US Government, Other Agencies and Independent Organizations
Cyber Security Officers identify current threats, mitigate vulnerabilities, and anticipate future cybersecurity challenges, protecting CIA data and systems and managing IT risk.
For more details on elgibility, requirements, and evaluation. Please click “Apply Now”, which will take you to the US Gov job platform.
Job Grade: 9
Total Openings: Many
As a Cyber Security Officer (CSO), you will protect Agency data and systems using sophisticated tools, instrumentation, and knowledge of CIA Information Technology (IT) and tradecraft to monitor, evaluate, and manage IT risk. You will identify current threats, mitigate vulnerabilities, and anticipate future cybersecurity challenges. Utilizing new technologies, you will increase the security of our existing and emerging IT systems. Your career as a Cyber Security Officer will progress through tours of duty where you will apply and develop a broad range of technical, leadership, resource management, and communication skills. Senior positions for Subject Matter Experts with advanced levels of knowledge in specific cyber specialties exist. As an advanced level CSO, you will lead business areas/activities and be responsible for managing a diverse range of cyber security projects. You will ensure the development, deployment, operations, implementation and support of component information systems that are consistent with cyber security policies and procedures. You will also have leadership opportunities to supervise and manage employees, develop and manage a budget according to established strategic priorities, and represent your program area to senior officials at the Agency and the Intelligence Community. As a CSO you will do the following work to support customers within the Agency: Analyze existing and future systems across the Agency, review security architectures, and develop engineering solutions that integrate information security requirements to proactively protect information Perform audit and security compliance checks, including network penetration testing, vulnerability scans, and other configuration analysis Conduct Computer Incident Response Team (CIRT) activities, including forensic analysis and review and assessment of security events and logs via sophisticated cyber security /event management tools Implement and support network defense, identification/authentication/access control, data protection mechanisms, and data transfer mechanisms Develop threat models and security risk assessments and recommend mitigations and countermeasures to address risks, vulnerabilities, and threats Review and validate security documentation, including the system security requirements definition and System Security Plans Implement security designs in hardware, software, data, and procedures Provide guidance to Agency customers on CIA’s and Intelligence Community’s information security policies and regulations Most positions are located in the Washington, DC metropolitan area, but opportunities to serve overseas exist as your career and abilities develop.
Minimum Qualifications Excellent verbal and written communication skills Strong commitment to continuous learning Ability to work both independently and in a team environment Ability to meet the minimum requirements for joining CIA, including U.S. citizenship and a background investigation Desired Qualifications Track record of record of progressively responsible cyber experience in one or more of the following information security areas: Networks , operating system, application-layer, and cloud security expertise Hunt operations for malicious actors System evaluations System security penetration testing Big-data cyber analytics Security operations/network monitoring Security information management/security event management Network mapping Vulnerability scanners, firewalls, routers and other security tools Working knowledge of public key infrastructure and encryption systems Experience working on a cyber security incident response team Professional certifications