IT SPECIALIST (INFORMATION & SECURITY)

IT SPECIALIST (INFORMATION & SECURITY)

Department: Department of the Navy

Location(s): Washington Navy Yard, District of Columbia

Salary Range: $143913 - $197200 Per Year

Job Summary: This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may not be actual vacancies filled from this flyer. Notice of Result letters will not be sent to applicants who respond to this flyer.

Major Duties:

• You will serve as a Security Control Assessor (SCA) conducting independent, comprehensive assessments of the management, operational, and technical security controls implemented within information systems.
• You will execute the full Risk Management Framework (RMF) lifecycle, ensuring system compliance with NIST SP 800-53, CNSSI 1253, and DoW IL5 security requirements.
• You will develop and execute complex Security Assessment Plans and documents findings in formal Security Assessment Reports to provide Authorizing Officials with a clear assessment of system risk.
• You will analyze vulnerability scan results from ACAS (Tenable Nessus) and SCAP Compliance Checker to validate the implementation of DISA STIGs and Security Requirements Guides (SRGs).
• You will manage and oversee system authorization packages and Plan of Action and Milestones within the Enterprise Mission Assurance Support Service (eMASS) to ensure timely remediation of identified risks.

Qualifications: Your resume must also demonstrate at least one year of specialized experience at or equivalent to the NH-03 (GS-13 equivalent) grade level or pay band in the Federal service or equivalent experience in the private or public sector. Specialized experience must demonstrate the following:Experience applying cybersecurity policies, such as NIST and RMF governance, to identify vulnerabilities and verify system hardening through an automated assessment tool (i.e. ACAS, SCAP, or Fortify); and experience evaluating the effectiveness of security controls to recommend technically sound mitigation strategies and communicating complex technical risk assessments to both technical and non-technical stakeholders to ensure mission success. Your experience must reflect skill in the following areas: attention to detail, customer service, oral communication, and problem solving. 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. IT-related experience demonstrating this competency include: reviewing access logs to report suspicious activity. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. IT-related experience demonstrating this competency include: assessing partner requests for application migration and provide recommendations. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. IT-related experience demonstrating this competency include: providing guidance to management, peers and end users. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. IT-related experience demonstrating this competency include: monitoring logs and reports to resolve or escalate detected issues. Additional qualification information can be found from the following Office of Personnel Management website: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/ Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment.

How to Apply: Interested Applicants must submit resumes/application packages to: SPCIO_HIRING@SSP.NAVY.MIL - Please reference the control number in any correspondence regarding this announcement. Facsimile applications will not be considered. All resumes/applications must be received no later than the close date of this flyer. Resumes are restricted to no more than 2 pages. Illegible/unreadable resumes will not be considered. It is the applicant's responsibility to verify that all information in their resume and documents, are received, legible, and accurate. HR will not modify answers/documents submitted by an applicant. Failure to submit a complete application package will result in an ineligible rating and loss of consideration.

Application Deadline: 2026-05-11