Jobs › INFORMATION SECURITY SPECIALIST
INFORMATION SECURITY SPECIALIST
Role at a glance
- Category
- GRC
- Work arrangement
- On-site
- Location
- MacDill AFB, Florida
- Salary range
- $89,508 to $116,362
- Posted
- Jul 14, 2026
Air Mobility Command is hiring a INFORMATION SECURITY SPECIALIST in MacDill AFB, Florida. This is a GRC role in the governance, risk, and compliance field, with a posted range of $89,508 to $116,362. Review the full details below and apply directly with Air Mobility Command.
Click on "Learn more about this agency" button below to view Eligibilities being considered and other IMPORTANT information. The primary purpose of this position is: To protect the command form espionage, terrorism, and threats of unauthorized disclosure and/or compromise of information considered vital to command mission interests, national defense or national security and implement, and develop, and administer the Information Security Program for Combatant Command (COCOM). Qualifications: In order to qualify, you must meet the specialized experience requirements described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions. SPECIALIZED EXPERIENCE: Applicants must have at least one (1) year of specialized experience at the next lower grade GS-11, or equivalent in other pay systems. Examples of specialized experience includes applying knowledge of a wide range of security disciplines, concepts, principles, practices and requirements applicable to the Information Protection (IP) program to include: Acquisition security, program protection, information security, industrial security, physical security, personnel security, operations security, foreign disclosure, and information assurance in order to perform the full range of complex security management responsibilities. Knowledge of operational characteristics across the multiple-disciplinary construct of Information Protection, in order to apply unique management tools to develop an effective converged solution to systemic problematic issues affecting the Wing. Knowledge of analytical methods for determining and evaluating vulnerability threats, intelligence data, and other specialized areas resulting in possible program compromise. Knowledge of Risk Management principles and the ability to employ the latest Risk Management techniques and programs. Knowledge of a wide range of methods to conduct inspections and investigations; collect and analyze information, and evaluate the effectiveness of the Wing security program. Knowledge of information systems life cycle management processes and procedures. Knowledge of computer security technologies, techniques, objectives, problems and solutions. FEDERAL TIME-IN-GRADE (TIG) REQUIREMENT FOR GENERAL SCHEDULE (GS) POSITIONS: Merit promotion applicants must meet applicable time-in-grade requirements to be considered eligible. One year at the GS-11 level is required to meet the time-in-grade requirements for the GS-12
Full responsibilities and requirements are on Air Mobility Command's application page.
Apply for this role →Location and market context
This role is based in MacDill AFB, Florida on-site. Local candidates benefit from being close to Air Mobility Command's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About cybersecurity governance roles
Cybersecurity governance connects security control frameworks to business and regulatory risk, covering policy, risk assessment, and control assurance rather than hands-on operations. Roles like this one are typically evaluated against frameworks such as NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices.
How to position yourself for this cybersecurity governance role
Strong candidates emphasize security control frameworks, risk assessment, policy and standards, and translating technical security posture into governance and board-level reporting. In your resume and outreach, tie your experience to how Air Mobility Command would apply NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location