Supervisory IT Specialist (Security)

Applicants must have demonstrated experience as listed below. This requirement is according to the AO Classification, Compensation, and Recruitment Systems which include interpretive guidance and reference to the OPM Operating Manual for Qualification Standards for General Schedule Positions. Specialized Experience: Applicants must have at least one full year (52 weeks) of specialized experience which is in or directly related to the line of work of this position. Specialized experience is demonstrated experience must demonstrate ALL areas defined below: Leading systems engineering efforts to deliver high-quality cybersecurity solutions that mitigate advanced persistent threats Managing Windows and Linux environments, including operating system architecture and associated security controls and configurations Leveraging application programming interfaces (APIs) to automate and orchestrate security devices Conducting system evaluations, including development of technical and operational requirements Desired (but not required) certifications: ISC2 certifications (CISSP preferred) ISACA certifications (e.g., CISM, CISA) SANS/GIAC security certifications Cisco certifications (CCNP Security or CCIE Security preferred) Splunk Architect-level certification (e.g., Splunk Core Certified Architect or equivalent advanced Splunk credentials) This position is in the Department of the Chief Information Office, Information Technology Security Office (ITSO), Security Mission Integration Division. ITSO manages the Judiciary's IT security program, oversees the security operations of Judiciary IT assets and environments, proposes national IT security policies and develops guidelines for their implementation, and establishes and maintains collaborative relationships within the Judiciary and with third-party partners.

• The Supervisory Information Technology Specialist (Security) serves as the Security Automation Branch Chief within the Information Technology Security Office (ITSO), Security Mission Integration (SMI) Division. The incumbent leads ITSO solution engineering across the system development life cycle and oversees the development and sustainment of ITSO systems and applications, while driving new capability development in response to enterprise requirements. The position reports to the SMI Division Chief and plays a critical role in protecting the confidentiality, integrity, and availability of Judiciary information systems. Duties include, but are not limited to: Leading the branch by overseeing federal and contractor staff in accomplishing branch mission objectives and responsibilities. Planning and developing the branch budget for personnel, training, and systems, including supporting Judiciary Information Technology Fund (JITF) submissions. Ensuring the operational readiness, maintenance, and effectiveness of ITSO security systems. Integrating cybersecurity systems to maximize automation of security mitigations within cyber-relevant timeframes. Developing key performance metrics to measure the effectiveness and efficiency of cybersecurity systems. Providing cybersecurity architecture leadership, including developing threat models, assessing operational risk, and identifying required security controls. Developing and refining branch procedures to ensure compliance with Judiciary policies, standards, and security requirements. Providing security engineering and operational support for enterprise operations, cloud hosting, network services, and data center environments. Overseeing the management and security of ITSO systems in accordance with applicable policies, procedures, and security frameworks. Overseeing vulnerability management activities and ensuring timely mitigation of cybersecurity risks in accordance with the Judiciary Information Security Framework (JISF). Leading the development of cybersecurity capability roadmaps, detection engineering programs, and advanced alerting methodologies to address emerging threats and security gaps. Overseeing the development and implementation of cybersecurity tools and capabilities to enhance threat detection, response, and validation of security controls. Developing methodologies for continuously monitoring and assessing the Judiciary's cybersecurity posture and operational effectiveness. Serving as a subject matter expert on cybersecurity, networking, operating systems, and information security technologies and methodologies.