Apply on Employer Site

Social Security Administration · 22 hours ago

Head of Cybersecurity (CISO)

Woodlawn, MD

Full-time

Onsite

Director/Executive

The Social Security Administration (SSA) is seeking a Head of Cybersecurity who will serve as the Chief Information Security Officer (CISO). The role involves leading the agency's cybersecurity program, ensuring compliance with regulations, and protecting sensitive information for millions of Americans.

GovernmentInnovation ManagementNon ProfitProfessional Services

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Oversees the development and implementation of national cybersecurity policies and controls to safeguard sensitive personal information from unauthorized access, breaches, and cyber threats

They ensure cybersecurity strategy, policies, and standards comply with the Federal Information Systems Management Act, the Privacy Act, guidance from the National Institute of Standards and Technology (NIST) and Office of Management and Budget, other federal requirements (e.g., FedRAMP), and industry best practices

Provides strategic direction for comprehensive, national cybersecurity operations, including network security, endpoint protection, identity and access management, incident detection and response, and disaster recovery planning

They provide guidance, direction, and advice on the Continuity of Operations Plan (COOP), incident response, containment, and recovery efforts to minimize potential damage and ensure timely communication with stakeholders

Directs the design, development, and maintenance of SSA's information security compliance program

This encompasses the design, development, and maintenance of the information security compliance policy and reviews for data exchange partners, including developing and implementing compliance and monitoring reviews (protocols and oversight), as well as, training and coordination with the data exchange network

They oversees the Critical Infrastructure Protection Program and ensures secure data exchange with partners through robust compliance and monitoring protocols

Designs, develops, and maintains SSA's overall information security policy

This encompasses the design, development, and implementation of information security training for SSA

They develop and implements ongoing cybersecurity training, awareness, and phishing simulation programs for all personnel and contractors

Qualification

Cybersecurity policy developmentRisk management processesDisaster recovery planningCybersecurity awareness trainingIncident detectionResponseCompliance with federal regulationsCommunication with stakeholdersLeadership experience

Required

Candidates must have had responsible professional experience at a senior level (equivalent to the GS-15 in either the General Schedule (GS) or a comparable pay plan)

Must be a U.S. Citizen or National

Subject to a 1-year supervisory probationary period (unless already completed)

Complete a Declaration for Federal Employment to determine your suitability for Federal employment, at the time requested by the agency

If you are a male applicant born after December 31, 1959, certify that you have registered with the Selective Service System or are exempt from having to do so

You may be subject to pre-employment and random drug tests

Must file a Confidential Financial Disclosure Report OGE-278e within 30 days of appointment and annually from then on

You may be required to obtain and maintain an interim and/or final security clearance prior to entrance on duty

Failure to obtain and maintain the required level of clearance may result in the withdrawal of a job offer or removal

Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution

Your resume should include examples of experience, education, and accomplishments applicable to the qualification(s)

If your resume does not reflect demonstrated evidence of these qualifications, you may not receive consideration for the position

To be considered minimally qualified for this position, candidates must have had responsible professional experience at a senior level (equivalent to the GS-15 in either the General Schedule (GS) or a comparable pay plan)

Typically, experience of this nature will have been gained at or above the GS-15 grade level in the Federal service or its equivalent with state or local government, the private sector, or non-governmental organizations

Failure to meet this basic qualification requirement and all executive and technical qualification factors automatically disqualifies an applicant

Your resume should demonstrate accomplishments that would satisfy the technical qualifications

Senior level experience leading the development, implementation, and administration of cybersecurity policies and procedures at the enterprise level

Senior level experience directing cybersecurity controls, risk management processes, and disaster recovery planning for an organization

In addition to the Technical Qualification requirements listed above, all new entrants into the Senior Executive Service (SES) under a career appointment will be assessed for executive competency against the following five mandatory ECQs

If your 2-page resume does not reflect demonstrated evidence of the ECQs, TQs, and DQ, you may not receive further consideration for the position

Demonstrated knowledge of the American system of government, commitment to uphold the Constitution and the rule of law, and commitment to serve the American people

Demonstrated ability to strategically and efficiently manage resources, budget effectively, cut wasteful spending, and pursue efficiency through process and technological upgrades

Demonstrated knowledge, ability, and technical competence to effectively and reliably produce work that is of exceptional quality

Demonstrated ability to lead and inspire a group toward meeting the organization's vision, mission, and goals, and to drive a high-performance, high-accountability culture

Demonstrated ability to achieve both individual and organizational results, and to align results to stated goals from superiors

If you are currently, or have been within the last 5 years, a political Schedule A, Schedule C or Non-Career SES employee in the Executive Branch, you must disclose that to the Human Resources Office within your application package