Information System Security Professional - Entry to Expert Level (Multiple Locations - Maryland and Texas)
- National Security Agency
- Fort Meade, MD, USA
Job Description
Information System Security Professionals at NSA play a vital role in enabling security solutions by utilizing systems engineering and systems security engineering principles in: - defining information system security requirements and functionality - designing system architectures and designs - assessing the effectiveness of security solutions against present and projected threats - producing formal and informal reports, briefings, and direct input to the customer regarding security and functionality requirements, system architecture and security designs - conducting security engineering/hardening of the latest operating systems, tailoring them for use in the specific mission area - reviewing requests for security relevant changes on the mission infrastructures, ensuring risk is adequately mitigated - working with system owners to accredit/re-accredit critical mission systems. Depending on their experience and preferences, Information System Security Professionals are hired into positions directly supporting a technical mission office or into Cybersecurity Engineering Development Program (CSEDP). The development program is 3 years in length and combines formal training and diverse work assignments.
Are you a cyber professional with the drive and expertise to be on the forefront of the cyber fight; tackling NSA's complex mission to defend against cyber threats of today and tomorrow? NSA, the nation's leading cyber agency, has exciting and challenging positions in Cyber Security Engineering and Cyber and TEMPEST vulnerability analysis/mitigation. Are you ready to help secure our Nation's critical Infrastructure? If so, NSA is the place for you!
THIS JOB OPENING ENCOMPASSES MULTIPLE POSITIONS. THE MINIMUM QUALIFICATIONS FOR EACH ARE BELOW: The qualifications listed are the minimum acceptable to be considered for the position. Degree must be in Computer Science or a related field (for example General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems). INFORMATION SYSTEMS SECURITY DESIGNER Relevant experience must be in one or more of the following areas: computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, or systems engineering. Network and system administration may account for some, but not all, of the experience. Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards the relevant experience requirement (i.e., 20-24 weeks course will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). ENTRY/DEVELOPMENTAL Entry is with a Bachelor's degree and no experience. An Associate's degree plus 2 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. FULL PERFORMANCE Entry is with a Bachelor's degree plus 3 years of relevant experience, or a Master's degree plus 1 year of relevant experience, or a Doctoral degree and no experience. An Associate's degree plus 5 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. SENIOR Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 years of relevant experience, or a Doctoral degree plus 2 years of relevant experience. An Associate's degree plus 8 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. EXPERT Entry is with a Bachelor's degree plus 9 years of relevant experience, or a Master's degree plus 7 years of relevant experience, or a Doctoral degree plus 5 years of relevant experience. An Associate's degree plus 11 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. INFORMATION SYSTEMS SECURITY ENGINEER Relevant experience applying to all work levels: Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards the relevant experience requirement (i.e., 20-24 weeks course will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). ENTRY/DEVELOPMENTAL Entry is with a Bachelor's degree and no experience. An Associate's degree plus 2 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Relevant experience must be in one or more of the following areas: computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or updating information assurance documentation (for example System Security Plans, Risk Assessment Reports, Certification and Accreditation packages, and System Requirements Traceability Matrices. Network and system administration may account for some, but not all, of the experience. FULL PERFORMANCE Entry is with a Bachelor's degree plus 3 years of relevant experience, or a Master's degree plus 1 year of relevant experience, or a Doctoral degree and no experience. An Associate's degree plus 5 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Relevant experience must be in one or more of the following areas: computer or information systems design/development and with information assurance and accreditation processes (e.g., System Security Plans, Risk Assessment Reports, Certification and Accreditation Packages, and System Requirements Traceability Matrices). In addition, experience may include programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or network and system administration. SENIOR Entry is with a Bachelor's degree plus 6 years of relevant experience, or a Master's degree plus 4 years of relevant experience, or a Doctoral degree plus 2 years of relevant experience. An Associate's degree plus 8 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Relevant experience must be in one or more of the following areas: computer or information systems design/development and with information assurance and accreditation processes (e.g., System Security Plans, Risk Assessment Reports, Certification and Accreditation Packages, and System Requirements Traceability Matrices). In addition, experience may include programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or network and system administration. EXPERT Entry is with a Bachelor's degree plus 9 years of relevant experience, or a Master's degree plus 7 years of relevant experience, or a Doctoral degree plus 5 years of relevant experience. An Associate's degree plus 11 years of relevant experience may be considered for individuals with in-depth experience that is clearly related to the position. Relevant experience must be in one or more of the following areas: computer or information systems design/development and with information assurance and accreditation processes (e.g., System Security Plans, Risk Assessment Reports, Certification and Accreditation Packages, and System Requirements Traceability Matrices). In addition, experience may include programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, or network and system administration.
- Excellent problem-solving, communication and interpersonal skills - Is motivated - Works creatively and effectively in diverse environments - Can juggle multiple priorities and assignments - Applies standards, policies, procedures and requirements for ensuring information security - Possesses specialized skills that prevent, assess, and/or mitigate threats to information systems and infrastructures and the information contained in or transmitted by these systems. This may encompass: -- threat and vulnerability analysis -- risk mitigation -- incident response -- information assurance -- risk management framework -- configuration management -- monitor system security plans -- penetration testing -- preparing accreditation documentation
Salary offers are based on candidates' education level and years of experience relevant to the position and also taking into account information provided by the hiring manager/organization regarding the work level for the position. Salary ranges vary by location and work level. This position is hiring for Maryland and Texas. Salary Range: $77,745 - $183,500 (Entry/Developmental, Full Performance, Senior, Expert) Typical work schedule is Monday - Friday, with basic 8 hr/day work requirements between 0600 and 1800 (flexible). Exception: Very few positions may support 24x7 operations.
How to apply
U.S. Citizenship is required for all applicants. NSA is an equal opportunity employer and abides by applicable employment laws and regulations. All applicants and employees are subject to random drug testing in accordance with Executive Order 12564. Employment is contingent upon successful completion of a security background investigation and polygraph. Due to time sensitive communications regarding your application, please ensure your spam filters are configured to accept email from noreply@intelligencecareers.gov. Please review the job posting thoroughly to ensure you meet the described qualifications and are aware of all associated requirements. To apply for this position, please click the 'Apply' button located at the top right of this posting. After completing the application for the first time, or reviewing previously entered information, and clicking the 'Submit' button, you will receive a confirmation email. We encourage you to apply as soon as possible, as job postings could close earlier than the closing date due to sufficient number of applicants, or the position is no longer available. You may be asked a series of questions depending on the position you apply for. Your responses will be used as part of the application screening process and will assist in determining your eligibility for the position. Be sure to showcase within your resume those experiences relevant to this position. Failure to provide the required information or providing inaccurate information will result in your application not being considered for this position. Only those applicants who meet all position qualifications, may be contacted to begin employment processing. Please remain diligent in monitoring email and your SPAM folder. Reasonable accommodations may be provided to applicants with disabilities during the application and hiring process where appropriate. Please visit our Diversity link for more information. This position is a Defense Civilian Intelligence Personnel System (DCIPS) position in the Excepted Service under 10 U.S.C. 1601. DoD Components with DCIPS positions apply Veterans' Preference to eligible candidates as defined by Section 2108 of Title 5 USC, in accordance with the procedures provided in DoD Instruction 1400.25, Volume 2005, DCIPS Employment and Placement. If you are a veteran claiming veterans' preference, as defined by Section 2108 of Title 5 U.S.C., you may be asked to submit documents verifying your eligibility.
NSA is on a Mission to Hire 3,000 People!
The National Security Agency (NSA) has kicked off a massive talent search with a goal of hiring 3,000 new employees in 2023. Our work in signals intelligence (SIGINT) and cybersecurity is essential to protecting our families, friends, communities, service members, and ultimately, the nation.
There is a Place for You at NSA
NSA’s SIGINT mission collects intelligence about our foreign adversaries. Our cybersecurity mission safeguards critical U.S. information. Both of these duties demand a team of technical experts as well as business and HR professionals, linguists, intelligence analysts, communications specialists and more. We have career opportunities in 17 different fields, so there is truly something for everyone.
When You Take Care of the Nation, The Nation Takes Care of You
NSA supports its diverse workforce through benefits and opportunities that foster both work-life balance and career development. Along with a fantastic federal benefits package and a generous amount of paid time off, we also offer flexible schedules, relocation assistance, robust well-being services and countless opportunities to advance your career through training and mentorship.
There is Job Security in Protecting National Security
NSA’s work isn’t subject to market volatility or economic downturns. The threats to our nation never stop – and neither do we.
Visit IntelligenceCareers.gov/NSA to learn about our mission and how you can have a rewarding career that safeguards the country’s future – and your own.