Chief Information Security Officer, NB-2210-VIII
What you'd do
As a Chief Information Security Officer, you will serve as operational executive responsible for the OCC's information security program and cybersecurity vision, strategy, and operations for ensuring confidentiality, integrity and availability of the OCC's critical information infrastructure and information system security This position will be located in one of the duty locations listed.
Major duties
As a Chief Information Security Officer, you will: Serve as the OCC's Chief Information Security Officer (CISO) and Chief Privacy Officer. Lead current and anticipated agency initiatives to ensure appropriate information security measures to protect sensitive bank and agency information by directing the implementation of the OCC's enterprise information security/cybersecurity and privacy program. Oversee development of new information security/cybersecurity strategies, methodologies, tools, technologies and concepts to initiate and oversee special initiatives, project and review that further enhance the cybersecurity posture at the OCC. Develop and maintain information security policies and procedures to perform periodic testing, implement controls, and assess risks and ensure information systems reliability and accessibility, and to prevent unauthorized access to systems, networks, and data, with the objective to continuously improve OCC information system/cybersecurity efficiency and effectiveness. Maintain liaison with other federal agencies, industry groups, and vendors to keep abreast of new information technology and cybersecurity developments with potential impact on OCC programs. Represent OCC at meetings and conferences with respect to OCC IT security and privacy. Through subordinate senior-level personnel, lead, motivate and develop the staff in the organization; evaluate and look for ways to improve the production and quality of work produced within the office: develop performance standards and evaluate performance in accordance with OCC guidelines. As a member of the Information Technology & Security executive leadership team, be responsible for development and implementation of strategic plans, goals, and objectives.
What you need to qualify
You must meet the following requirements within 30 calendar days after the closing date of this announcement: You must have one year of specialized experience at a level of difficulty and responsibility equivalent to the NB-VII band level or GS-15 grade level in the Federal service. Examples of specialized experience for this position include: Leading organization-wide cybersecurity and privacy programs including developing and executing cybersecurity vision, strategy, policy, and operations. Directing security and privacy governance, oversight, compliance, and risk management activities. Leading verification and validation of security controls and implementation of federal security and privacy requirements, such as FISMA and the Privacy Act of 1974. Advising executive leadership on information security, privacy, and enterprise risk. The experience may have been gained in the public sector, private sector, or through volunteer service. One year of experience refers to full-time work; part-time work is considered on a prorated basis. To receive any credit for your work experience, please indicate dates of employment by month/year, and indicate the number of hours worked per week, on your resume.
Before you apply
Federal applications are different: your resume should be 3–5 pages and mirror the language of this announcement. Read our federal resume guide first — it's the #1 reason qualified people get screened out.
Don't miss the next one.
Get an email the moment a similar federal job opens — postings can close in as little as 5 days.