IT Cybersecurity Specialist

IT Cybersecurity Specialist

Department: Department of Energy

Location(s): Anchorage, Alaska, Berkeley, California, Menlo Park, California, Golden, Colorado, Grand Junction, Colorado, Westminster, Colorado, Washington, District of Columbia, Ames, Iowa, Idaho Falls, Idaho, Chicago, Illinois, Lemont, Illinois, Warrenville, Illinois, Lexington, Kentucky, Paducah, Kentucky, New Orleans, Louisiana, Germantown, Maryland, Weldon Spring, Missouri, Plainsboro, New Jersey, Albuquerque, New Mexico, Carlsbad, New Mexico, Los Alamos, New Mexico, Las Vegas, Nevada, Upton, New York, West Valley, New York, Cincinnati, Ohio, Piketon, Ohio, Portsmouth, Ohio, Albany, Oregon, Pittsburgh, Pennsylvania, Aiken, South Carolina, Oak Ridge, Tennessee, Moab, Utah, Hanford, Washington, Richland, Washington, Morgantown, West Virginia

Salary Range: $89508 - $197200 Per Year

Job Summary: These positions are to be filled under the OPM Government-Wide Direct Hire Authority for Cyber Positions for grades GS 12-15. This serves as a public notice for the use of the Direct Hire Authority in accordance with 5 U.S.C. 3327 and 3330 and 5 CFR 330.

Major Duties:

• The Department of Energy is responsible for defining and advancing America's energy policy, technology, and security. Through our national laboratories and distinctive range of program centers we discover, deliver, and manage the energy breakthroughs that keep the nation and its economy safe and secure through the 21st century and beyond! We are truly honored that DOE has been named America's #1 Best Employer for Veterans in 2023 by Forbes-not only among Government agencies, but among employers across the U.S. We are so proud of this ranking which reflects our commitment to the employment of veterans. As so many veterans at DOE renew their service to our Nation, we are deeply committed to their success and advancement. Veterans shape the future of energy The Department of Energy is seeking motivated and highly-qualified candidates for exciting positions available in multiple locations throughout the United States. The mission of the Energy Department is to ensure America's security and prosperity by addressing its energy, environmental and nuclear challenges through transformative science and technology solutions. This series covers positions that manage, supervise, lead, administer, develop, deliver, and support information technology (IT) systems and services. This series covers only those positions for which the paramount requirement is knowledge of IT principles, concepts, and methods; e.g., data storage, software applications, networking. Additionally, these positions have a cybersecurity requirement which involves the security of and operations in cyberspace and encompasses the full range of threat reduction, vulnerability reduction, deterrence, international engagement, incident response, resiliency, and recovery activities, including computer network operations, information assurance, diplomacy, military, and intelligence missions as they relate to securing the global information and communication infrastructure. As an IT Cybersecurity Specialist, at minimum you will: Evaluate system security plans and procedures, and assist in managing and directing the operations and functions of the office support contractors, addressing IT out-of-compliance issues, preparing, implementing, monitoring, and updating the project plan Develop Plans of Actions and Milestones (POA&Ms) to correct findings of non-compliance Initiate, direct and participate in the full life cycle of cyber security appraisals and network penetration testing of geographically dispersed and operationally diverse agency facilities Develop and recommend new and/or revised inspection, evaluation, and penetration testing methodologies for cyber security appraisals Provide recommendations on implementation strategies and policy recommendations based on industry best practices and governing directives Assist the Division by conducting research, conducting investigations of cyber events to include those that potentially violate regulatory requirements Collaborate with senior leadership, departmental and contractor managers and staff in scheduling, planning, coordinating, and implementing the Independent Oversight Cyber Security Appraisal Program.

Qualifications: You must meet both the Basic Requirement and the Specialized Experience to qualify for this series as described below. BASIC REQUIREMENT Applicants must have IT-related education and experience demonstrating each of the four competencies listed below at a proficiency level equivalent to the next lower grade level in federal service. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. SPECIALIZED EXPERIENCE REQUIREMENTS In addition to the basic requirement, a qualified candidate's online application and resume must also demonstrate at least one year of specialized experience equivalent to the next lower grade level in the Federal service. Specialized experience for these positions are defined as: GS-12: You must have one year of specialized experience equivalent to the next lower grade (GS-11). Specialized experience for this position is defined as meeting at least 2 of 4 of the following: Assisting with monitoring and evaluating systems' compliance with IT security requirements; Following standard procedures to implement IT security policies and procedures in the development and operation of network systems; Participating in the collection and analysis of technical and management data associated with cyber security programs; Participating in activities designed to ensure, protect, and restore IT systems, services and capabilities. GS-13: You must have one year of specialized experience equivalent to the next lower grade (GS-12). Specialized experience for this position is defined as meeting at least 2 of 4 of the following: Developing, implementing, and coordinating activities designed to ensure, protect, and restore IT systems, services and capabilities; Monitoring and evaluating systems' compliance with IT security requirements; Providing advice and guidance on implementing IT security policies and procedures in the development and operation of network systems; Ensuring proper protection of evidence used in investigating computer crimes. GS-14: You must have one year of specialized experience equivalent to the next lower grade (GS-13). Specialized experience for this position is defined as meeting at least 2 of 4 of the following: Providing technical advice, counsel, and instruction on cyber security issues, including preparing various reports, briefings, summaries, and progress reports; Initiating, directing, and participating in the full life cycle of cyber security appraisals and network penetration testing of geographically dispersed and operationally diverse company or agency facilities; Integrating information systems security with other security disciplines and ensuring coordination and/or collaboration on security activities; Evaluating and certifying systems or network accreditation. GS-15: You must have one year of specialized experience equivalent to the next lower grade (GS-14). Specialized experience for this position is defined as meeting at least 2 of 3 of the following: Presenting data to an audit team, performing spot audits, defending compliance positions or creating plans and procedures designed to meet industry, company, or governmental policies or regulatory requirements; Developing and recommending new and/or revised inspection, evaluation, and penetration testing methodologies for cyber security appraisals; Leading the development of long-range plans for IT security systems that anticipate, identify, evaluate, mitigate, and minimize risks associated with IT systems vulnerabilities. NOTE: There is no substitute of education for experience at any of these levels. "Experience" refers to paid and unpaid experience. Examples of qualifying unpaid experience may include: volunteer work done through National Service programs (such as Peace Corps and AmeriCorps); as well as work for other community-based philanthropic and social organizations. Volunteer work helps build critical competencies, knowledge, and skills; and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. OPM Qualification Standards for the GS-2210 series can be found at the following website: OPM Qualification Standards for the GS-2210 series. CTAP/ICTAP candidates: To be considered "well qualified" you must meet all of the requirements as described in this section. This public notice will be used to fill multiple positions as needed. Applications must be submitted and qualification requirements must be met by 11:59 p.m. ET of the closing date of the announcement.

How to Apply: Please read the entire announcement and all the instructions before you begin an application. To apply for this position, you must complete the initial online application, to include submission of the required documentation specified in the Required Documents section. A complete application package must be submitted by 11:59 PM (EST) on the announcement closing date to receive consideration. The application process is as follows: Read all instructions before you begin. Click "Apply Online." Complete the application and attach all required documents. Submit by 11:59 PM ET on the 05/21/2026. Resume Tips: Max 2 pages and 5MB file size. PDF is recommended to preserve formatting; we also accept GIF, JPG, JPEG, PNG, RTF, TXT, ODT, or Word (DOC/DOCX). No PDF portfolios. Use clear fonts like Lato, Calibri, Helvetica, Arial, Verdana, Open Sans, Source Sans Pro, Roboto, or Noto Sans. Set 0.5-inch margins. Use 14-point font for titles, 10-point for main text. Managing Your Application: Update: Edit your application in USAJOBS before the closing date. Status: Log into USAJOBS to view your application status. Learn more here: https://www.usajobs.gov/Help/how-to/application/status/. Support: USAJOBS Help: Visit https://www.usajobs.gov/Help/ for login.gov or USAJOBS assistance. Application Issues: If you have difficulty applying online, contact the Agency Contact listed in this announcement during business hours. Take screenshots of any system errors. To update your application, including supporting documentation: During the announcement open period, return to your USAJOBS account, find your application record, and click Edit my application. This option will no longer be available once the announcement has closed. To verify the status of your application, during and after the announcement open period, log into your USAJOBS account; applications will appear on the Welcome screen. The Application Status will appear along with the date your application was last updated. For information on what each application status means, visit: https://www.usajobs.gov/Help/how-to/application/status/.

Application Deadline: 2026-05-21