This position is located in the Office of the Chief Information Officer and reports to the Deputy Chief Information Officer. The position serves as SBA's Chief Information Security Officer (CISO) and provides leadership in information security policy and guidance, expert advice, and collaboration with offices, oversight agencies, and Congress on matters relating to protecting SBA information assets in support of the Agency's trillion-dollar portfolio of small business programs.

Duties

Executes decision-making authorities and establishes vision and direction for the Agency's cyber and cyber-related resources and/or operations. Bolsters cybersecurity by ensuring the Agency is increasing the safety and security of SBA services, and implementing the requirements contained in the Executive Order on Improving the Nation's Cybersecurity, as well as the Federal Zero Trust Strategy. Leads development, planning, coordination, administration, management, staffing and supervision of the information security and privacy operations related to SBA-wide IT security and privacy programs. Leads the effort to maximize the integration between FISMA reporting and certification and accreditation to ensure increased continuous monitoring and remediation of IT systems' threats and vulnerabilities. Assure information systems and associated facility provides a level of security that is commensurate with the risk and magnitude of the harm that could result from the loss, misuse, disclosure, or modification of the information contained in the system. Advance cybersecurity by overseeing and supporting Agency implementation of Zero Trust plans and execute the Executive Order on Improving the Nation's Cybersecurity. Facilitate information security risk assessment and risk management processes.

Requirements

• You must be a U.S. Citizen or National to qualify for this position
• Selective Service Registration is required for males born after 12/31/1959
• Veterans Preference is not applicable in the Senior Executive Service
• Initial appointments are required to serve a one (1) year probationary period
• Application package must be received by closing date of this announcement
• Suitable for Federal employment, determined by a favorable background investigation
• OPM Candidate Development Program (CDP) graduates and current Career SES members need only to address the Professional/Technical qualifications and need not respond to the Executive Core Qualifications (ECQs).
• All initial appointments to an SES position are contingent on approval from OPM's Qualifications Review Board unless the selectee has successfully participated in an OPM approved SES Candidate Development Program.

Qualifications

As a basic requirement for entry into the SES, applicants must provide evidence of progressively responsible executive leadership and supervisory experience that is indicative of senior executive level management capability and directly related to the skills and abilities outlined under Executive Core Qualifications and Technical Qualifications listed below. Typically, experience of this nature will have been gained at or above the GS-14/15 grade level in the federal service or its equivalent in the private sector. As such, your resume should demonstrate that you have the knowledge, skills, and abilities to successfully fulfill responsibilities inherent in most SES positions such as: Directing the work of an organizational unit; Ensuring the success of one or more specific major programs or projects; Monitoring progress toward strategic organizational goals, evaluating organizational performance and taking action to improve performance; and Supervising the work of employees; and exercising important policy-making, policy determining, or other executive functions. Failure to meet the basic qualification requirement and address all Mandatory Technical and Executive Core Qualification factors will result in your application being disqualified. EXECUTIVE CORE QUALIFICATIONS (ECQs): The ECQs were designed to assess executive experience and potential not technical expertise. They measure whether an individual has the broad executive skills needed to succeed in a variety of SES positions. To meet the minimum qualifications, applicants must possess all the necessary requirements for this position. You must show in your resume that you possess the five mandatory executive core qualifications. NOTE: Current career SES members, former career SES members with reinstatement eligibility, and SES Candidate Development Program graduates who have been certified by OPM do NOT need to address the ECQs. 1. Leading Change: This core qualification involves the ability to bring about strategic change, both within and outside the organization, to meet organizational goals. Inherent to this ECQ is the ability to establish an organizational vision and to implement it in a continuously changing environment. (Competencies: creativity and innovation, external awareness, flexibility, resilience, strategic thinking, vision) 2. Leading People: This core qualification involves the ability to lead people toward meeting the organizations vision, mission, and goals. Inherent to this ECQ is the ability to provide an inclusive workplace that fosters the development of others, facilitates cooperation and teamwork, and supports constructive resolution of conflicts. (Competencies: conflict management, leveraging diversity, developing others, team building) 3. Results Driven: This core qualification involves the ability to meet organizational goals and customer expectations. Inherent to this ECQ is the ability to make decisions that produce high quality results by applying technical knowledge, analyzing problems, and calculating risks. (Competencies: accountability, customer service, decisiveness, entrepreneurship, problem solving, technical credibility) 4. Business Acumen: This core qualification involves the ability to manage human, financial, and information resources strategically. (Competencies: financial management, human capital management, technology management) 5. Building Coalitions: This core qualification involves the ability to build coalitions internally and with other Federal agencies, State and local governments, nonprofit and private sector organizations, foreign governments, or international organizations to achieve common goals. (Competencies: partnering, political savvy, influencing/negotiating) Fundamental Competencies: These competencies are the foundation for success in each of the Executive Core Qualifications; Interpersonal Skills, Oral Communication, Continual Learning, Written Communication, Integrity/Honesty, Public Service Motivation. The Fundamental Competencies are crosscutting; and should be addressed over the course of each ECQ narratives. It is not necessary for you to address the Fundamental Competencies directly as long as the narrative, in its totality, shows mastery of these competencies on the whole. Applicants are encouraged to follow the Challenge, Context, Action and Result (C-C-A-R) model outlined in the guide. Challenge - Describe a specific problem or goal. Context - Describe the individuals and groups you worked with, and/or the environment in which you worked, to address a particular challenge (e.g., clients, co-workers, members of Congress, shrinking budget, low morale). Action - Discuss the specific actions you took to address a challenge. Result - Give specific examples of measures/outcomes that had some impact on the organization. These accomplishments demonstrate the quality and effectiveness of your leadership skills. Additional information about the SES and Executive Core Qualifications can be found on the Office of Personnel Management (OPM) SES Website. You are strongly encouraged to review OPMs Guide to SES Qualifications for specific examples and guidance on writing effective ECQ narrative statements. MANDATORY TECHNICAL QUALIFICATIONS (TQs): All applicants must submit a written narrative response to the following TQs. You must address each TQ separately. Each TQ narratives must not exceed two pages. Please give examples and explain the complexity of the knowledge possessed and the sensitivity of the issued you handled. Expert in applying Information Assurance and Security Policy, Information Systems, Business Process Improvement, and IT Life Cycle and Acquisition Oversight. Skilled in Program and Project Management, Architecture, and Strategic Planning, with a focus on integrating IT programs and services and designing systems to meet current and future business requirements. Demonstrated expertise in implementing fully integrated developmental and operational test and evaluation strategies, with a special focus on systems that manage business/financial activities. Experience leading cybersecurity operational testing to evaluate the Agency's systems, including hardware, software, artificial intelligence risks and ethical use, user operators, maintainers, and methods used to carry out operational concepts. Displays successful examples of a two-phase approach for operational cybersecurity testing for agile protection against cyber threats.

Education

Education cannot be substituted for specialized experience at this level.

Contacts

• Address Office of the Chief Information Officer 409 3rd Street SW Suite 4000 Washington, DC 20416 US
• Name: Kristan Avis
• Phone: 202-695-5454
• Email: [email protected]