CYBERSECURITY SPECIALIST- SCIF/SAP IT OPERATIONS
The Air Force Civilian Service, Arlington, VA, United States
Come be a part of something big! Smart Minds, Cool Jobs and Awesome Rewards! Fueled by innovation, talent and ambition, the Air Force Civilian Service (AFCS) is seeking civilian professionals prepared to deploy war-winning capabilities on behalf of the United States Air Force.
The Air Force Civilian Service (AFCS) is looking for a full-time Cybersecurity Specialist - SCIF/SAP IT Operations, GS-2210-14. To serve as the lead cybersecurity specialist and technical authority for the Secretary of the Air Force, Studies and Analysis, Operations Directorate, Information Technology & Security Division (SAF/SAS), with primary responsibility for securing and operating SCIF and Special Access Program (SAP) vault IT environments supporting cloud computing, high-performance computing (HPC), artificial intelligence/machine learning (AI/ML), and advanced modeling and simulation capabilities critical to Air Force strategic decision-making. Headquarters United States Air Force (HQ USAF), Secretary of the Air Force, Studies and Analysis (SAF/SA), Operations Directorate, Operating Location (OL): SA10, Information Technology & Security Division (SAS), Pentagon, Washington, District of Columbia.
Salary Range: $143, 913 to 187,093 based on experience.
This position can close at any time. Apply Now!
Your application package (resume, transcripts, SF50, supporting documents) will be used to determine your eligibility, and qualifications. Please show info in your 2-page resume. Ensure you read the Qualification Requirements and Other significant facts within this job posting and include the required experience, knowledge and skills within your 2- page resume.
Qualification Requirements
Must be a United States Citizen
Must be able to obtain and maintain Top-Secret clearance with access to Sensitive Compartmented Information (SCI.)
This position has been designated by the Air Force as a Testing Designated Position (TDP) under the Air Force Civilian Drug Demand Reduction Program. Employee must pass initial and periodic short notice drug testing.
Knowledge of cybersecurity architecture, cloud security, and enterprise systems engineering including cybersecurity principles, cloud security architecture, container security, identity-based security implementation, multi-cloud security patterns, hybrid cloud integration, service mesh security (Istio), API gateway security, enterprise architecture, system integration, and technical operations sufficient to manage and secure complex multi-site infrastructure supporting Top Secret/SCI and SAP workloads in cloud-native, HPC, and AI/ML environments.
Knowledge of security compliance frameworks and risk management including NIST Risk Management Framework (RMF), NIST SP 800-53 Rev 5 security controls, DoW Cloud Computing SRG, Container STIGs, Kubernetes security benchmarks, Platform One security baselines, DFARS cybersecurity requirements, SAP security policies (ICD 503, ICD 705, NISPOM), DoD and Air Force information assurance policies, Clinger-Cohen Act, FISMA, FedRAMP, Privacy Act, CIO directives, security compliance frameworks, audit methodologies, security assessment procedures, and continuous compliance monitoring sufficient to achieve and maintain continuous ATO for operational infrastructure and ensure compliance throughout IT security operations.
Knowledge of DevSecOps, containerization, and platform security including DevSecOps methodologies, CI/CD security, GitOps workflows, infrastructure-as-code security, policy-as-code enforcement, secure software supply chain practices, Kubernetes security architecture (cluster hardening, pod security standards, network policies, RBAC, admission controllers, runtime security, workload isolation), secrets management architecture, encryption key management, certificate management, identity and access management, and cryptographic best practices sufficient to operate on-premises cloud DevSecOps stack and secure container orchestration platforms in classified environments.
Knowledge of emerging and specialized technology security including AI/ML security (secure model development, MLOps security, training data protection, model artifact security, inference endpoint hardening, AI/ML threat vectors), HPC systems security, distributed computing environments, high-throughput analytical platforms, emerging security technologies, industry security trends, threat landscape evolution, and security research methodologies sufficient to secure advanced analytical workloads and inform strategic security decisions.
Skill in applying expert knowledge of security operations and incident response including threat intelligence, vulnerability management, security incident response lifecycle (preparation, detection and analysis, containment, eradication, recovery, post-incident activities), incident handling procedures for classified environments, security orchestration and automation (SOAR), continuous monitoring practices, forensic analysis and evidence preservation, root cause analysis methodologies, incident response playbook development and maintenance, penetration testing, red team exercises, security event analysis, and real-time threat detection for cloud-native and hybrid infrastructure in SCIF/SAP environments sufficient to serve as primary incident responder, lead incident investigations, coordinate multi-site incident response operations, and maintain operational security posture.
Ability to apply comprehensive knowledge of cyber workforce development and program management including DoD 8140 Cyber Workforce Framework, work role requirements, qualification pathways, certification standards (CCSP, Cloud+, GCLD, CKA, CKS, CKAD), foundational and residential qualification requirements, training program development, and workforce planning sufficient to manage cyber workforce qualification programs and ensure personnel meet DoD cyber workforce standards.
Other significant facts pertaining to this position are:
Cyberspace Qualification is a condition of employment. Requires foundational qualification requirements within 9 months of assignment to a cyberspace work role and resident qualification requirements within 12 months of assignment to a cyberspace work role.
Incumbent must achieve and maintain foundational qualification for assigned work roles: WRC 461 (Cybersecurity Infrastructure Support) and WRC 451 (System Administrator). Required certifications include: Certified Cloud Security Professional (CCSP), CompTIA Cloud+, GIAC Cloud Security Automation (GCLD), Certified Kubernetes Administrator (CKA), and Certified Kubernetes Security Specialist (CKS). Advanced proficiency level qualification required within 12 months of assignment this is highly desired.
Knowledge of SAF/SA mission, DoD organizational structures, Air Force operations, and defense analytical methodologies highly desired. Understanding of operations research, modeling and simulation, and strategic analysis beneficial is highly desired.
Position requires working in fast-paced, high-stress staff environment supporting senior Air Force leadership. Individual faces urgent requests from general officers for briefings, analyses, and evaluations on politically sensitive issues. Ability to maintain composure and deliver accurate technical guidance under tight deadlines essential.
Position requires regular work within SCIF and SAP vault facilities. Incumbent must comply with all SCIF access protocols, SAP security procedures, and facility security requirements including proper handling of classified materials, secure storage, and sanitization procedures.
You will be evaluated for this job based on how well you meet the qualifications above.
Your application package (resume, supporting documents) will be used to determine your eligibility, and qualifications.
Click the apply button to complete an application and upload your two-page resume to comply with the Merit Hiring Plan (PDF or Word Doc) and/or additional documents (Transcripts, certifications, Vet Docs (DD214), SF-50). As of 27 September 2025, Federal agencies will only accept resumes up to two pages in length. To learn more about the new resume requirements visit https://afciviliancareers.com/resumetips/
To receive additional information about current and future job openings with AFCS via email notification, please register at www.Afciviliancareers.com and sign up to "Get Career Updates."
Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.
U.S. citizenship required. Must be of legal work age. AFCS is an Equal Opportunity Employer.
The Air Force Civilian Service (AFCS) is looking for a full-time Cybersecurity Specialist - SCIF/SAP IT Operations, GS-2210-14. To serve as the lead cybersecurity specialist and technical authority for the Secretary of the Air Force, Studies and Analysis, Operations Directorate, Information Technology & Security Division (SAF/SAS), with primary responsibility for securing and operating SCIF and Special Access Program (SAP) vault IT environments supporting cloud computing, high-performance computing (HPC), artificial intelligence/machine learning (AI/ML), and advanced modeling and simulation capabilities critical to Air Force strategic decision-making. Headquarters United States Air Force (HQ USAF), Secretary of the Air Force, Studies and Analysis (SAF/SA), Operations Directorate, Operating Location (OL): SA10, Information Technology & Security Division (SAS), Pentagon, Washington, District of Columbia.
Salary Range: $143, 913 to 187,093 based on experience.
This position can close at any time. Apply Now!
Your application package (resume, transcripts, SF50, supporting documents) will be used to determine your eligibility, and qualifications. Please show info in your 2-page resume. Ensure you read the Qualification Requirements and Other significant facts within this job posting and include the required experience, knowledge and skills within your 2- page resume.
Qualification Requirements
Must be a United States Citizen
Must be able to obtain and maintain Top-Secret clearance with access to Sensitive Compartmented Information (SCI.)
This position has been designated by the Air Force as a Testing Designated Position (TDP) under the Air Force Civilian Drug Demand Reduction Program. Employee must pass initial and periodic short notice drug testing.
Knowledge of cybersecurity architecture, cloud security, and enterprise systems engineering including cybersecurity principles, cloud security architecture, container security, identity-based security implementation, multi-cloud security patterns, hybrid cloud integration, service mesh security (Istio), API gateway security, enterprise architecture, system integration, and technical operations sufficient to manage and secure complex multi-site infrastructure supporting Top Secret/SCI and SAP workloads in cloud-native, HPC, and AI/ML environments.
Knowledge of security compliance frameworks and risk management including NIST Risk Management Framework (RMF), NIST SP 800-53 Rev 5 security controls, DoW Cloud Computing SRG, Container STIGs, Kubernetes security benchmarks, Platform One security baselines, DFARS cybersecurity requirements, SAP security policies (ICD 503, ICD 705, NISPOM), DoD and Air Force information assurance policies, Clinger-Cohen Act, FISMA, FedRAMP, Privacy Act, CIO directives, security compliance frameworks, audit methodologies, security assessment procedures, and continuous compliance monitoring sufficient to achieve and maintain continuous ATO for operational infrastructure and ensure compliance throughout IT security operations.
Knowledge of DevSecOps, containerization, and platform security including DevSecOps methodologies, CI/CD security, GitOps workflows, infrastructure-as-code security, policy-as-code enforcement, secure software supply chain practices, Kubernetes security architecture (cluster hardening, pod security standards, network policies, RBAC, admission controllers, runtime security, workload isolation), secrets management architecture, encryption key management, certificate management, identity and access management, and cryptographic best practices sufficient to operate on-premises cloud DevSecOps stack and secure container orchestration platforms in classified environments.
Knowledge of emerging and specialized technology security including AI/ML security (secure model development, MLOps security, training data protection, model artifact security, inference endpoint hardening, AI/ML threat vectors), HPC systems security, distributed computing environments, high-throughput analytical platforms, emerging security technologies, industry security trends, threat landscape evolution, and security research methodologies sufficient to secure advanced analytical workloads and inform strategic security decisions.
Skill in applying expert knowledge of security operations and incident response including threat intelligence, vulnerability management, security incident response lifecycle (preparation, detection and analysis, containment, eradication, recovery, post-incident activities), incident handling procedures for classified environments, security orchestration and automation (SOAR), continuous monitoring practices, forensic analysis and evidence preservation, root cause analysis methodologies, incident response playbook development and maintenance, penetration testing, red team exercises, security event analysis, and real-time threat detection for cloud-native and hybrid infrastructure in SCIF/SAP environments sufficient to serve as primary incident responder, lead incident investigations, coordinate multi-site incident response operations, and maintain operational security posture.
Ability to apply comprehensive knowledge of cyber workforce development and program management including DoD 8140 Cyber Workforce Framework, work role requirements, qualification pathways, certification standards (CCSP, Cloud+, GCLD, CKA, CKS, CKAD), foundational and residential qualification requirements, training program development, and workforce planning sufficient to manage cyber workforce qualification programs and ensure personnel meet DoD cyber workforce standards.
Other significant facts pertaining to this position are:
Cyberspace Qualification is a condition of employment. Requires foundational qualification requirements within 9 months of assignment to a cyberspace work role and resident qualification requirements within 12 months of assignment to a cyberspace work role.
Incumbent must achieve and maintain foundational qualification for assigned work roles: WRC 461 (Cybersecurity Infrastructure Support) and WRC 451 (System Administrator). Required certifications include: Certified Cloud Security Professional (CCSP), CompTIA Cloud+, GIAC Cloud Security Automation (GCLD), Certified Kubernetes Administrator (CKA), and Certified Kubernetes Security Specialist (CKS). Advanced proficiency level qualification required within 12 months of assignment this is highly desired.
Knowledge of SAF/SA mission, DoD organizational structures, Air Force operations, and defense analytical methodologies highly desired. Understanding of operations research, modeling and simulation, and strategic analysis beneficial is highly desired.
Position requires working in fast-paced, high-stress staff environment supporting senior Air Force leadership. Individual faces urgent requests from general officers for briefings, analyses, and evaluations on politically sensitive issues. Ability to maintain composure and deliver accurate technical guidance under tight deadlines essential.
Position requires regular work within SCIF and SAP vault facilities. Incumbent must comply with all SCIF access protocols, SAP security procedures, and facility security requirements including proper handling of classified materials, secure storage, and sanitization procedures.
You will be evaluated for this job based on how well you meet the qualifications above.
Your application package (resume, supporting documents) will be used to determine your eligibility, and qualifications.
Click the apply button to complete an application and upload your two-page resume to comply with the Merit Hiring Plan (PDF or Word Doc) and/or additional documents (Transcripts, certifications, Vet Docs (DD214), SF-50). As of 27 September 2025, Federal agencies will only accept resumes up to two pages in length. To learn more about the new resume requirements visit https://afciviliancareers.com/resumetips/
To receive additional information about current and future job openings with AFCS via email notification, please register at www.Afciviliancareers.com and sign up to "Get Career Updates."
Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.
U.S. citizenship required. Must be of legal work age. AFCS is an Equal Opportunity Employer.