Cybersecurity/IT Jobs at CISA


As technology becomes increasingly more sophisticated, the demand for an experienced and qualified cyber workforce to protect our Nation’s networks and information systems has never been greater. Are you up for the challenge?

CISA is charged with leading the Nation’s strategic and unified work to strengthen the security, resilience, and workforce of the cyber ecosystem to protect critical services and American way of life. CISA’s cyber professionals work to assure the security, resilience and reliability of the nation’s cyber systems. They also lead the effort to protect the federal “.gov” domain of civilian government networks and to collaborate with the private sector-the “.com” domain to increase the security of critical networks. Most recently, CISA was designated as a Quality Services Management Office (QSMO) for cybersecurity services.

At CISA, you will be working at the forefront of the cybersecurity challenges facing our Nation and you will have access to the most cutting-edge technology.

Mission and program areas include cyber situational awareness, analysis, incident response, threat hunting, cybersecurity assessments, vulnerability management, federal network protection, cybersecurity training and exercises, cybersecurity education, outreach and awareness, partnership and engagement, and more. There’s a team for just about any cyber professional!

CISA uses the NICE Cybersecurity Workforce Framework to define duties and responsibilities of our cyber workforce. Explore the many cyber career areas within CISA below and learn how to use the framework to update your resume. 

Mission Priorities

Cyber Defense Operations - CISA detects and prevents threats where possible through information sharing and preventive technologies and actions and minimizes impacts when incidents do occur.

Federal Networks Governance and Capacity Building - Ensure Federal agencies are managing risk at an acceptable level commensurate with their own defined risk tolerance and the risk of the broader Federal enterprise.

Critical Infrastructure/SLTT Governance and Capability Building  - Support and enable non-federal entities to better manage risk at an acceptable level commensurate with their own defined risk tolerance and national risks of national security, public health and safety, and economic security.

Long-term Cybersecurity - Lead the national effort to make the cyberspace ecosystem safe and secure in the long-term by investing time, energy, and resources on prioritized strategic initiatives, advanced technologies and research, and dedicated planning.

 

Learn more about CISA’s cybersecurity mission.

 

Cybersecurity Advisor Positions

CISA is expanding our regional presence with remote Cybersecurity Advisors (CSAs) who will work collaboratively with stakeholders to reduce risk to local infrastructure. As a CSA, you’ll bring together critical infrastructure owner/operators with federal, state, local, and other stakeholders to maximize collaboration and minimize risk on matters of homeland security or emergency management. Learn more and apply now.

 

Authorizing Official

Senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become an Authorizing Official with CISA.

Cyber Defense Analyst

Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.

Category: Protect and Defend
Specialty Area: Cyber Defense Analysis

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Cyber Defense Analyst with CISA.

Cyber Defense Forensics Analyst

Analyzes digital evidence and investigates computer security incidents to derive useful information in support of system/network vulnerability mitigation.

Category: Investigate
Specialty Area: Digital Forensics 

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Cyber Defense Forensics Analyst with CISA.

Cyber Defense Incident Responder

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Category: Protect and Defend
Specialty Area: Incident Response

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Cyber Defense Incident Responder with CISA.

Data Analyst

Examines data from different sources with the goal of providing insight to organization, mission/business processes, and information systems. Designs, documents, and implements custom algorithms, workflow processes, and large data sets used for modeling, data mining, and research purposes.

Category: Operate and Maintain
Specialty Area: Data Administration

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Data Analyst with CISA.

Database Administrator

Administers databases and/or data management systems that allow for the secure storage, query, protection, and utilization of data.

Category: Operate and Maintain
Specialty Area: Data Administration

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Database Administrator with CISA.

Information Systems Security Manager

Responsible for the cybersecurity of a program, organization, system, or enclave.

Category: Oversee and Govern
Specialty Area: Cybersecurity Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Information Systems Security Manager with CISA.

IT Investment Portfolio Manager

Manages a portfolio of IT investments that align with the overall needs of mission and enterprise priorities.  

Category: Oversee and Govern
Specialty Area: Program/Project Management and Acquisition

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become an IT Investment Portfolio Manager with CISA.

IT Program Auditor

Conducts evaluations of an IT program or its individual components to determine compliance with published standards, Federal government laws, regulations, and requirements.

Category: Oversee and Govern
Specialty Area: Program/Project Management and Acquisition

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become an IT Program Auditor with CISA.

IT Project Manager

Directly manages information technology projects.

Category: Oversee and Govern
Specialty Area: Program/Project Management and Acquisition

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become an IT Project Manager with CISA.

Network Operations Specialist

Plans, implements, and operates network services/systems, to include hardware and virtual environments.

Category: Operate and Maintain
Specialty Area: Network Services

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Network Operations Specialist with CISA.

Program Manager

Leads, coordinates, communicates, integrates, and is accountable for the overall success of the program, ensuring alignment with agency or enterprise priorities.

Category: Oversee and Govern
Specialty Area: Program/Project Management and Acquisition

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Program Manager with CISA.

Secure Software Assessor

Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.

Category: Securely Provision
Specialty Area: Software Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Secure Software Assessor with CISA.

Security Architect

Ensures that the stakeholder security requirements necessary to protect the organization’s mission and business processes are adequately addressed in all aspects of enterprise architecture including reference models, segment and solution architectures, and the resulting systems supporting those missions and business processes.

Category: Securely Provision
Specialty Area: Systems Architecture

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Security Architect with CISA.

Security Control Assessor

Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Security Control Assessor with CISA.

Software Developer

Develops, creates, maintains, and writes/codes new (or modifies existing) computer applications, software, or specialized utility programs.

Category: Securely Provision
Specialty Area: Software Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Software Developer with CISA.

System Administrator

Responsible for setting up and maintaining a system or specific components of a system (e.g. for example, installing, configuring, and updating hardware and software; establishing and managing user accounts; overseeing or conducting backup and recovery tasks; implementing operational and technical security controls; and adhering to organizational security policies and procedures).

Category: Operate and Maintain
Specialty Area: Systems Administration 

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a System Administrator with CISA.

System Testing and Evaluation Specialist

Plans, prepares, and executes tests of systems to evaluate results against specifications and requirements as well as analyze/report test results.

Category: Securely Provision
Specialty Area: Test and Evaluation

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a System Testing and Evaluation Specialist with CISA.

Systems Developer

Designs, develops, tests, and evaluates information systems throughout the systems development life cycle.

Category: Securely Provision
Specialty Area: Systems Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Systems Developer with CISA.

Systems Security Analyst

Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.

Category: Operate and Maintain
Specialty Area: Systems Analysis

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Systems Security Analyst with CISA.

Technical Support Specialist

Provides technical support to customers who need assistance utilizing client-level hardware and software in accordance with established or approved organizational process components (i.e., Master Incident Management Plan, when applicable).

Category: Operate and Maintain
Specialty Area: Customer Service and Technical Support

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Technical Support Specialist with CISA.

Vulnerability Assessment Analyst

Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.

Category: Protect and Defend
Specialty Area: Vulnerability Assessment and Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Vulnerability Assessment Analyst with CISA.

How to Apply

When applying for CISA’s cyber positions, please review CISA’s cyber roles above and update your resume to align your experience with the listed competencies. Your resume must also show demonstrated cyber/IT related experience in:

  • Attention to Detail
  • Customer Service
  • Oral Communication
  • Problem Solving

Applications are accepted through individual announcements that are posted on USAJOBs.  Click "apply" on the job announcement, attach relevant documents, answer a few questions, and click submit. 

To receive email notifications when new CISA positions are announced, set up a “saved search” with keyword “Cybersecurity and Infrastructure Security Agency.” 

Individuals eligible for special hiring authorities may also be considered during CISA’s one-stop hiring events or by emailing Veterans@cisa.dhs.gov or Careers@cisa.dhs.gov

 

Was this document helpful?  Yes  |  Somewhat  |  No