Supervisory IT Cybersecurity Specialist
What you'd do
This position is located in the Compliance Reporting Unit (CR), Enterprise Chief Information Security Office (DT/E-CISO) leads a high-visibility cybersecurity compliance and assurance program responsible for supporting FISMA, OMB, CISA, OIG, GAO, OMB Circular A-123, NIST SP 800-53 Rev. 5, NIST Cybersecurity Framework, Zero Trust implementation reporting, RMF IV&V activities, High Value Asset assessments, and compliance activities involving National Security Systems.
Major duties
Serves as the Unit Chief for Compliance Reporting, overseeing Risk Management Framework (RMF) Independent Verification and Validation (IV&V), High Valued Asset (HVA)assessments, audit coordination, evidence validation, and risk reporting. Leads and manages a cybersecurity compliance and audit team for Department-wide assurance and reporting activities, including risk management, IV&V, National Security Systems, and related functions. Directs the development, validation, and submission of cybersecurity compliance reports required for FISMA, OMB, CISA, OIG, GAO, A-123, internal control, and executive leadership. Oversees Risk Management Framework IV&V activities to evaluate the quality, accuracy, completeness, and effectiveness of security authorization packages and control implementation statements. Conducts and supervises HVA assessments to evaluate cybersecurity risks, mission impact, control effectiveness, vulnerability, resilience, segmentation, logging, identity management, access and configuration management.
What you need to qualify
The position requires senior-level cybersecurity judgment, supervisory leadership, audit readiness experience, executive communication skills, and the ability to translate complex cybersecurity, compliance, audit, and risk information into accurate, defensible, and actionable reports for senior leaders and federal oversight stakeholders. The Incumbent leads a high-visibility cybersecurity compliance and assurance program responsible for supporting FISMA, OMB, CISA, OIG, GAO, OMB Circular A-123, NIST SP 800-53 Rev. 5, NIST Cybersecurity Framework, Zero Trust implementation reporting, RMF IV&V activities, High Value Asset assessments, and compliance activities involving National Security Systems. Applicants must meet all the required qualification requirements described below by the closing date of this announcement. NOTE: Applicants must meet time-in-grade and time after competitive appointment requirements, by the closing date of this announcement. Applicants applying for the GS-15 grade level must meet the following requirements: Have IT-related experience demonstrating EACH of the four competencies AND specialized experience listed below: Attention to Detail - Thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (individuals who use or receive the services or products that your work produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (technical, sensitive, controversial); makes clear and convincing oral presentation; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgement to generate and evaluate alternatives, and to make recommendations. AND Have at least 1 full year of specialized experience equivalent to the GS-14 level in the Federal service which provided you with the particular knowledge, skills and abilities to perform the duties of the position. Qualifying specialized experience must demonstrate the following: Leading cybersecurity compliance reporting for a federal agency, large organization, or complex enterprise environment. Applying federal cybersecurity requirements, including FISMA, OMB, CISA, OIG, GAO, A-123, NIST SP 800-53 Rev. 5, NIST Cybersecurity Framework, Risk Management Framework, and Zero Trust requirements. Supervising or leading teams responsible for cybersecurity compliance, RMF IV&V, High Value Asset assessments, audit coordination, POA&M reporting, evidence validation, control assessment, risk management, or executive reporting, assessment planning, evidence collection, technical validation, mission impact analysis, cybersecurity risk analysis, remediation tracking, and executive reporting. NOTE: In order to qualify for this position, your experience MUST be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. There is no substitute of education for specialized experience for the GS-15 position. In addition, applicant's experience must also demonstrate that the candidate possesses the following qualities: Ability to assign, review, and supervise the work of others; Objectivity and fairness in judging people on their ability, and situations on the facts and circumstances; Ability to adjust to change, work pressures, or difficult situations without undue stress; Willingness to consider new ideas or divergent points of view; and Capacity to "see the job through."
Before you apply
Federal applications are different: your resume should be 3–5 pages and mirror the language of this announcement. Read our federal resume guide first — it's the #1 reason qualified people get screened out.
Don't miss the next one.
Get an email the moment a similar federal job opens — postings can close in as little as 5 days.