Skip to main content

Grade: 13

No specific questions.

Grade: All Grades

1 I have thoroughly reviewed the 'How to Apply/Required Documents' & 'Qualifications' sections of this Vacancy Announcement to determine which supplemental documents to submit. This may include: Transcripts to verify undergraduate/graduate education; SF-50 if I am a current/former Federal employee; DD214 if I am a veteran (and SF-15/VA Letter if applicable), etc. I understand that failure to fax in required documents by the vacancy announcement's closing date may result in loss of consideration. Answer to this question is required
  • Yes
  • No
2 Do you have one year of specialized experience equivalent to at least the GS-12 grade level or the next lowest pay band in the Federal service? (See the "Qualifications" section of this announcement for the definition of specialized experience. Answer to this question is required
  • Yes
  • No
3 Choose all areas where you have experience establishing, coordinating and implementing IT Security requirements within the SDLC process? Answer to this question is required
  • Verifying and performing FISMA reviews
  • Verify that security requirements are properly implemented and documented
  • Documenting IT security controls and policies
  • Monitoring security systems
  • Monitoring the application of system patches and virus updates
  • Approving firewall rules and monitoring firewall logs
  • Monitoring audit and security logs
  • Applying information security/information assurance policies
  • Conduction Certifications and Accreditation activities
  • Developing an Information Systems Security Program
  • Conducts vulnerability assessments and audits
  • Implementing an Incident Response Program
  • Implementing a disaster recovery plan
  • Implementing a contingency plan
  • None of the above
4 Choose the following that describe your IT security experience. (Select all that apply.) Answer to this question is required
  • Oversee the development and maintenance of system security plans and contingency plans for all systems under organizational control.
  • Develop and maintain operating unit IT security policies, procedures, standards and guidance consistent with applicable organizational or federal requirements.
  • Participate in the self-assessment of systems safeguards and program elements, and in the certification and accreditation (C&A) of a major information system.
  • Act as the organization's central point of contact for all security incidents, develop incident response procedures, and report incidents to the responsible authority.
  • Develop a process to identify, track and report on security patch management.
  • Ensure that appropriate encryption methodologies are used for transmission of sensitive information.
  • Ensure organizational compliance with NIST and OMB requirements.
  • None of the above.
5 Which of the following best reflects your highest level of experience correcting security vulnerabilities and implementing security controls? Answer to this question is required
  • I have corrected security vulnerabilities and implemented security controls under close supervision.
  • I have assisted others in correcting security vulnerabilities and implementing security controls
  • I have participated on a team that corrected security vulnerabilities and implemented security controls
  • I have independently corrected security vulnerabilities and implemented security controls.
  • I have led others charged with correcting security vulnerabilities and implementing security controls.
  • None of the above
6 I possess security certification(s) from the following vendors: Answer to this question is required
  • ISACA
  • EC-Council
  • Information Assurance Certification Review Board (IACRB)
  • CyberSecurity Institute
  • International Information Systems Security Certification Consortium (ISC)2
  • Prosoft
  • GIAC - Global Information Assurance Certification
  • RSA Security
  • Check Point
  • Cisco
  • TruSecure
  • BrainBench
  • Learning Tree
  • CompTIA
  • Security Certified Program
  • Other
  • None of the above
7 Do you have experience creating, maintaining, monitoring and reporting on Plan of Action and Milestones (POA&M)? Answer to this question is required
  • I have not had education, training or experience in performing this task.
  • I have had education or training in performing this task, but have not yet performed this task on the job.
  • I have performed this task on the job with close supervision from a supervisor or senior employee.
  • I have performed this task as a regular part of the job, independently and usually without review by a supervisor or senior employee.
  • I have supervised performance of this task and/or I have trained others in performance and/or am normally consulted as an expert for assistance in performing this task.
Applicants may check the status of their application by accessing the Department of Commerce (QuickHire), Applicant Site at http://www.usajobs.opm.gov