IT Specialist (INFOSEC)

Summary As an IT Specialist (INFOSEC) at the GS-2210-14, you will be part of the Cybersecurity and Risk Management Division (CRMD), Office of the Chief Information Officer, U.S. Equal Employment Opportunity Commission (EEOC). If selected, you will serve as an Information Technology (IT) Specialist, Information Security Officer (ISO), in support of the agency's information security (INFOSEC) programs. Learn more about this agency Duties Advises leadership on federal information security (INFOSEC) laws, regulations, standards, and emerging requirements, and contributes to the development and implementation of agency-level IT security policies and directives. Monitors and reports on cybersecurity threats, vulnerabilities, and mitigation efforts, including reviewing and updating Plans of Action and Milestones (POA and M) and briefing the Chief Information Security Officer (CISO) on risk status. Develops, reviews, and maintains key security authorization documentation, including System Security Plans (SSP), Contingency Plans (CP), Risk Assessments (RA), and other materials required to obtain or maintain an Authorization to Operate (ATO). Conducts technology assessments, trend analyses, feasibility studies, and acquisition support activities, including drafting specifications, reviewing contract deliverables, and recommending courses of action to support cybersecurity objectives. Provides operational support by resolving assigned incidents, responding to staff inquiries, tracking fulfillment requests, coordinating with technical teams, and ensuring all activities are documented in agency management tools. Requirements Conditions of employment Must be a U.S. Citizen or National Males born after 12-31-59 must be registered for Selective Service Suitable for federal employment, determined by a background investigation May be required to successfully complete a probationary period Qualifications IT-related experience; experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. Experience must have demonstrated each of the four competencies listed below. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. For the GS-14: You must have one year of specialized experience equivalent to the GS-13 level in federal service. Specialized experience must include demonstrable experience: Guides secure cloud operations and sustainment by ensuring consistent approaches for cloud services, identifying and mitigating technical threat vectors and APT activity, and implementing practical remediation to reduce attack surface. Enhances cybersecurity operations through improved SOC, SIEM, and SOAR processes, strengthening continuous monitoring (CONMON), maturing operational procedures, and sustaining a hardened security posture. Advances DEVSECOPS maturity by implementing automated and manual AppSec testing (SAST, DAST, IAST, SCA, container scanning), implementing and enforcing secure coding including hardened deployment standards, and continuously monitoring environments for cybersecurity events. Applies deep technical expertise in major cloud platforms, scripting/automation (Python, Bash, Golang), and cybersecurity frameworks (NIST, OWASP, CIS), including hands-on execution of Zero Trust pillars and secure AI practices. Leads major INFOSEC initiatives-balancing workload across projects and incidents, keeping leadership dutifully informed while facilitating, executing and directing efforts in GRC, SOC operations, FedRAMP activities, and promotion of varying degrees of role-based enterprise level guidance, in concert with adversarial (blue/red/purple team) exercises. Oversees federal security compliance by interpreting information security (INFOSEC) laws and FISMA regulations; managing POA&Ms and vulnerability remediation; developing or assessing ATO documentation (SSPs, RAs, CPs); and evaluating controls, baselines, cybersecurity-supply chain risk management (C-SCRM) and compliance across systems to strengthen EEOC's INFOSEC posture. Applicants must meet all eligibility requirements (e.g., time-in-grade and qualification requirements) within 30 days of the closing date specified in the vacancy announcement. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. Education This position does not have an education qualification requirement. Additional information Relocation expenses will not be paid. You will be expected to report to the duty station listed on this announcement. This job opportunity announcement may be used to fill additional similar vacancies across the EEOC. If you are unable to apply online or need to fax a document that you do not have in electronic form, please refer to the agency contact information. Males born after 12-31-59 must be registered or exempt from Selective Service (see: https://www.sss.gov/Home/Registration) All employees of the federal government are subject to the conflict of interest statutes and regulations including the Standards of Ethical Conduct that govern activities with outside organizations and reporting financial holdings. This position may require the incumbent to complete a confidential financial disclosure report within 30 days of appointment. Reasonable Accommodation (RA) Requests: If you believe you have a disability (i.e., physical or mental), covered by the Rehabilitation Act of 1973 as amended that would interfere with completing the USA Hire Competency Based Assessments, you will be granted the opportunity to request a RA in your online application. Requests for RA for the USA Hire Competency Based Assessments and appropriate supporting documentation for RA must be received prior to starting the USA Hire Competency Based Assessments. Decisions on requests for RA are made on a case-by-case basis. If you meet the minimum qualifications of the position, after notification of the adjudication of your request, you will receive an email invitation to complete the USA Hire Competency Based Assessments, based on your adjudication decision. You must complete all assessments within 48 hours of receiving the URL to access the USA Hire Competency Based Assessments if you received the link after the close of the announcement. To determine if you need a RA, please review the Procedures for Requesting a Reasonable Accommodation for Online Assessments. TTY users may contact us via the Federal Relay Service, 1-800-877-8339. Expand Hide  additional information Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution. Benefits Review our benefits