Job Summary
This position is located in the District of Columbia Office of the Inspector General (OIG), within the Information Technology (IT) Unit of the Business Management Division. The OIG’s mission is to promote economy, efficiency, and effectiveness and to detect and deter fraud, waste, and abuse in District government programs and operations.
Duties And Responsibilities
This position demands superior customer service, interpersonal communication, collaboration, and problem-solving skills. The incumbent will work in a fast paced, 24x7 customer-focused environment where deliverables must be completed within the prescribed quality, timeframe, and funding parameters. This position will require the ability to communicate and interface with senior management officials as well as staff and OIG stakeholders.
Maintain and monitor all installed systems and infrastructure for the organization to comply with the agency guidelines or SOP (standard operating procedures) and apply IT security principles and methods to include development and dissemination of IT security policies and practices to protect information assets in compliance with the Federal Risk and Authorization Management Program (FedRAMP).
Provide expert support on technical cybersecurity and Assessment and Authorization (A&A) process guidance to IT implementation team for the secure development/implementation of technologies that support scientific research and business operational needs.
Identify, analyze, and document risks to computer systems, including continuous monitoring of system components, vulnerability scanning, and remediation, coordinating security incidents, change management, and deployment of security controls in compliance with NIST Special Publication 800-53 and perform security control assessments as required.
Performs other related duties as assigned.
Qualifications And Education
Individuals must possess IT-related education and/or experience as defined in the Information Technology qualification standard (2210 series). In addition to meeting basic requirements, at least one (1) year of specialized experience equivalent to at least the grade 13 level is required. Specialized experience is work that has equipped the applicant with the knowledge, skills, and abilities to successfully perform the duties of the position.
Examples of specialized experience include: Advanced knowledge implementing and maintaining an information security program; maintaining an organization's information system security program to ensure the confidentiality, integrity, and availability of data; monitoring security requirements for certification and accreditation, network operations and protocols, and/or systems testing and ability to assign project goals and objectives, sequence and time essential program events and milestones, and assess methods of evaluating progress. Establishing vulnerability reporting criteria; reviewing and evaluating security incident response policies for potential security threats or risks; and verifying that sensitive or classified information systems meet the appropriate safeguards required by regulations or statutes.
There is no substitution of education for the required experience at this grade level.
At least 5 years of relevant work experience desired
Licensure/Certification
Not applicable
Work Environment
Work is typically performed in an office setting (or cubicle), and the work area is adequately lighted, heated and ventilated.
Other Significant Facts
The incumbent of this position will be subject to enhanced suitability screening pursuant to Chapter 4 of the DC Personnel Regulations Suitability. This position is designated as a Security Sensitive position.
This position is classified as “security sensitive” due to the position’s duties and responsibilities. Security sensitive positions are positions of special trust that may be reasonably expected to affect the access to or control of activities, systems, or resources that are subject to misappropriation, malicious mischief, damage, or loss or impairment of control of communication.
The IT Specialist is responsible for ensuring that personally identifiable information (PII) and privacy data sharing are protected. Directing the use of external, third-party resources to scan for vulnerabilities and conduct penetration tests. Also, the incumbent will be ensuring information systems reliability and accessibility as well as preventing and defending against unauthorized access to systems, networks, and data.
Promotion Potential: No known promotion
Duration of Appointment: Permanent
Pay Plan, Series and Grade: CS-2201-14
Collective Bargaining Unit: This position is not represented by a collective bargaining unit.
When applying for DC OIG positions, please ensure you check your spam folder after the closing date. Information regarding interviews will be sent via the OIG Recruitment email box. OIG reserves the right to deny interviews after dates have been identified and interviews conclude.
The District of Columbia Government does not discriminate in employment based on race, color, religion, sex including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.
Submission of a resume alone is NOT a complete application. This position may require the completion of additional form/s and/or supplemental materials. Failure to provide the required information and/or materials will result in your application not being considered for employment.