Summary Who may apply: Current, permanent DoD Federal Civilian Employees in the competitive service, eligible Defense Cyber Excepted Service Employees, eligible Priority Placement Program DoD Military Spouse Preference applicants, eligible PPP applicants, and current DoD VRA employees. Position is located in ACCOUNTING SERVICES, MOCAS SYSTEM, MOCAS SYSTEMS ANALYSIS BRANCH, ZTCED. This job announcement may be used to fill similar positions on other teams in the I&T Directorate. Responsibilities As an Information System Security Manager (ISSM), implements and enforces all DoD information system Information Assurance (IA) program policies and procedures for IT applications. Provides authoritative evidence, advice, and guidance pertinent to IA program policies, guides, and standard operating procedures (SOPs) during all stages of the automation process. Prepares certification and accreditation packages via the Enterprise Mission Assurance Support Service (eMASS) automated cybersecurity certification and accreditation system. Maintains an agency accreditation inventory via the eMASS automated cybersecurity certification and accreditation system following Risk Management Framework (RMF) requirements. Performs analysis of operating and application systems software using a variety of fact finding and analytical techniques to determine security vulnerabilities. Perform review of all coding and development to ensure compliance with standards and Cyber Security requirements. Performs and/or provides support in implementing RMF, FISMA, FISCAM, FMFIA, FFMIA, SSAE, and Audit Readiness formal reviews. Develops and performs independent and objective assessments, audits, reviews and evaluations of enterprise information systems and FISCAM information systems internal controls. Manages the vulnerability and incident reporting process and is a core POC for MOCAS security incidents and violations for DFAS. Serves as the IA point of contact for internal and external audit organizations and provides audit assistance, support, and coordination, as necessary, relating to security standards and requirements. Receives reports of suspected Automated Information Systems (AIS) security incidents and vulnerabilities. Requirements Conditions of Employment Qualifications Basic Requirement: Applicants must have IT-related experience demonstrating the following competencies appropriate to, or above, the level of this position. For vacancies below the full-performance level of the position, the basic requirement will be evaluated on a developmental basis. Your resume and work experience should clearly support your ability to meet these competencies and will be evaluated as part of the entire application process. Attention to Detail - experience reviewing my own information technology-related work or data and have been asked by others to review their work or data to ensure accuracy, completeness, and consistency with standards. Customer Service - experience maintaining relationships with customers, assessing current information technology needs of customers, and developing or identifying information technology products and services that are tailored to meet customer needs. Oral Communication - briefing mid-level management and IT staff on the status of information technology systems, projects, or daily operations, including the communication of technical information to a non-technical audience. Problem Solving - identifying alternatives to address complex information technology-related issues by gathering and applying information from a variety of sources that provide a number of potential solutions. One year of specialized experience equivalent in level of difficulty and responsibility to that of the next lower grade (GS-12) within the federal service, which demonstrates the ability to perform the duties of the position, is required. Specialized Experience is defined as: Applying Information systems security principles, concepts, and methods sufficient to review proposed new systems and software designs for potential security risks; recommending mitigation or countermeasures. Performs and/or provides support in implementing RMF, FISMA, FISMA, FISCAM, FMFIA, FFMIA, SSAE or Audit Readiness formal reviews. Time-in-Grade: Current or former federal employees who have held a GS position in the preceding 52 weeks, must meet the time in grade requirement. Applicant must have served 52 weeks as a GS-12 or higher grade in Federal Service. You may qualify for consideration if meeting time-in grade, specialized experience, education requirement, 90 days after competitive appointment requirement, and all other qualification requirements within 30 calendar days after the closing date of the announcement, unless otherwise indicated on the announcement. Education Education is not substitutable for specialized experience at the GS-13 grade level. Additional Information In accordance with the DoD 8140 policy series, the position is subject to completing Foundational Qualifications in 9 months and completing Residential Qualification requirements in 12 months. Moving expenses will be paid. The Tax Cuts and Jobs Act of 2017 makes certain reimbursements/payments taxable. For information on these changes and the Relocation Income Tax Allowance (RITA), for which some appointees are eligible, click here. For positions where relocation is paid (see Location block of vacancy announcement), you can learn more about relocation allowances and entitlements. Telework availability will be based upon the mission requirements and supervisory determination. We may use this announcement to make a temporary promotion. For some positions, the temporary promotion may be made permanent without further competition. Selections are subject to restrictions resulting from the DoD Program for Stability of Civilian Employment. A one year probationary or trial period may be required. We may use this announcement to fill additional vacancies within 120 days of the closing date. This position is exempt from the Fair Labor Standards Act. Travel requirement is occasional. This position is covered by a bargaining unit. PPP Application Based Preference Eligibles (Military Reserve and National Guard technicians, Military Reserve and National Guard technicians receiving disability retirement, and Retained Grade employees) will receive priority consideration at the full performance level only. Retired Civil Service Employee: Employment of retired Federal employees receiving an annuity is subject to the requirements of the Department of Defense (DoD) policy guidance. (See DoD Instruction 1400.25, Volume 300, here. The Security Designation will vary and dependent upon position and may require a secret clearance or higher. Employment in this position requires a background investigation which may delay starting date. If you are selected and cannot obtain a favorable security determination within a reasonable period of time due to disclosed/undisclosed background issues, the employment offer may be withdrawn. Individuals selected are required to obtain/maintain a favorable security determination to occupy a sensitive position within the agency as a condition of employment. Failure to maintain eligibility to occupy a sensitive position may result in termination. For more information see the security section of Understanding Vacancy Announcements. Criminal History Inquiries- For some positions, criminal history inquiries may not take place before you receive a conditional job offer. Please see Fair Chance to Compete for Jobs Act of 2019 (dfas.mil) for more information on The Fair Chance to Compete Act, exceptions, and DFAS contact information. All applicants are encouraged to apply electronically. If you are unable to apply on-line, you may contact 317-212-0454 for assistance. This position requires you to obtain and maintain a Foundational Level Certification under the Security Cooperation Workforce (SCW) Certification Program as a condition of employment. Failure to become certified within the required time-frame may be grounds for removal from the position and/or from Federal service. Information about the SCW Cert. Program is available at Certification 2.0 | Defense Security Cooperation University (dscu.edu)