Job opening: Chief Information Security Officer/Director of Information Security and Privacy Group
Salary: $147 649 - 221 900 per year
Published at: Jun 03 2024
Employment Type: Full-time
This position is in the Centers for Medicare & Medicaid Services (CMS), Office of Information Technology (OIT).
As Chief Information Security Officer (CISO) and Director of the Information Security and Privacy Group, you will direct CMS' Information Security and Privacy Programs, which fulfill CMS' responsibility to maintain and improve the security of its information and information systems.
Duties
Provides executive leadership to develop and maintain a program that identifies, addresses, and otherwise mitigates insider, foreign national, and foreign threats to CMS and its programs.
Increases security and privacy knowledge and awareness CMS-wide. Strengthen the knowledge, skills, and abilities of information security and privacy professionals distributed throughout the agency.
Uses technical leadership, outstanding creativity, and exceptional judgment to develop, define, and modify research and/or programmatic objectives, devising innovative ways to solve security and privacy problems of major importance to CMS.
Keeps current on security and privacy developments in the IT industry, and exchanges this information with CMS leadership, managers, employees, and end-users to foster and enhance mission performance.
Advises the CMS Chief Information Officer (CIO) and other agency leadership on all matters of information security and privacy.
Represents the CMS CIO in dealing with key CMS, HHS, and Office of Management and Budget officials, representatives of business and industry, Congressional committees, and other matters involving the CIO's plans, programs, policies, and objectives.
Requirements
- U.S. Citizenship required.
- Background and/or Security Investigation required.
- One year SES probationary period required.
- The Ethics in Government Act, PL 95-521 requires the applicant selected for this position to submit a financial disclosure statement, SF-278, prior to assuming the SES position, annually, and upon termination of employment.
- Status applicants must submit a copy of their most recent SF-50, Notification of Personnel Action, which verifies status.
- All initial appointments to an SES position are contingent on approval from OPM's Qualifications Review Board unless the selectee has successfully participated in an OPM approved SES Candidate Development Program.
- All male applicants born after December 31, 1959, must have registered for the selective service. You will be required to sign a statement certifying his registration, or the applicant must demonstrate exempt status under the Selective Service Law.
- Only experience obtained by the closing date of this announcement will be considered.
Qualifications
All competitive candidates for SES positions with the Federal Government must demonstrate leadership experience indicative of senior executive level management capability. To meet the minimum qualification requirements for this position, you must show in your resume that you possess the Fundamental Competencies, five Executive Core Qualifications, and the Professional/Technical Qualifications listed below. Evidence of this experience must be incorporated into your five page resume. Separate narratives for the Executive Core Qualifications and/or Professional/Technical Qualifications will not be accepted or considered. Typically, experience of this nature is gained at or above the GS-15 grade level in the Federal service, or its equivalent with state or local government, the private sector, or nongovernmental organizations.
Fundamental Competencies:
Interpersonal Skills, Oral Communication, Integrity/Honesty, Written Communication, Continual Learning, and Public Service Motivation.
Executive Core Qualifications (ECQs)
Leading Change: The ability to bring about strategic change, both within and outside the organization, to meet organizational goals. Inherent to this ECQ is the ability to establish an organizational vision and to implement it in a continuously changing environment.
Leading People: The ability to lead people toward meeting the organization's vision, mission, and goals. Inherent to this ECQ is the ability to provide an inclusive workplace that fosters the development of others, facilitates cooperation and teamwork, and supports constructive resolution of conflicts.
Results Driven: The ability to meet organizational goals and customer expectations. Inherent to this ECQ is the ability to make decisions that produce high-quality results by applying technical knowledge, analyzing problems, and calculating risks.
Business Acumen: The ability to manage human, financial, and information resources strategically.
Building Coalitions: The ability to build coalitions internally and with other Federal agencies, State and local governments, nonprofit and private sector organizations, foreign governments, or international organizations to achieve common goals.
This position also requires that you possess PTQs that represent knowledge, skills, and abilities essential for success in this role. The following PTQs must be evident in your resume.
Professional/Technical Qualifications (PTQs)
Demonstrated senior-level experience in leading a security and privacy program that includes the organization's vision, strategy, objectives, training, audits, technology selection, vulnerability identification, and risk management.
Demonstrated experience developing and retaining high-performing, top cybersecurity and privacy teams that protect information assets while supporting a large, complex, distributed organization to support its mission and enhance business value.
Demonstrated expert knowledge and mastery of a wide range of security and privacy-related legal and regulatory authorities, concepts, principles, criteria, requirements, technology, and practices.
Demonstrated experience in leading a complex information security program that requires collaboration, partnership, and negotiation across a large geographically dispersed organization or group of organizations to achieve a common objective or service, resulting in a streamlined, quality operation for stakeholders and customers.
It is STRONGLY recommended that you visit the following Office of Personnel Management (OPM) webpage for more information regarding the Fundamental Competencies and ECQs.
https://www.opm.gov/policy-data-oversight/senior-executive-service/executive-core-qualifications/#url=Overview
If selected, you will be required to complete an ECQ package by drafting narratives for each of the ECQs for submission and certification by an OPM Qualifications Review Board (QRB) in order to be placed in this position. If you are currently serving in a career SES appointment, are eligible for reinstatement into the SES, or have successfully completed an SES Candidate Development Program approved by the Office of Personnel Management (OPM), you will not need to draft the ECQs.
Education
This job does not have an education qualification requirement.
Contacts
- Address Office of Information Technology
7500 Security Blvd
Woodlawn, MD 21244
US
- Name: Adrienne Jackson
- Email: [email protected]