The Department of Homeland Security (DHS) is recruiting professionals to support a range of developmental roles in Cybersecurity Architecture including, Junior Information System Security Officer, Cyber Hygiene Assessment (CHA) Analyst, Data Management Specialist and Emergency Communications Cyber Analyst. All positions are in the DHS Cybersecurity Service.
DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses Talent Pools to pull qualified applicants (i.e., individuals who have successfully completed the multi-phase assessment process for their capability and career track/level) for consideration for these jobs.This announcement is being used to fill the Cybersecurity Architecture Talent Pool. By applying to this job announcement, you are opting to be part of the DHS-CS Talent Pool for ongoing consideration for employment for relevant open jobs and will remain eligible for consideration for up to one year from the date of completion.
There are a variety of Cybersecurity Architecture opportunities across the Department, including supporting several specialized programs at DHS Office of Strategy, Policy, and Plans (PLCY), the Cybersecurity and Infrastructure Security Agency (CISA), DHS Office of the Chief Information Officer (OCIO), and the Federal Emergency Management Agency (FEMA).As a DHS Cybersecurity Service employee in the Developmental Career Track, you will continually and proactively participate in learning activities to enhance and apply your developing expertise in the technical capability of Cybersecurity Architecture to perform a range of routine tasks, including:
- Assisting colleagues in the implementation of the Department's information systems security policy and guidelines.
- Reviewing security and privacy requirements to identify potential system needs and translating those requirements into secure technical and operational recommendations.
- Supporting design reviews/evaluations based on provided security requirements.
- Conducting routine security risk assessments, gap analyses, and business impact analyses to detect system weaknesses, identify the depth and breadth of needed security controls, and make targeted recommendations to address issues and mitigate risks.
- Supporting the design and evaluation of networks that are secure from known and perceived methods of cyber-attack on all elements, including but not limited to wired and wireless elements, Cloud-based, and virtual environments incorporating secure controls.
- Supporting efforts to maintain appropriate levels of resiliency and network viability.
- Assisting senior architects in the design and evaluation of software that is secure from known and perceived methods of cyber-attack.
- Analyzing software risks, understanding likely points of attack, and making recommendations on how software could prospectively address potential attacks.
- Conducting secure code review in accordance with software assurance best practices.
- Assessing systemic threats in deployment environments and identifying application vulnerabilities, taking into consideration security controls, recovery strategies, contingency plans, and testing and evaluation.
- Supporting efforts to track and correct system defects through testing and implementation phases.
- Supporting necessary contingency planning efforts.
- Actively engaging with cybersecurity engineers and architects across OCIO and or/CISA to isolate IT security recommendations and advise leadership and staff based on relevant guidelines, organizational policy, and other approved guidance.
This position is in the Developmental Track at the Associate Cybersecurity Specialist level. At this level, individuals generally:
- Have 3+ years of cybersecurity work experience
- Are capable of serving as a cybersecurity professional with some experience who applies still-burgeoning technical expertise to perform routine work with significant supervision and clear guidance
DHS Cybersecurity Service employees with a technical capability in Cybersecurity Architecture will generally apply their expertise to:
- Develop system concepts and work on the capabilities phases of the systems development lifecycle
- Translate technology and environmental conditions (e.g., laws, regulations, policies and technical standards) into system and security designs and processes.
- Provide recommendations for investment standards and policies that drive how controls will be applied across the organization
DHS Cybersecurity Service employees start at career levels and salaries matching their experience and expertise. In recruiting for this opportunity, DHS may hire employees at higher or lower career levels and associated salaries. To learn more about DHS Cybersecurity Service career tracks and levels, visit our application portal.This position is focused on Cybersecurity Architecture.DHS Cybersecurity Service jobs are structured cybersecurity specializations - called technical capabilities. To learn more about technical capabilities, visit our application portal.