Aug 11, 2022

Information System Security Professional - Entry to Expert Level (Multiple Locations - Maryland, Texas, Georgia)

  • National Security Agency
  • Fort Meade, MD, USA

Job Description

Information System Security Professionals at NSA play a vital role in enabling security solutions by utilizing systems engineering and systems security engineering principles in: - defining information system security requirements and functionality - designing system architectures and designs - assessing the effectiveness of security solutions against present and projected threats - producing formal and informal reports, briefings, and direct input to the customer regarding security and functionality requirements, system architecture and security designs - conducting security engineering/hardening of the latest operating systems, tailoring them for use in the specific mission area - reviewing requests for security relevant changes on the mission infrastructures, ensuring risk is adequately mitigated - working with system owners to accredit/re-accredit critical mission systems. This position has a Cyberspace Workforce Improvement Program (CWIP) requirement. Candidates accepted to fill this position will be required to obtain a DoD 8570.01-M approved certification within six (6) months of assignment. Interested parties currently pursuing certification are also encouraged to apply. Additional requirements may be placed against the selectee, based on requirements defined within DoD 8140.01 and DoD 8570.01-M 'Information Assurance Workforce Improvement Program."

Are you a cyber professional with the drive and expertise to be on the forefront of the cyber fight; tackling NSA's complex mission to defend against cyber threats of today and tomorrow? NSA, the nation's leading cyber agency, has exciting and challenging positions in Cyber Security Engineering and Cyber and TEMPEST vulnerability analysis/mitigation. Are you ready to help secure our Nation's critical Infrastructure? If so, NSA is the place for you!

THIS JOB OPENING ENCOMPASSES MULTIPLE POSITIONS, THE MINIMUM QUALIFICATIONS FOR EACH ARE BELOW: *The qualifications listed are the minimum acceptable to be considered for the position. Salary offers are based on candidates' education level and years of experience relevant to the position and also take into account information provided by the hiring manager/organization regarding the work level for the position. INFORMATION SYSTEMS SECURITY DESIGNER Degree must be in Computer Science or a related field (for example General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems). Relevant experience must be in one or more of the following areas: computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, or systems engineering. Network and system administration may account for some, but not all, of the experience. Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards the relevant experience requirement (i.e., 20-24 weeks course will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). Entry/Developmental (Grade: 7-9) Entry is with a Bachelor's degree and no experience. An Associate's degree plus 2 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Full Performance (Grade: 11-12) Entry is with a Bachelor's degree plus 3 years of relevant experience, or a Master's degree plus 1 year of relevant experience, or a Doctoral degree and no experience. An Associate's degree plus 5 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Senior (Grade: 13-14) Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 years of relevant experience, or a Doctoral degree plus 2 years of relevant experience. An Associate's degree plus 8 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Expert (Grade: 15) Entry is with a Bachelor's degree plus 9 years of relevant experience, or a Master's degree plus 7 years of relevant experience, or a Doctoral degree plus 5 years of relevant experience. An Associate's degree plus 11 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. INFORMATION SYSTEMS SECURITY ENGINEER Degree must be in Computer Science or a related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems). Relevant experience must be in one or more of the following areas: computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or updating information assurance documentation (for example System Security Plans, Risk Assessment Reports, Certification and Accreditation packages, and System Requirements Traceability Matrices). Network and system administration may account for some, but not all, of the experience. Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards the relevant experience requirement (i.e., 20-24 weeks course will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). Entry/Developmental (Grade: 7-9) Entry is with a Bachelor's degree and no experience. An Associate's degree plus 2 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Full Performance (Grade: 11-12) Entry is with a Bachelor's degree plus 3 years of relevant experience, or a Master's degree plus 1 year of relevant experience, or a Doctoral degree and no experience. An Associate's degree plus 5 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Senior (Grade: 13-14) Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 years of relevant experience, or a Doctoral degree plus 2 years of relevant experience. An Associate's degree plus 8 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Expert (Grade: 15) Entry is with a Bachelor's degree plus 9 years of relevant experience, or a Master's degree plus 7 years of relevant experience, or a Doctoral degree plus 5 years of relevant experience. An Associate's degree plus 11 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position.

- Excellent problem-solving, communication and interpersonal skills - Is motivated - Works creatively and effectively in diverse environments - Can juggle multiple priorities and assignments - Applies standards, policies, procedures and requirements for ensuring information security - Possesses specialized skills that prevent, assess, and/or mitigate threats to information systems and infrastructures and the information contained in or transmitted by these systems. This may encompass: -- threat and vulnerability analysis -- risk mitigation -- incident response -- information assurance -- risk management framework -- configuration management -- monitor system security plans -- penetration testing -- preparing accreditation documentation

This is a full-time position. Work Schedule: Monday - Friday, with basic 8hr/day work requirements between 0600 to 1800 (flexible). On-the job training, Internal NSA courses, and external training will be made available based on the need and experience of the selectee. Salary Range: $74,682 - $176,300 (Entry - Expert) All Locations