Chief Information Security Officer (CISO)
What you'd do
Click on "Learn more about this agency" button below for IMPORTANT additional information. The primary purpose of this position is to manage and direct all aspects of Department of the Air Force cybersecurity staff functions, serving as the lead cybersecurity advisor and establishing DAF-wide cybersecurity strategies and policies.
Major duties
As the Chief Information Security Officer (CISO) for the Department of the Air Force, you will serve as a key executive leader directing the cybersecurity strategy and cyber defense programs across the U.S. Air Force and U.S. Space Force. In this high-impact role, you will advise senior leaders, shape enterprise-wide cybersecurity policies, and ensure the resilience of global operations and systems against emerging cyber threats. You will: Direct and manage a comprehensive, DAF-wide cybersecurity program to ensure the confidentiality, integrity, and availability of all supporting information systems. Establish and oversee policies and procedures based on the DoD Risk Management Framework (RMF) to consistently identify, assess, and mitigate information security risks. Serve as the DAF Senior Agency Official for Privacy (SAOP) and the Senior Agency Official for Records Management (SAORM). Lead the development, validation, and prioritization of Cyberspace Operational capability requirements and doctrine. Direct enterprise security awareness and training programs for all personnel and contractors, alongside periodic testing of security controls. Establish processes to detect, report, and swiftly respond to cybersecurity incidents and rectify any identified policy or practice deficiencies. Engage in real-time cyber defense operations and cyber command and control (C2) to integrate global effects. Collaborate with executive-level experts, Defense Industrial Base representatives, and academia to identify strategic gaps and leverage emerging cybersecurity technologies. Advise senior leaders (including DoD, Joint Staff, and Combatant Commands) on current cybersecurity trends, metrics, and cyber defense planning. Provide executive supervision, guidance, and leadership for four divisions comprising military, civilian, and contractor personnel.
What you need to qualify
Eligibility will be based upon a clear showing the applicant has education, training, and experience of the scope and quality sufficient to effectively carry-out the duties of the position. Candidates must exemplify the corporate perspective, leadership vision, broad experience and character needed in the SES corps not only to satisfy the immediate vacancy, but future vacancies which will occur in a variety of organizations, functions and locations. Candidates will not be hired based on their race, sex, color, religion, or national origin. In accordance with new OPM requirements to streamline Senior Executive Service (SES) hiring, applicants are no longer required to submit lengthy narrative essays, including those for Executive Core Qualifications (ECQs) or Mandatory Technical Qualifications (TQs), when applying. Instead, the initial application will be resume-only, capped at two pages. This change streamlines the application process and more closely aligns with private industry practices. Applicants identified for potential selection will have their ECQs assessed by undergoing a structured interview with the Office of Personnel Management (OPM) Qualifications Review Board (QRB). To meet the minimum qualification requirements for this position, you must show that you possess the education, Technical Qualifications (TQ), and Executive Core Qualifications (ECQ) related to this position within your resume (not to exceed 2 pages). Resumes over the 2-page limit will be disqualified. Your resume should include examples of experience, education, and accomplishments applicable to the qualification(s). If your resume does not reflect demonstrated evidence of the ECQs and TQs, you may not receive further consideration for the position. CERTIFICATIONS: The incumbent must possess or be willing to achieve Cybersecurity Workforce Management certification (8570.01 IAM level III) or equivalent within one year of gaining the position. TECHNICAL QUALIFICATIONS (TQs): Your resume should demonstrate accomplishments that satisfy the technical qualifications. TQ 1: Demonstrated executive-level experience in directing enterprise-wide cyberspace operations, cybersecurity strategy, and policy formulation within a large, complex organization. This includes serving as a leading cybersecurity authority and representing agency interests in high-stakes discussions, negotiations, and briefings with senior defense leaders, federal agencies, and industry executives to safeguard critical national security systems. TQ 2: Demonstrated senior executive experience in evaluating, validating, and monitoring cyberspace doctrine and operational capability requirements, with specialized knowledge of DOTMLPF (doctrine, organization, training, materiel, leadership, personnel, and facilities) processes. This includes a proven ability to lead large, multi-disciplinary organizations through complex consensus building and deliver persuasive briefings to senior civilian, military, intelligence, and international allied partners. EXECUTIVE CORE QUALIFICATIONS (ECQs): All new appointees to the Senior Executive Service (SES) under a career appointment will be assessed for executive competency against the five mandatory ECQs: ECQ 1. Commitment to the Rule of Law and the Principles of the American Founding: Demonstrated knowledge of the American system of government, commitment to uphold the Constitution and the rule of law, and commitment to serve the American people. ECQ 2. Driving Efficiency: Demonstrated ability to strategically and efficiently manage resources, budget effectively, cut wasteful spending, and pursue efficiency through process and technological upgrades. ECQ 3. Merit and Competence: Demonstrated knowledge, ability, and technical competence to effectively and reliably produce work that is of exceptional quality. ECQ 4. Leading People: Demonstrated ability to lead and inspire a group toward meeting the organization's vision, mission, and goals, and to drive a high-performance, high-accountability culture. This includes, when necessary, the ability to lead people through change and to hold individuals accountable. ECQ 5. Achieving Results: Demonstrated ability to achieve both individual and organizational results, and to align results to stated goals from superiors. Please note: If you are a member of the SES or have been certified through successful participation in an OPM approved SES Candidate Development Program, or have SES reinstatement eligibility, you must attach proof (e.g., SF-50 or Certification by OPM's SES Qualifications Review Board) of your eligibility for noncompetitive appointment to the SES.
Before you apply
Federal applications are different: your resume should be 3–5 pages and mirror the language of this announcement. Read our federal resume guide first — it's the #1 reason qualified people get screened out.
Don't miss the next one.
Get an email the moment a similar federal job opens — postings can close in as little as 5 days.