Department of Defense Education Activity Information Technology Spec (INFOSEC) in Peachtree City, Georgia

Department of Defense Education Activity
3 vacancies in the following location:
  • Peachtree City, GA
Work Schedule is Full Time - Permanent

Opened Friday 10/14/2016 (7 day(s) ago)

** Closes Friday 10/28/2016 (7 day(s) away)

Job Overview

About the Agency

Department of Defense (DoD) Department of Defense Education Activity (DoDEA)

Mission Statement

The Department of Defense Education Activity (DoDEA), through its Community Strategic Plan has made a commitment to be among the world's leaders in education, enriching the lives of military- connected students and the communities in which they live. The mission to educate, engage and empower each student to succeed in a dynamic world is achieved through its five strategic goals of Student, School, Talent, Organization, and Outreach Excellence.

DoDEA is a major Department of Defense (DoD) Field Activity with worldwide scope. DoDEA plans, directs, coordinates, and manages the education programs for DoD dependents. DoDEA consists of three regions, DoDEA Americas, DoDEA Europe, and DoDEA Pacific and a total of eight school districts located overseas and in the U.S. and its territories. DoDEA provides education to eligible DoD military and civilian dependents from pre-kindergarten through grade 12.

Visit our website at for more information!

If you are applying through Merit procedures, the following information applies to you:

WHO MAY BE CONSIDERED: This announcement is open to: Current or Former Permanent Civilian Federal Employees in the Competitive Service; Displaced employees (Interagency Career Transition Assistance Plan - ICTAP eligible) within the Local Commuting Area; and individuals eligible for the following Special Appointing Authorities approved by the Office of Personnel Management (OPM): Veterans with a disability rating of 30% or more, Veterans Employment Opportunities Act (VEOA) Eligible Veterans and Individuals with Disabilities. (Click on the links for more information regarding eligibility for these special appointment authorities: or

If you are applying through Delegated Examining Unit (DEU) procedures, the following information applies to you:

WHO MAY BE CONSIDERED: This announcement is open to: All U.S. Citizens

This position may be filled at either GS-12 or GS-13 grade level, please indicate the grade for which you want to be considered. If selected at the lower grade level, incumbent may be non-competitively promoted to the next grade level in the time frame allowed by regulations and upon management's request. Promotion is contingent upon satisfactory completion of required training, regulatory requirements and demonstrated ability to perform the duties. Promotion is not guaranteed or implied.


PLEASE NOTE: Applicants who currently hold federal excepted service appointments are Outside the Area of Consideration for the Merit. You must apply on the DEU for consideration. As a Information Technology Spec (INFOSEC) you will be responsible for the following duties:

  • As an IT Specialist (INFOSEC), you will serve as the Security Operations Center (SOC) Analyst. As a SOC Analyst the incumbent will provide expert IT security services to DoDEA while cultivating information security knowledge among all employees for the advancement of cyber security.
  • This work involves monitoring client Intrusion Detection Systems (IDS) and Security Analyst Manager devices looking for suspicious or anomalous activities.
  • IDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and Advanced Persistent Threat (APT) detection, and malware analysis/forensics.
  • Create and track investigations to resolution.
  • Advise incident responders in the steps to take to investigate and resolve computer security incidents.
  • Monitor network security events received from DoDEA's monitored servers, and then take appropriate action based on DoDEA's security policy.
  • Assist DoDEA customers with security related issues.
  • Troubleshoot agent software issues.
  • Perform analysis of log files including forensic analysis of system resource access. Tune HIDS policies for individual hosts. Perform ongoing management and backup monitoring of HIDS server.
  • The SOC Analyst is responsible for identifying, classifying, remediating, and mitigating vulnerabilities to create and maintain accountability, centralization and standardization across all of DoDEA's IT assets.
  • Create and distribute content for vulnerability and configuration tools.
  • Assess risk by correlating asset attributes and compliance evidence.
  • Work involves continuous scanning of DoDEA systems environment for comparison relative to Security Technical Implementation Guide (STIG) findings or to Information Assurance Vulnerability Management (IAVM) implementations.
  • The SOC Analyst will utilize client monitoring consoles to remotely monitor tools supplied by the client.
  • Client provided tools include Antivirus/Antispyware, Host Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), Secure Configuration Compliance Validation Initiative (SCCVI), Enterprise Network Mapping and Leak Detection Solution (ENMLDS), Asset Configuration Compliance Module (ACCM), Enterprise Mission Assurance Support Service (eMASS), Continuous Monitoring and Risk Scoring (CMRS), Remediation Manager, and Asset Publishing Service (APS).
  • Monitoring of client security detection devices in order to detect potential attacks as they occur and to provide information to on previous malicious network attacks.
  • Monitoring open source information feeds for cyber intelligence on emerging threats
  • Assess threat risk and develop a contextual threat blueprint on the likelihood and impact to company networks and infrastructure
  • Creating analytical assessments of anomalies and trends, working with internal and external subject matter experts as appropriate to determine meaning, and possible means of protection and/or response
  • Establishing a threat modeling methodology to identify, classify, prioritize and report on enterprise threats using a structured approach
  • Monitoring social media for relevant data and confidential information
  • Briefs incident details to DoDEA-IT leadership as necessary.
Travel Required
  • Occasional Travel
  • The incumbent may be required to travel by military and/or commercial aircraft to a variety of stateside and overseas locations for meetings and conferences. The incumbent is subject to a variety of environmental conditions typical of the overseas areas in which traveling.
Relocation Authorized
  • Yes
  • Permanent Change of Station (PCS) is authorized.
Job Requirements
Key Requirements
  • Must be a U.S. Citizen.
  • Application materials must be received by 11:59PM EST on the closing date.

For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below.

  1. Attention to Detail- Is thorough when performing work and conscientious about attending to detail.
  2. Customer Service- Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
  3. Oral Communication- Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
  4. Problem Solving- Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

The experience described in your resume will be evaluated and screened from the Office of Personnel Management's (OPMs) basic qualifications requirements. See:* for OPM qualification standards, competencies and specialized experience needed to perform the duties of the position as described in the *MAJOR DUTIES * and* QUALIFICATIONSsections of this announcement by Friday, October 28, 2016.

You must have one year Specialized Experience equivalent to the GS-*11for the *GS-12and one year equivalent to the* GS-12for the *GS-13level in the Federal service (experience may have been gained in the private/military sector) giving the particular knowledge, skills and abilities to perform successfully the duties of the position, and that is typically in or related to the work of the position. Experience must be reflected in your resume. *Specialized experience required for the GS-12 level is: *

  • Utilize algorithms, data structures, databases, and tool development.
  • Assist in providing help desk, end-point management, and server management.
  • Interpret programming languages
  • Experience with the administration, use, securing and exploiting common consumer, enterprise devices and operating systems.
  • Perform computer networking, routing and protocols
  • Collect and interpret available data concerning hostile cyber organization, cyber forces capabilities, network system, hardware, software, data, threats, and vulnerabilities.

* *Specialized experience required for the GS-13 level is:

  • Utilize algorithms, data structures, databases, networks, and tool development.
  • Provide help desk, end-point management, and server management
  • Interpret and compile programming languages
  • Signature development and writing exploit code
  • Experience with the administration, use, securing and exploiting common consumer, enterprise devices and operating systems.
  • Perform computer networking, routing and protocols
  • Collect, analyze, integrate, evaluate, and interpret available data concerning hostile cyber organization, cyber forces capabilities, network system, hardware, software, data, threats, and vulnerabilities
  • Perform visualization techniques, especially big data

Specifically you will be evaluated on the following competencies: 1. Expert knowledge in IT security principles, methods, and tools. 2. Mastery knowledge of network design, systems architecture, and security.

3. Knowledge of specialized communications hardware, software, network topologies, directory structures, protocols, and routing algorithms.

4. Ability to communicate orally and in writing.

This position is covered by the Department of Defense Information Assurance Workforce Improvement Program Instruction (DoD 8570.01-M). Applicants must possess IAM Level 3 upon entry and documentation MUST be provided in your application.

Time-in-Grade Requirements: Federal employees must meet time-in-grade requirements for merit promotion consideration. Time-in-grade is the 52-week requirement Federal employees in competitive service, General Schedule (GS) positions at GS-5 and above must serve before they are eligible for promotion (advancement) to the next grade level. Applicants must meet time-in-grade requirements within 30 days of the closing date of this announcement. All other eligibility requirements including, time-after-competitive appointment, minimum qualifications, and any other regulatory requirements by the closing date of this announcement Friday, October 28, 2016

Please review the General Application Information and Definitions at:

Substitutionof education may not be used in lieu of specialized experience for this grade level.

WORK SCHEDULE: Full Time OVERTIME: Occasionally TOUR OF DUTY: *Flexible *RECRUITMENT INCENTIVES: Not Authorized FAIR LABOR STANDARDS ACT (FLSA): Exempt FINANCIAL DISCLOSURE: Not Required TELEWORK ELIGIBILITY: This position is not telework eligible *SELECTIVE SERVICE REQUIREMENT: *Please visit for more information.

Please review the General Application Information and Definitions at:

Other Notes:Delegated Examining -Additional vacancies may be filled from this announcement upon its closing for up to 90 days.

Applicants selected from this announcement may be required to serve a one-year probationary period.

This is a critical sensitive position in accordance with DoD Administrative Instruction 8500.2, Information Assurance Implementation, February 6, 2003.

This position is covered by the Department of Defense Information Assurance Workforce Improvement Program Instruction (DoD 8570.01-M). Applicants must possess IAM Level 3 upon entry.

Work is performed on a 24/7 basis and may be assigned to any of three shifts and may include weekends and holidays shifts.

All applicants must meet qualifications and eligibility criteria by the closing date of the announcement.

Security Clearance

Top Secret

Additional Information
What To Expect Next

Once you successfully complete the application process, you will receive a notification of receipt. Your application package will be reviewed to ensure you meet the basic eligibility and qualifications requirements, and you will receive a notification. A review will be made of your online questionnaire and the documentation you submitted to support your responses. A list of qualified applicants will be created and sent to the selecting official. All applicants reviewed and/or referred will receive a notification letter.

The selecting official may choose to conduct interviews, and once the selection is made, you will receive a notification of the decision.


The Federal government offers a number of exceptional benefits to its employees. The following Web address is provided for your reference to explore the major benefits offered to most Federal employees:

Other Information

*Please review the General Application Information and Definitions at: *

NOTE: If you submit a resume but no questionnaire, you cannot be considered for the position. If you submit a questionnaire but no resume, you cannot be considered for the position. Your application will be appropriately documented and you will be removed from further competition against this announcement. *NOTE:* Declining to be interviewed or failure to report for a scheduled interview will be considered as a declination for further consideration for employment against this vacancy.

This announcement may be used to fill additional vacancies.

Salary Range: $74,260.00 to $114,802.00 / Per Year

Series & Grade: GS-2210-12/13

Promotion Potential: 13

Supervisory Status: No

Who May Apply: US Citizens and Status Candidates

Control Number: 453468900

Job Announcement Number: DoDEA-HQ-17-1822265-B