We’re hiring a Chief Information Security and Privacy Officer (CISO) in Washington, D.C. The senior-level position is integral to the Office of the Comptroller of the Currency’s (OCC) mission. You will be responsible for the OCC’s information security program and cyber security vision, strategy and operations.
Note: this is a 3 year term appointment which may be extended up to 2 additional years. Please review the entire job announcement in the link provided below prior to completing the application. Application submission deadline is August 21, 2019 at 11:59pm Eastern.
CISO/Supervisory Information Technology Specialist (INFOSEC)
Application submission deadline: 8/21/2019 at 11:59 pm Eastern Time
Please review the entire job announcement before initiating the application
This position is located in Office of Management, Information Technology Services, Washington, DC
As a Supervisory Information Technology Specialist, you will serve as the Chief Information Security and Privacy Officer (CISO) reporting to the OCC Chief Information Officer (CIO) and serve as the senior-level official responsible for the OCC’s information security program and cybersecurity vision, strategy, and operations.
This is a 3 year term appointment . It may be extended up to 2 years.
As Supervisory Information Technology Specialist (INFOSEC), you will:
Exercise delegated responsibility to assure that OCC systems and applications operate securely, and provide appropriate confidentiality, integrity, availability, and privacy. Ensure current and anticipated agency initiatives include appropriate information security measures to protect sensitive bank agency information. As a recognized expert in the field of information security and cybersecurity, provide authoritative guidance, advice, and consultation to the Comptroller, CIO, and senior OCC officials in regards to supporting the mission of the agency. Oversee a robust compliance and accountability program to assure adherence with requirements and controls.
Promote awareness of information security and privacy strategies, priorities, and philosophies among plan, vision, and goals. Provide expert advice and guidance to the CIO and OCC senior official on cybersecurity matters and on cybersecurity matters and in responding to internal and external data calls. Effectively communicate technical requirements to agency officials regarding the OCC cybersecurity posture.
Direct appropriate action consistent with delegated authority as OCC CISO, and assure the Comptroller, CIO, and Executive Committee are apprised of events and findings. Maintain liaison with other federal agencies, industry groups, and vendors to keep abreast of new information technology and cybersecurity developments with potential impact on OCC programs. Represent OCC at meetings and conferences with respect to OCC ITS security.
Direct and oversee continuous information systems security/cybersecurity reviews, audits, vulnerability assessments, risk assessments and evaluations covering OCC systems, networks, and data. Direct and oversee the development of contingency planning, policy, and procedures to ensure continuity of operations for information systems that support OCC operations and assets, and sensitive bank information. Maintain contingency plans and disaster recovery documented procedures. Oversee the review and evaluation of the OCC information systems infrastructure, including policies, guidelines, tools, methods, and technologies. Identifies key vulnerabilities, risks, and trends. Regularly apprise the CIO and OCC executives of risks and new requirements.
You must meet the following requirements by the closing date of this announcement:
Experience: All applicants must have IT-related experience demonstrating each of the four competencies listed below:
Attention to Detail
You must have one year of specialized experience at a level of difficulty and responsibility equivalent to the NB-VI band level or GS-14 grade level in the Federal service. Examples of specialized experience for this position include:
Leading activities in support of an enterprise-wide security strategy and maintenance of information security policies, security risk assessment efforts, and security monitoring solutions.
Certified Information Systems Security Professional (CISSP) desirable.
The experience may have been gained in the public sector, private sector, or through volunteer service. One year of experience refers to full-time work; part-time work is considered on a prorated basis.
To ensure full credit for your work experience, please indicate dates of employment by month/year, and indicate number of hours worked per week, on your resume.
About Office of the Comptroller of the Currency
The Office of the Comptroller of the Currency's primary mission is to charter, regulate, and supervise all national banks and federal savings associations. We also supervise the federal branches and agencies of foreign banks. Our goal in supervising banks and federal savings associations is to ensure that they operate in a safe and sound manner and in compliance with laws requiring fair treatment of their customers and fair access to credit and financial products. Our culture strives to promote creative and innovative contributions by people in all positions and values and encourages diversity.