5 years) a political Schedule A, Schedule C or Non-Career SES employee in the Executive Branch.
- Serve a one year probationary period, if required.
- Undergo and pass a background investigation (Tier 2 investigation level).
- Have your identity and work status eligibility verified if you are not a GSA employee. We will use the Department of Homeland Security’s e-Verify system for this. Any discrepancies must be resolved as a condition of continued employment.
Qualifications
For each job on your resume, provide:
- the exact dates you held each job (from month/year to month/year)
- number of hours per week you worked (if part time).
If you have volunteered your service through a National Service program (e.g., Peace Corps, Americorps), we encourage you to apply and include this experience on your resume.
For a brief video on creating a Federal resume, click here.
The GS-14 salary range starts at $122,198.00 per year.
If you are a new federal employee, your starting salary will likely be set at the Step 1 of the grade for which you are selected.
To qualify, you must have at least one year of specialized experience equivalent to the GS-13 level or higher in the Federal service.
Applicants applying for the GS-14 grade level must meet the following requirements:
Have IT-related experience demonstrating EACH of the four competencies AND one year of specialized experience equivalent to the GS-13 level in the Federal service as described below:
IT SPECIALIST COMPETENCY REQUIREMENTS:
- Attention to Detail - This skill is generally demonstrated by assignments where the applicant investigates and evaluates “state of the art” technology of the industry.
- Customer Service - This skill is generally demonstrated by assignments where the applicant confers with users to evaluate the effectiveness of, or identify the need for, computer programs or management systems.
- Oral Communication - This skill is generally demonstrated by assignments where the applicant persuades others to take a particular course of action or to accept findings, recommendations, changes, or alternative viewpoints.
- Problem Solving - This skill is generally demonstrated by assignments where the applicant identifies and accommodates technology and resource constraints.
SPECIALIZED EXPERIENCE REQUIREMENTS:
Specialized experience is providing cloud service support on IT projects and providing advice and guidance on cloud solution efforts. Experience must include using cloud technologies, cloud computing and cloud automation, and current cloud environments/services.
Education
This job does not have an education qualification requirement.
Benefits
A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.
You will have access to many benefits including:
- Health insurance (choose from a wide range of plans)
- Life insurance coverage with several options
- Sick leave and vacation time, including 11 paid holidays per year
- Thrift Savings Plan (similar to a 401(k) plan)
- Flexible work schedules and telework
- Transit and child care subsidies
- Flexible spending accounts
- Long-term care insurance
- Training and development
Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.
How You Will Be Evaluated
You will be evaluated for this job based on how well you meet the qualifications above.
Evaluation Statement
Applications will be evaluated against the basic qualifications. Qualified candidates will be considered in accordance with the Office of Personnel Management Direct Hire Guidelines. Applications will not be rated or ranked. Veterans’ Preference does not apply to the direct hire recruitment procedures.
You may not be considered for the position, if any part of the application is incomplete or missing the required supporting documentation. Falsifying your background, education and/or experience is cause for not hiring you or dismissing you if hired.
ICTAP/CTAP Candidates: The Interagency Career Transition Assistance Plan (ICTAP) and Career Transition Assistance Plan (CTAP) provide eligible displaced Federal competitive service employees with selection priority over other candidates for competitive service vacancies. To be qualified you must submit appropriate documentation (a copy of the agency notice, your most recent performance rating, and your most recent SF-50 noting current position, grade level, and duty location) and be found “well-qualified" for this vacancy. In addition to meeting the basic qualifications stated in the qualification section of this announcement, well qualified is defined as: experience that exceeds the minimum qualifications of the position, demonstrated by meeting at least 51% or more of the competencies/KSA’s listed below (i.e. 3 out of 5, or 4 out of 6, or 5 out of 8, etc.)
You will be scored on the questions you answer during the application process, which will measure your possession of the following competencies or knowledge, skills, and abilities:
- Knowledge of Cloud security leading practices and cloud-native security architecture principles.
- Skilled in performing security risk assessments and incorporating findings into development practices.
- Ability to design security frameworks that reduce defects and support continuous delivery in Cloud with automated solutions as the preferred delivery model.
- Mastery knowledge of Cloud Services leading practices, FedRAMP, FISMA, and NIST guidelines.
- Ability to make authoritative security architecture decisions that align with regulatory requirements and organizational goals.
- Knowledge of DevSecOps principles and CI/CD pipelines in Cloud, including integration of security tools such as SAST, DAST, and vulnerability scanners.
- Skilled in implementing Terraform, CloudFormation, and other Cloud IaC tools to integrate security into the development pipeline.
- Ability to lead seamless integration of security into Cloud DevOps pipelines.
- Knowledge of Cloud infrastructure automation using Terraform, CloudFormation, and other IaC tools.
- Skilled in developing and managing secure IaC modules to provision and secure Cloud resources.
- Ability to ensure consistent and compliant infrastructure deployment in Cloud by embedding security into the IaC lifecycle.
- Knowledge of Zero Trust Architecture, Cloud security services, and cloud risk management frameworks.
- Ability to lead and execute cybersecurity strategies to align Cloud security posture.
- Ability to communicate risk management strategies to senior stakeholders and continuously assess Cloud security posture.
- Knowledge of Cloud cloud security operations and incident response processes.
- Ability to mentor and guide security engineers and teams.
- Ability to foster a security-first culture and manage incident response readiness across Cloud deployments.
You may preview questions for this vacancy.
Required Documents
ALL required documents must be submitted before the closing date. Review the following list to determine what you need to submit.
-
Your resume showing applicant's name, email address, work schedule, hours worked per week, dates of employment and duties performed.
- If you are ICTAP/CTAP eligible - submit a, b, and c: (a) proof of eligibility including agency notice; (b) SF-50, and (c) most recent performance appraisal.
- Current or Former Political Appointees: Submit SF-50.
How to Apply
Submit a complete online application including any required documents prior to 11:59 pm Eastern Time on the closing date of the announcement. You can modify or complete your application any time before the deadline. Simply return to USAJOBS, select the vacancy, and update your application. For more detailed instructions on how to apply, click here: Apply for a GSA Job. To begin, click the Apply Online button on the vacancy announcement.
- Sign in or register on USAJobs and select a resume and documents to include in your application.
- Once you have clicked Apply for this position now, you will be taken to the GSA site to complete the application process.
- Click the Apply To This Vacancy and complete all steps in the application process until the Confirmation indicates your application is complete. If you click Return to USAJobs or get timed out prior to receiving confirmation, your application will not be submitted and cannot be considered for this job.
- Note: Review the REQUIRED DOCUMENTS section of this announcement to determine which apply to you and must be submitted online. You may choose one or more of the following options to submit your document(s): Upload (from your computer) or USAJOBS (click the "USAJOBS" link to complete the transfer process).
Need Assistance in Applying?
- Questions or issues completing an application and/or submitting documentation - contact mgshelp@monster.com or 1-866-656-6831 Monday-Friday 7AM - 7PM EST, except for Federal holidays
- Specific questions on the position - contact the HR representative (Monday-Friday during normal business hours) listed on the announcement, prior to the application deadline
You must receive HR approval before deviating from these instructions.
Be sure to APPLY EARLY as most assessments must be completed fully and submitted before the announcement closing.
Next steps
After the closing date/deadline:
- ELIGIBILITY/QUALIFICATIONS: Your application will be reviewed for all requirements.
- REFERRAL TO MANAGEMENT: If you meet all the requirements, you may be referred to management for review and a possible interview.
- SELECTION/TENTATIVE JOB OFFER: If you are selected, you will receive a tentative offer and start the suitability and/or security background investigation process.
- FINAL JOB OFFER: Once our security office determines you can come on board, you will be given a final offer, which is typically 40 days after the announcement closes.
- FINAL COMMUNICATION: Once the position is filled, we will notify you of your status. You may also check your application status by logging into USAJOBS and clicking “Track this Application” on the Applicant Dashboard.
Thank you for your interest in working for U.S. General Services Administration!
|