Apply on Employer Site

USAJOBS · 21 hours ago

Head of Cybersecurity (CISO)

Woodlawn, Maryland, USA

Full-time

Onsite

Director/Executive

$152K/yr - $228K/yr

USAJOBS is seeking a Head of Cybersecurity who will serve as the Chief Information Security Officer (CISO) for the Social Security Administration (SSA). The role involves leading the agency's comprehensive cybersecurity program and providing strategic direction for the development and implementation of IT security policies and procedures to protect sensitive information.

ConsultingGovernmentHuman ResourcesInformation TechnologyInternetStaffing Agency

No H1B

U.S. Citizen Only

Responsibilities

Oversees the development and implementation of national cybersecurity policies and controls to safeguard sensitive personal information from unauthorized access, breaches, and cyber threats. They ensure cybersecurity strategy, policies, and standards comply with the Federal Information Systems Management Act, the Privacy Act, guidance from the National Institute of Standards and Technology (NIST) and Office of Management and Budget, other federal requirements (e.g., FedRAMP), and industry best practices

Provides strategic direction for comprehensive, national cybersecurity operations, including network security, endpoint protection, identity and access management, incident detection and response, and disaster recovery planning. They provide guidance, direction, and advice on the Continuity of Operations Plan (COOP), incident response, containment, and recovery efforts to minimize potential damage and ensure timely communication with stakeholders

Directs the design, development, and maintenance of SSA's information security compliance program. This encompasses the design, development, and maintenance of the information security compliance policy and reviews for data exchange partners, including developing and implementing compliance and monitoring reviews (protocols and oversight), as well as, training and coordination with the data exchange network. They oversees the Critical Infrastructure Protection Program and ensures secure data exchange with partners through robust compliance and monitoring protocols

Designs, develops, and maintains SSA's overall information security policy. This encompasses the design, development, and implementation of information security training for SSA. They develop and implements ongoing cybersecurity training, awareness, and phishing simulation programs for all personnel and contractors

Qualification

Cybersecurity policies developmentRisk management processesDisaster recovery planningCybersecurity awareness trainingStrategic directionCompliance managementLeadership

Required

Must be a U.S. Citizen or National

Must have had responsible professional experience at a senior level (equivalent to the GS-15 in either the General Schedule (GS) or a comparable pay plan)

Complete a Declaration for Federal Employment to determine your suitability for Federal employment, at the time requested by the agency

If you are a male applicant born after December 31, 1959, certify that you have registered with the Selective Service System or are exempt from having to do so

You may be subject to pre-employment and random drug tests

Must file a Confidential Financial Disclosure Report OGE-278e within 30 days of appointment and annually from then on

You may be required to obtain and maintain an interim and/or final security clearance prior to entrance on duty. Failure to obtain and maintain the required level of clearance may result in the withdrawal of a job offer or removal

Candidates must demonstrate progressively responsible leadership experience that is indicative of senior executive level managerial capability and directly related to the skills and abilities outlined under Executive Core Qualifications and Mandatory Professional/Technical Qualifications within their resume - NOT TO EXCEED 2 PAGES

To be considered minimally qualified for this position, candidates must have had responsible professional experience at a senior level (equivalent to the GS-15 in either the General Schedule (GS) or a comparable pay plan). Typically, experience of this nature will have been gained at or above the GS-15 grade level in the Federal service or its equivalent with state or local government, the private sector, or non-governmental organizations

Your resume should demonstrate accomplishments that would satisfy the technical qualifications

Senior level experience leading the development, implementation, and administration of cybersecurity policies and procedures at the enterprise level

Senior level experience directing cybersecurity controls, risk management processes, and disaster recovery planning for an organization

Demonstrated knowledge of the American system of government, commitment to uphold the Constitution and the rule of law, and commitment to serve the American people

Demonstrated ability to strategically and efficiently manage resources, budget effectively, cut wasteful spending, and pursue efficiency through process and technological upgrades

Demonstrated knowledge, ability, and technical competence to effectively and reliably produce work that is of exceptional quality

Demonstrated ability to lead and inspire a group toward meeting the organization's vision, mission, and goals, and to drive a high-performance, high-accountability culture

Demonstrated ability to achieve both individual and organizational results, and to align results to stated goals from superiors

Preferred

Senior level experience leading the development and implementation of organization-wide cybersecurity awareness and training programs

Benefits

A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding.