Skip to main content

Vacancy Details

Grade: 14

No questions specified.

Grade: All Grades

Carefully read each question before responding. Some questions will be used to screen out ineligible applicants. Applicant errors in responses will not be corrected. You are responsible for the accuracy of your application. When you receive your application confirmation notice, we suggest that you request that a copy of the questions and your responses be sent to you by return email. Then, if you identify any inaccuracies, you may change your responses before the closing date of this announcement. If you are rated ineligible based on your responses to the questions, you will be notified by email shortly after the announcement closes.
Note: Your resume must thoroughly support your responses to the job-specific questions, or you may not receive credit.
1 I certify that, to the best of my knowledge and belief, all of the information on and attached to this application is true, correct, complete, and made in good faith. I understand that false or fraudulent information on or attached to this application may be grounds for not hiring me or for firing me after I begin work and may be punishable by fine or imprisonment. I understand that any information I give may be investigated. Answer to this question is required
  • Yes
  • No
2 Are you currently serving or have served in the last five years in a Political Appointment in the Federal Government? Answer to this question is required
  • Yes
    2.1 Please list the title, agency, and dates of this appointment. Please note you will be required to meet OPM Approval of your appointment if selected. Maximum length of 250 characters.
  • No
Specialized Experience is one year of experience at the GS-13 level, or equivalent, that has equipped the applicant with the particular knowledge, skills, and abilities to perform successfully the duties of this position which include: - Applying IT principles, concepts, standards and practices in order to develop new concepts, principles, standards and methods in program management for applicable computer system(s); AND - Experience utilizing computer search and retrieval procedures to identify, summarize and analyze statistical data and to produce trend analysis and statistical reports in a variety of formats for use by management; AND – Applying IT security concepts, standards and methods, including information systems security protocols and regulations.
3 Select the answer that best describes your experience as it directly relates to the specialized experience statement. Carefully review your application and ensure that your response is supported by your resume Answer to this question is required
  • I am qualified at the GS-14 level because I have one year or more of GS-13 level or equivalent experience as described above which has equipped me with the particular knowledge, skills, and abilities to successfully perform the duties of the position.
  • I do not have one full year of specialized experience equivalent to the definition as described above.
4 In addition to meeting specialized experience, applicants must show proficiency in the following. Are you proficient in all of the following - Attention to Detail, Customer Service Skills, Oral Communication and Problem Solving? Answer to this question is required
  • Yes
  • No
5 Select the response(s) that describe standards or guidelines used in your experience evaluating IT policy, procedures, and technical security controls in accordance with applicable Federal laws, regulations or comparable private sector IT regulations. Answer to this question is required
  • National Institute of Standards and Technology (NIST) 800-series Special Publications and Federal Information Processing Standards.
  • Federal Information Security Management Act (FISMA) and Office of Management and Budget FISMA guidelines.
  • Private sector regulations or industry best practices.
  • None of the above.
6 I have reviewed the following information security plans, programs or practices for evaluation. Answer to this question is required
  • Compliance with applicable laws, regulations, policies, and procedures.
  • Adequacy of system security controls.
  • Utilization of IT resources.
  • Achievement of security program objectives.
  • None of the above.
7 Select all of the responses that best describe your experience in operating vulnerability assessment scanning software to identify system security risks and weaknesses. Answer to this question is required
  • Network vulnerability assessment tools
  • Database vulnerability assessment tools
  • Web application vulnerability assessment tools
  • Host based system security assessment tools
  • Wireless protocol vulnerability assessment tools
  • Network device vulnerability assessment tools
  • None of the above.
8 Select the response(s) that describe your experience testing, evaluating, and applying advanced audit techniques and methodologies. Answer to this question is required
  • Statistical sampling
  • Computer assisted audit techniques (CAAT)
  • Trend analysis
  • Structured questionnaires
  • Regression analysis
  • Decision theory
  • None of the above.
9 Select the response(s) that describe your experience performing the following analytical and evaluative activities, studies, and projects. Answer to this question is required
  • I have applied fact-finding and analytical techniques in resolving issues.
  • I have developed and proposed recommendations and policy changes to assist organizations in accomplishing program goals.
  • I have used qualitative and quantitative methods, and other statistical approaches and techniques to assess program effectiveness.
  • I have knowledge and experience writing and reading software code.
  • I have knowledge and experience writing and reading software scripts.
  • None of the above.
10 Select the response(s) that best describe your experience conducting reviews of system development projects in accordance with applicable Federal criteria or industry best practices. Answer to this question is required
  • I have identified projects risks as they pertain to project schedule, cost, and the performance goals of IT projects.
  • My recommendations have resulted in assisting organizations with meeting their schedule, cost, and performance goals for their IT projects.
  • I have developed and communicated significant findings and recommendations for improving system development controls of complex IT projects.
  • None of the above.
11 Select the one response that best describes your knowledge and experience performing audits within the Federal government or a comparable position within the private sector organizations. Answer to this question is required
  • Auditing information systems controls and system development reviews within private sector organizations.
  • Evaluating information system controls and system development reviews while serving as an information systems auditor.
  • Performing a mix of financial and performance audits in accordance with Government Accountability Office (GAO) Yellow Book standards.
  • Performing a mix of information system, financial, or performance audits.
  • None of the above.
12 I have experience working with organizations to thoroughly vet vulnerability assessment scan results and develop appropriate corrective actions. Answer to this question is required
  • Yes
  • No
13 Please select all of the following that you have experience performing. Answer to this question is required
  • I have conducted in-depth, and persuasive conferences and briefings with program managers, technical both in and out of government, and policy and political leaders on findings and recommendations reached in audit reports or reviews.
  • I have engaged in often-controversial discussions of policy, program, and management issues.
  • I have addressed programmatic, policy, business, financial, and technical issues, even with difficult audiences.
  • I have provided technical and management advice and assistance regarding technical, financial, or business programs and operations to officials and managers knowledgeable about such matters.
  • None of the above.
14 Which of the following have you performed as a regular part of your job duties? Answer to this question is required
  • I have prepared in-depth business, marketing, and cost benefit analysis utilizing sophisticated evaluation and analytical techniques to produce convincing findings and reports to senior management and political and policy leaders.
  • I have experience writing audit review reports that are controversial in nature.
  • I have prepared concise briefing papers and materials to present and sell findings and recommendations to senior program, management, and congressional leaders.
  • I have experience reviewing other’s writing for accuracy, technical competency, and adherence to GAO principles, standards, and requirements for audit review reports.
  • I have experience applying GAO principles, standards, and requirements to final audit review reports.
  • I have experience issuing final audit review reports and recommendations.
  • I have experience writing audit review reports that are part of a larger scope or controversial in nature.
  • I have had education or training in performing the task, but have not yet performed it on the job.
  • None of the above.