CybersecurityJobs.io
← Back to all jobs

Job Description

The SEC seeks an IT Specialist (INFOSEC) to engineer, operate, and sustain enterprise defensive network infrastructure and lead capability projects and contractor guidance to strengthen defenses.

Responsibilities

  • Engineering, deploying, and sustaining the SEC's enterprise network security infrastructure including next generation firewalls, SASE/ZTNA, and SD-WAN to ensure availability, performance, and a defensible security posture.
  • Operating and maintaining defensive platforms day to day, including configuration management, policy tuning, software and firmware lifecycle and patching, capacity planning, and health monitoring.
  • Serving as the senior technical authority and escalation point for complex infrastructure issues, providing advanced troubleshooting and resolution, and directing technical work of supporting contractor staff.
  • Leading engineering projects end to end for new and upgraded capabilities such as SASE/ZTNA and SD-WAN across enterprise and hybrid on premises and cloud environments.
  • Developing and maintaining secure configuration baselines, standard operating procedures, and engineering documentation, and automating repeatable configuration and operational tasks to improve consistency and reduce manual effort.
  • Translating threat intelligence and detection findings into infrastructure level defensive improvements such as firewall policy, segmentation, access control, and traffic inspection to harden the environment against current adversary tactics.
  • Collaborating with the SOC, logging and observability, and network operations teams, and with product vendors, to integrate capabilities, resolve issues, and align infrastructure with operational and mission requirements.
  • Operating and supporting intrusion detection sensor infrastructure to ensure reliable security telemetry delivery to the SOC and logging observability teams.
  • Identifying gaps in defensive coverage, resilience, and operational processes; recommending and implementing improvements; and providing technical input to architecture and roadmap decisions.

Requirements

  • CITIZENSHIP: You must be a US Citizen.
  • SELECTIVE SERVICE: Males born after 12/31/59 must be registered or exempt from Selective Service (see https://www.sss.gov/).
  • SECURITY CLEARANCE: Entrance on duty is contingent upon completion of a pre-employment security investigation. Favorable results on a Background Investigation may be a condition of employment or selection to another position.
  • PERMANENT CHANGE OF STATION (PCS): Moving/Relocation expenses are not authorized.
  • DIRECT DEPOSIT: All Federal employees are required to have Federal salary payments made by direct deposit to a financial institution of their choosing.
  • PROBATIONARY PERIOD: This appointment may require completion of a one-year probationary period.
  • DUTY STATION REPORTING: The selectee is required to report to the listed duty station(s).
  • ON CALL: The duties may require carrying a cell phone and being on call 24 hours a day, seven days a week on a rotational basis, based on organizational needs.
  • BASIC REQUIREMENT:
    • Attention to Detail: Is thorough when performing work and conscientious about detail.
    • Customer Service: Works with clients and users to assess needs, provide information or assistance, and resolve problems; understands available products and services.
    • Oral Communication: Expresses information effectively to various audiences; makes clear presentations; listens and responds appropriately.
    • Problem Solving: Identifies problems, assesses information, uses judgment to generate and evaluate alternatives, and makes recommendations.
  • MINIMUM QUALIFICATION: SK-14 - Applicant must have at least one year of specialized experience equivalent to the GS/SK-13 level.
  • SK-14 relevant experience includes:
    • Engineering enterprise network security controls including hardening and configuration management;
    • Designing enterprise security capabilities and operations including automation and escalation resolution;
    • Defining secure cloud guardrails and Zero Trust access patterns aligned to federal baselines;
    • Evaluating emerging technologies with baseline updates and security impact analysis.
  • ACCOMPLISHMENT RECORD COMPETENCIES:
    • Information Systems/Network Security: Implements methods, tools, and procedures to prevent vulnerabilities and protect privacy and security of applications, systems, and networks.
    • Cybersecurity Engineering: Creates and manages hardware, software, and privacy and security policies for protection of systems, networks, and data.
    • Cloud Architecture: Designs and develops cloud-based infrastructure aligned with best practices and requirements, including data analysis and knowledge of industry developments.
    • Technology Awareness: Applies new technologies and applications to meet organizational requirements.
  • TECHNOLOGIES: Next generation firewalls, SASE/ZTNA, SD-WAN, intrusion detection sensor infrastructure, Zero Trust ZTNA architecture

This job is open to

  • The public: U.S. Citizens, Nationals or those who owe allegiance to the U.S.

Additional information

  • Supplementary vacancies may be filled in addition to the number stated and may be filled from any division or office within the agency.
  • SEC compensation may vary by duty location; initial pay is established below the maximum rate of the range.
  • CTAP ICTAPeligibility and related procedures apply for eligible displaced federal employees.
  • Reasonable accommodation requests may be submitted to the SEC during the application process.
  • Equal Employment Opportunity information and related disclosures are available to applicants.

Benefits

A career with the U.S. government provides comprehensive benefits; eligibility depends on the type of appointment and status. Learn more about federal benefits.

How to apply

  • To apply, complete the online application and submit the required documents specified in the Required Documents section.
  • Submit a complete package by 11:59 PM (EST) on the closing date to receive consideration; no additional documents will be accepted after the deadline.
  • Click Apply to access the online application; you will need a USAJOBS account.
  • Attach your resume and supporting documents, with the option to upload additional documents before submission; allow time for virus scan processing.
  • Review your package, provide any necessary personal information, then submit the application.
  • To check status, sign in to USAJOBS and view the Application Status on your Welcome screen.

Similar Jobs

Get Job Alerts

New jobs delivered to your inbox.