IT CYBERSECURITY SPECIALIST (INFOSEC)

Excel as a Technology Reviewer on DCSA's Cyber Operational Readiness Assessment (CORA) Team. Conduct advanced security assessments using STIGs, provide expert analysis, and strengthen national cyber defense. Build specialized expertise, shape solutions to complex risks, and advance your career as a Cyber Mission Enabler.

**Qualifications:**
This position has a Basic Requirement for the 2210: Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate GS-5 through GS-15 (or equivalent): For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. and Specialized Experience for GS-7 (or equivalent) and Above: Positions at GS-7 (or equivalent) and above require one year of specialized experience at the next lower GS-grade (or equivalent). Specialized experience is experience that has equipped the applicant with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. The employing agency is responsible for defining the specialized experience based on the requirements of the position being filled. *NOTE: Failure to provide transcripts will result in you being rated ineligible for this position. The experience described in your resume will be evaluated and screened from the Office of Personnel Management's (OPMs) basic qualifications requirements. See: Information Technology (IT) Management Series 2210 (Alternative A) for OPM qualification standards, competencies and specialized experience needed to perform the duties of the position as described in the MAJOR DUTIES and QUALIFICATIONS sections of this announcement by 04/27/2026 Applicant must have directly applicable experience that demonstrates the possession of the knowledge, skills, abilities and competencies necessary for immediate success in the position. Qualifying experience may have been acquired in any public or private sector job, but will clearly demonstrate past experience in the application of the particular competencies/knowledge, skills and abilities necessary to successfully perform the duties of the position. You must have specialized experience sufficient to demonstrate that you have acquired all the competencies necessary to perform at a level equivalent in difficulty, responsibility, and complexity to the next lower grade (GS/GG-12) in the Federal service and are prepared to take on greater responsibility. Generally, this would include one year or more of such specialized experience. Specialized experience for this GG-13 position includes: Using Security Technical Implementation Guides (STIGs) to assess technology areas such as networks, endpoint security, vulnerability scanning, DNS, operating systems, or databases. Utilizing knowledge of cybersecurity principles, networking concepts, and security methodologies to perform impact and risk assessments. Preparing audit reports that identify technical and procedural findings with recommended remediation strategies. Utilizing risk management processes for assessing and mitigating risk. Specifically you will be evaluated on the following competencies: 1. Risk Management: Knowledge of the principles, methods, and tools used for risk assessment and mitigation, including assessment of failures and their consequences. 2. Cybersecurity: Support protection of the confidentiality, integrity, non-repudiation, and availability of systems, networks, and data through planning, analysis, development, penetration testing, access control, implementation, maintenance, and enhancement of information security systems, programs, policies, procedures, and tools. 3. Information Technology Performance Assessment: Conduct continuous performance measurement to ensure that Information Technology activities, processes, and/or hardware/software are achieving desired results. 4. Oral Communication: Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 5. Writing: Recognizes or uses correct English grammar, punctuation, and spelling; communicates information (for example, facts, ideas, or messages) in a succinct and organized manner; produces written information, which may include technical material, that is appropriate for the intended audience