Job Description
Summary This announcement is issued under the Direct Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Selectee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period. Learn more about this agency This job is open to The public U.S. Citizens, Nationals or those who owe allegiance to the U.S. Career transition (CTAP, ICTAP, RPL) Federal employees whose job, agency or department was eliminated and are eligible for priority over other applicants. Clarification from the agency • U.S. Citizens • Career Transition Assistance Program (CTAP) • lnteragency Career Transition Assistance Program (ICTAP) Duties Typical work assignments include, but are not limited to: GS-09 : Participate in defining elements of project scope, objectives, and success criteria for cybersecurity process and tooling enhancements; contribute to drafting user stories and acceptance criteria. Assist in gathering and documenting functional requirements from customers and partners; capture integration needs for secure, scalable, and automatable cybersecurity solutions. Respond to taskings to establish and maintain communication with internal/external stakeholders (government partners, vendors, researchers) to align on priorities, timelines, risks, and coordinated cybersecurity response activities. Support needs analyses and feasibility studies to identify opportunities for improved cybersecurity business processes and automation aligned with CSD missions. Assist with basic risk analyses and trade-off assessments; help prepare recommendations for cybersecurity control enhancements. Participate in developing and maintaining cybersecurity policies, Standard Operating Procedures (SOPs), programs, and implementation guidelines aligned to CSD subdivision missions. Support development of performance measures and continuous improvement plans that strengthen cybersecurity information sharing, coordinated response, and timely reduction of risk to critical infrastructure. Help develop and maintain methods to monitor and measure cybersecurity risk, compliance, and assurance activities. GS-11 : Contribute to and coordinate segments of projects that improve cybersecurity vulnerability intake, triage, disclosure workflows, and public notifications, in support of CSD's Vulnerability Management and CVD missions. Independently develop and evaluate portions of cost estimates and design alternatives for cybersecurity process and tooling enhancements, including automation; provide advice to project leads on design concepts and changes. Conduct needs analyses to identify and recommend new or improved cybersecurity business process solutions; document user stories, acceptance criteria, and integration requirements for secure, scalable, and automatable outcomes. Perform risk analyses and feasibility studies for cybersecurity solutions; draft functional requirements and specifications aligned to CSD subdivision mission objectives and applicable directives. Draft and maintain cybersecurity policies, SOPs, programs, and implementation guidance; collaborate with stakeholders to review and improve existing and proposed policies for clarity, consistency, and mission alignment. Define and track performance measures; recommend continuous improvement actions that enhance cybersecurity information sharing and risk reduction across critical infrastructure. Develop and apply methods to monitor and measure cybersecurity risk, compliance, and assurance activities; assess security impacts of system/process changes and recommend control enhancements. GS-12 : Lead definition of project scope, objectives, and success criteria for complex initiatives that improve cybersecurity vulnerability intake, triage, coordinated vulnerability disclosure workflows, and public notifications. Provide authoritative advice on project costs, design concepts, and design changes; develop and evaluate comprehensive cost estimates and design alternatives for cybersecurity process and tooling enhancements, including automation and orchestration. Establish and maintain effective communication channels with internal CSD subdivisions and external stakeholders (government partners, vendors, researchers) to drive coordinated cybersecurity response activities. Lead needs analyses, trade-off analyses, and feasibility studies to develop, document, and refine functional requirements and specifications for secure, scalable, and automatable cybersecurity solutions that