Posted by: U.S. Nuclear Regulatory Commission on Mar 31, 2018
Location:
Rockville , MD 20852
Job Description:
Background
The U.S. Nuclear Regulatory Commission (NRC) is proud to be ranked as a BEST Place to Work in the Federal Government. We've earned our top ratings by creating a work environment rich in opportunity, diversity, leadership training, teamwork, and work life balance. Help guide our nation into the next generation of nuclear safety! Begin a challenging career with the U.S. Nuclear Regulatory Commission where you can be part of a select group of professionals who protect people and the environment with the peaceful use of nuclear materials in medicine, industry and research.
Duties
The Information Technology Specialist (Cyber) position is located in the Office of Nuclear Security and Incident Response (NSIR), Division of Physical and Cyber Security Policy (DPCP), Cyber Security Branch (CSB). This position requires up to 30% travel.
The successful candidate will perform the full range of Information Technology Specialist (Cyber) duties, which include but are not limited to:
1) Acting as engineering systems technical analyst for the review of plant specific critical systems and critical digital assets, determining adverse impacts including propagating effects from cyber compromise, taking into consideration unique design differences associated with a variety of individual facilities of different licensee types. Utilizing knowledge of integrated system operations and functions to determine potential adverse impacts due to mal-operation or failure of digital systems on safety, security, emergency preparedness, and material control and accounting systems. Inspecting licensee cyber security program implementation, specifically including licensee critical system and critical digital asset analyses. Providing cyber security inspection report input in coordination with headquarters cyber security specialists and regional inspection teams.
2) Providing technical support for and/or leading the development of cyber security requirements and associated regulatory guidance. These duties include reviewing and evaluating of analysis and assessments from other NSIR Divisions, Office of Nuclear Reactor Regulation, Office of New Reactors, Office of Nuclear Materials Safety and Safeguards, Office of Nuclear Regulatory Research, and other organizational units. Providing technical assistance and advice to the Regions and other NRC Offices on matters which fall into CSB's area of responsibility. Reviewing licensee cyber security plans to verify that licensee cyber security programs are adequate to meet regulatory requirements.
3) Gathering and interpreting complex and diverse technical data; analyzing the data and forms recommendations for agency positions related to cyber security. Developing technical bases for agency positions related to cyber security. Recommending technical assistance contracts or research work that the NRC should sponsor to enhance the cyber security of NRC-licensed facilities; developing or confirming requirements, and supporting development and implementation of cyber security-related contracts. Preparing responses to inquiries received from members of Congress, other Federal agencies, Industry, and other members of the public regarding Commission activities in the area of cyber security.
Qualifications
The ideal candidate will be able to demonstrate the following:
1. Knowledge of NRC or other regulatory program, licensing, and inspection/enforcement programs and processes. Knowledge of NRC regulations and regulatory guides.
2. Knowledge and practical experience in the application of cyber security controls in the development, integration and operation of industrial control systems or information technology systems using cyber security guidelines, standards and methods. Demonstrated experience with providing support and oversight for the development and maintenance of documentation necessary to certify systems. Experience providing cyber security incident response. This should include knowledge and practical experience in the application of the following cyber security measures: 1) access control, 2) cyber security training, 3) audit and accountability, 4) assessment and authorization, 5) configuration management, 6) contingency planning and incident response, 7) digital forensics, 8) identification and authentication, 9) maintenance, 10) media protection, 11) security plan development and maintenance, 12) risk assessment, 13) system and service acquisition, 14) system and communications protection, 15) attack vectors, and 16) system and information integrity.
3. Demonstrated ability to present technical information both orally and in writing.
4. Demonstrated ability to lead technical issues and to develop and implement successful approaches to problem solving and conflict resolution.
5. Demonstrated ability to make independent analyses and evaluate the technical soundness and merit of the activities and proposals stemming from significant regulatory, development or other programs including the ability to distinguish technical from policy issues.
In addition to the basic requirements, to qualify for this position you must have at least one year of SPECIALIZED EXPERIENCE at the next lower grade level in the Federal service or equivalent experience in the private or public sector.
SPECIALIZED EXPERIENCE is defined as knowledge and experience with antivirus, anti-malware, Domain Name System (DNS), Domain Name System Security Extensions (DNSSec), Internet email gateways, firewalls (application-based and network-based), Intrusion Detection / Prevention Systems (IDS/IPS), Log management, Network Access Control (NAC), Security Information and Event Management (SIEM), Virtual Private Networks, Intrusion Prevention System, Secure Socket Layer and web filtering/proxying with an enterprise-wide scope.
A description of how you possess the specialized experience as well as how you meet the qualifications desired in an ideal candidate should be addressed in your resume.
How to Apply
Visit www.nrc.gov Review the NRC Opportunities page and click on “view a list of current NRC vacancies, please visit USAJobs EXIT.” Find the Information Technology Specialist (Cyber) Job Announcement Number NSIR 2018-0003 and apply on-line by May 30, 2018. If you are viewing this opportunity after May 30th please visit NRC’s website and discover additional opportunities for which you might be interested.
Education Level:
High school or ged
HR. Website URL:
https://www.nrc.gov/about-nrc/employment/opportunities.html
Travel Requirements:
Moderate