IT Cybersecurity - Defensive Cyberspace Operations Technical Expert

Come be a part of something big! Smart Minds, Cool Jobs and Awesome Rewards! Fueled by innovation, talent and ambition, the Air Force Civilian Service (AFCS) is seeking civilian professionals prepared to deploy war-winning capabilities for the United States Air Force.

The Air Force Civilian Service (AFCS) is looking for THREE Information Technology (IT) Cybersecurity Specialist (INFOSEC), Defensive Cyberspace Operations Technical Experts (GG-2210-13), to work at the 835th Cyber Operations Squadron (COS), on Scott Air Force Base (AFB), in Belleville, Illinois.

This position is a Cyber Excepted Service (CES) position implemented under Section 1599F, Title 10 United States Code (USC).

Salary ($114,332 - $156,256) based on experience

Relocation expenses may be paid.

Recruitment incentives may be available based on eligibility

This position can close at any time. Apply Now!

In this position you will serve as an experienced, Senior-skill-level defensive cyberspace operations technical expert and Cyberspace Protection Team (CPT) Mission Element crew member supporting tasked Service, Combatant Command and National Agency partners. Assists mission partners to ensure mission assurance (MA) and Information Assurance (IA) of critical key cyber terrain and mission areas. As an experienced senior-skill level operational team member, enables hardening of systems and networks against exploitation, detect unauthorized, malicious, or adversary activity, eliminate adversary presence, and assess defensive capabilities by utilizing leading-edge computer security technology, tactics, techniques and procedures. Provides technical expertise in the performance of work requiring the application of cyber security principles, methods, and techniques. Applies cyber operations knowledge in the planning, research, design, development, test, evaluation, integration, modification, or exploitation of complex electronic and operational mission systems to support the organization's mission objectives. An individual appointed under this position description may be tasked/assigned to fill one of the following CPT crew positions: Network Analyst, Host Analyst (Unix), Host Analyst (Windows), or Cyber Threat Analyst. Positions certified as “senior” skill level may be called upon to lead mission teams consisting of Senior and Basic level military, civilian, and/or contractor personnel in the execution of operational mission tasks and objectives.

The ideal candidate will show advanced knowledge of TCP/IP models, Bro, Python, Bash scripting, SIEMs (Splunk, LogRhythm, SolarWinds, ELK, Arkime, etc), Network Intrusion Detection Systems (NIDS), Network Forensic Analysis, and development of Risk Mitigation, Mission Defense, and Incident Response Plans.

Must be a U.S. Citizen

Must be able to obtain & maintain a “Top Secret/SCI” Security clearance.

Must possess a valid driver’s license.

Must be able to pass a pre-employment physical.

This position requires at a minimum, a bachelor’s degree in a related field or equivalent experience.

Must obtain & maintain an Information Assurance certification within 6 months of assigned duties.

This position is designated as a Drug Test Designated Position.

No History of Domestic Violence - This position is covered by the Domestic Violence Misdemeanor Amendment of the Gun Control Act (Lautenberg Amendment).

This is a Mission, Key, & Emergency Essential Position. Active Guard and Reserve personnel are not qualified.

The incumbent may be required to travel within the Continental United States (OCONUS) or to overseas locations. Notice of the need to travel may be received in less than three days. Travel may be frequent and/or may be for long periods lasting 6 months or more and may be to austere locations.

The incumbent must achieve and maintain appropriate Cyber Mission Force (CMF) requirements as specified in Job Qualification Record (JQR) and attain Combat Mission Ready (CMR) certification within 18 months of assignment of these duties.

• Advanced knowledge of and skill in application of the concepts, and practices in two or more of the following areas: cyberspace security, computer programming, networking, computer operating systems (Windows, UNIX), malware forensics; threat analysis, operations research, artificial intelligence/machine learning; cyber incident handling and response, penetration testing, software/malware reverse engineering. the application of Information Assurance (IA), Mission Assurance (MA) and threat hunting technologies and techniques, analysis of computer systems, operating systems, network communication protocols, computer and network architectures and virtual machine (VM) technology; ability to analyze and correlate data in order to distinguish evidence of attacks or intrusions from normal activity.
• Advanced knowledge of IA and MA technologies such as COMSEC, COMPUSEC, EMSEC, and OPSEC, computer systems, digital communications systems, network protocols, and computer architectures; and computer security penetration tools and techniques. Extensive knowledge and skill in one or more of the following areas: (1) computer operating systems (Unix, Windows, etc.) enterprise services, file systems, security, configuration and analysis (2) network operations and security including net flows, protocols, PCAP, etc. (3) computer programming and scripting (4) malware identification and analysis (5) system forensics.
• Advanced knowledge and skill in identifying, analyzing, articulating and executing program goals and objectives, work processes, and administrative operations of the organization in support of major issues and operational challenges.
• Skill in developing new or modified work methods, processes, or information protection procedures; and ability to develop and articulate technical direction and approaches to formulating interoperability plans, implementation plans, and contingency plans involving communications and connectivity between major command and control systems; proficiency in applying analytical and evaluative methods and techniques to issues or studies concerning the efficiency and effectiveness of program operations.
• Ability to clearly and effectively discuss and present program objectives, managerial tasks, and technical information verbally and in writing to management and professional personnel at all levels within DoD and other government agencies within timelines prescribed by regulation or management.
• Ability to effectively perform in both leadership and followership roles as part of teams comprised of military, federal civilian, and contract employees from within and outside of the employee's work center and unit. This includes effective interpersonal skills, as well as the ability to plan, organize work, and consult effectively with co-workers, as well as the ability to recognize and assume informal leadership and followership roles as appropriate to the team tasking and dynamics. p>You will be evaluated for this job based on how well you meet the qualifications above.

Your application package (resume, supporting documents) will be used to determine your eligibility, and qualifications.

Click the apply button to complete an application and upload resume (PDF or Word Doc) and/or additional documents (Transcripts, certifications, Vet Docs (DD214), SF-50).

To receive additional information about current and future job openings with AFCS via email notification, please subscribe at www.Afciviliancareers.com and sign up to “Get Career Updates.”

Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.

U.S. citizenship required. Must be of legal working age. AFCS is Equal Opportunity Employer.