Would you like to work with the USPTO to support U.S. commerce and innovation? The Office of the Chief Information Officer (OCIO) is a community of bold, strategic thinkers and doers who build and deliver technology products and services that empower customers to foster American innovation. The systems OCIO manage, support the agency's operations and are a platform on which patent and trademark examiners do their vital work: offering IP protection for cutting-edge innovations in the marketplace.

Duties

The Senior Level Information Security Architect position is located in the Office of the Chief Information Security Officer (OCISO) within the Office Chief Information Officer (CIO) at the United States Patent and Trademark Office (USPTO). The position provides senior leadership and technical expertise in the development, maintenance and improvement of cybersecurity solutions at the USPTO. The Senior Level Information Security Architect is the principal advisor to the Chief Information Security Officer (CISO) as well as the Chief information Officer (CIO) and Deputy Chief Information Officer (DCIO) on security architecture with focus on protecting intellectual property data and digital assets. Occasional travel will be required. In this position you will have the opportunity to showcase senior level leadership and expertise to ensure cybersecurity requirements necessary to protect the USPTO mission, IT systems and business processes are adequately addressed. Candidates must also possess deep understanding of cybersecurity as well as the unique needs of protecting the nation's intellectual property data. This vital role is ideal for you if you are interested in: Serving as the leading technical authority in the development and implementation of comprehensive cybersecurity strategies, ensuring alignment with both organizational goals and federal laws, regulations, policies, or guidance. Leading, collaborating, and supporting the development and delivery of solutions for cybersecurity requirements mandated by federal statutes and directives, ensuring agency-wide compliance and security. Designing and implementing innovative, enterprise-wide cybersecurity solutions that comprehensively address security needs across network, data, identity management, and threat detection domains. Designing and implementing a comprehensive cybersecurity architecture tailored to protect intellectual property and agency assets, ensuring seamless integration with multiple functional areas across all of USPTO's systems. Designing systems and tools that enable the transformation of cyber threat data into actionable intelligence, focusing on the protection of sensitive and proprietary information. Collaborating with development and engineering teams to embed security into every phase of system development, advocating for and implementing a DevSecOps approach. Spearheading the development and implementation of automated cybersecurity solutions for both on-premises and cloud environments, enhancing efficiency and responsiveness of security operations. Utilizing automation to improve real-time threat detection, response, and prevention capabilities. Architect solutions for continuous monitoring and authorization to ensure compliance with federal cybersecurity standards, enhancing the dynamic and resilient cybersecurity posture of the organization. Developing technical frameworks that align with privacy and compliance objectives, ensuring all cybersecurity practices meet federal laws and regulations. Overseeing compliance with federal cybersecurity regulations and standards, ensuring continuous adherence and reporting. Regularly informing top management and stakeholders about the cybersecurity architecture's status, risk landscape, and compliance efforts. If you can see yourself in this role and are excited by our mission, we look forward to receiving your application!

Requirements

• You must be a U.S. Citizen or a National.
• Required to pass a background investigation and fingerprint check.
• Must be registered for Selective Service, if applicable (www.sss.gov) if applicable.
• Financial Disclosure Report (OGE-278) will be required upon appointment and annually.
• You may be required to serve a two-year probationary period.

Qualifications

To meet the minimum requirements for this position, candidates must demonstrate their experience in their narrative responses to the Professional Technical Qualifications (PTQs) questions and all narrative responses must be fully supported within their resume. *Applicants must use the USA Jobs text boxes to submit their narrative responses to the PTQs. Do not write "see resume" or "see attached documents". Each PTQ has a 10,000-character limit (to include spaces) that must be adhered to. Uploaded documents addressing the PTQs will not be accepted. Experience must have been at a sufficiently high level of difficulty to clearly show that the candidate possesses the required professional/technical qualifications set forth below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. For the following four PTQs you are required to submit a narrative response addressing your specific knowledge, skills, and abilities that demonstrate your possession of these qualifications. The Professional Technical Qualifications for this position are: Demonstrated senior level experience leading architectural cybersecurity change management practices to drive large, cross-functional programs involving coordination with multiple stakeholders at various levels of the organization. Experience may include designing, leading and implementing advanced cybersecurity architectures in large-scale, complex environments, communicating complex technical concepts to varied audiences including non-technical stakeholders and executive leadership, leading diverse cross-functional teams effectively, and expert knowledge and application of federal cybersecurity standards (e.g., NIST, FISMA) and industry best practices. Advanced experience in seamlessly integrating security practices within DevSecOps processes, deep understanding of agile development methodologies, and advanced capabilities in security incident response planning, complex investigations, and effective incident management strategies. Within an Agile and DevSecOps environment, exceptional skill in conducting comprehensive technical assessments, risk analysis, developing complex mitigation strategies. Describe your senior level experience and mastery of a broad range of security technologies including advanced firewalls, sophisticated intrusion detection systems, state-of-the-art anti-virus software, data encryption, and other cutting-edge security practices. Advanced expertise and substantial hands-on experience in sophisticated cloud computing security practices and technologies. This includes a deep understanding and capability in cybersecurity automation, encompassing automated threat detection, response systems, and the use of AI and machine learning in cybersecurity, to enhance efficiency and effectiveness in security operations.

Education

Strongly preferred educational level is Masters degree and a minimum educational requirement for this position is Bachelor's in Information Security fields such as Information Systems, Computer Science, Math, Engineering, Cybersecurity, or another technical related field is required. Additionally, there is a preference for the educational background above coupled with a range of professional certifications such as CISSP, CISM, CISA, CCSP and other advanced credentials in the cybersecurity domain.

• Proven experience in information security leadership.
• Ability to lead in fast paced and dynamic environment.
• Excellent communication and presentation skills.
• Proven public sector and/or corporate experience leadership with Security Architecture initiatives that resulted in measurable improvements with a sound, applied security strategies aligned with an overall business strategy.
• Technically oriented and personally proactive with extreme attention to detail.
• Ability to work effectively on independent projects as well as within team environment.
• Strong written and verbal communication skills are necessary.

Contacts

• Address EXRD - Office of the Chief Information Officer Office of Human Resources Mail Stop 171 P.O. Box 1450 Alexandria, VA 22313-1450 US
• Name: John Edmond
• Phone: 571-272-8479
• Email: [email protected]