Skip to main content

This job has expired

Deputy Chief Information Officer for Cybersecurity and CISO

Employer
USAJobs
Location
Washington, D.C
Closing date
Jul 6, 2022
Duties

As the Deputy Chief Information Officer for Cybersecurity and CISO you will:
  • Provide leadership for the strategic direction and management of Department-wide enterprise cybersecurity threat and vulnerability information to enable the agency to identify, protect, detect, respond and recover from cyber-attacks.
  • Provide guidance and expert advice in developing, promoting and maintaining cybersecurity controls and performance measures to adequately and cost effectively protect all cyber critical infrastructure, including classified and unclassified information systems and national security systems.
  • Provide leadership, maintains governance and operational oversight of the DOE Joint Cybersecurity Coordination Center, central point for the collection, analysis, handling, and sharing of enterprise cybersecurity information and serves as the Department's incident response coordination and reporting element.
  • Provide Department-wide leadership in information security policy and guidance to promote efficient, effective cyber, telecommunications, and information security practices while assuring consistency with national policy.
  • Provide expert advice, recommendations, and representation in areas of Departmental cybersecurity policies, guidelines, and implementation of enhanced Departmental information security practices.
  • Serve as or provide a DOE representative to appropriate Federal cyber security committees and forums, including the Federal Computer Security Program Manager's Forum and the Committee for National Security Systems Security Committee.
  • Develop and mentor staff through on-boarding, open communication, training and development opportunities and performance management processes.
This is a dual-hatted position that includes serving as the "Chief Information Security Officer" (CISO), duties include:
  • Develop and maintain the Department's cybersecurity architecture to ensure Departmental information and information systems are protected in accordance with the risk and magnitude of harm that would occur from the loss or compromise of the Department's information assets.
  • On behalf of the CIO, prepare DOE's annual agency report on the effectiveness of DOE's Cybersecurity Management Program, including progress of remedial actions.
  • Serve as the senior advisor to departmental officials to ensure that DOE's program office compliance with the Cybersecurity Management Program.
  • Establish Departmental cybersecurity policy, standards, and guidelines in accordance with federal law and regulations, Presidential directives, the national standards and industry best practices. Develops and coordinates Departmental policy for communications security, emissions security, secure voice, and cybersecurity.
  • Responsible for the Enterprise Risk Management-Cybersecurity (ERM-CS) strategy plan, and management.
  • Serve as the agency's cybersecurity liaison to the private sector and federal community including the Executive Office of Management and Budget (OMB), the Committee on National Security Systems, and the National Institute for Standards and Technology.
  • Serve as the DOE's senior Authorizing Official (AO) and provide training, guidance, and coordination with other agency AOs.
  • Serve as the DOE's designated Senior Agency Security Officer with responsibilities to develop and maintain the DOE's Cybersecurity Management Program.


Requirements

Conditions of Employment



CONDITIONS OF EMPLOYMENT: This is a career position in the SES. Unless the selectee is already a member of the SES with career status or has successfully completed an SES Candidate Development Program certified by OPM, executive qualifications must be approved by OPM before the appointment can be effected. If you are selected, you will be responsible for working with a DOE Executive Consultant to finalize your ECQ narrative for OPM submission.
CITIZENSHIP: You must be a U.S. Citizen or National.

HOMELAND SECURITY PRESIDENTIAL DIRECTIVE (HSPD-12): A selectee's appointment is contingent upon compliance with Homeland Security Presidential Directive (HSPD-12) governing personal identity.

PUBLIC FINANCIAL DISCLOSURE REPORT (OGE 278): If you are selected for this position, will be required to file this report prior to entry on duty in accordance with the Ethics of Government Act of 1978.

PROBATIONARY PERIOD: An individual's initial SES career appointment becomes final only after the individual successfully completes a one-year probationary period.

SECURITY CLEARANCE: You must be able to obtain and maintain a DOE Q-level security clearance

DRUG TESTING: As a condition of appointment to this position, you will be subject to pre-employment/pre-appointment testing for illegal drug use under the U.S. Department of Energy Employee Drug Plan. If you are selected you will be provided information regarding drug testing. Failure to undergo testing or positive findings resulting from the test will eliminate you from further consideration for this position. If selected for and appointed to this position you will be subject to random drug testing while employed.

SELECTIVE SERVICE: All males born after December 31, 1959 must abide by laws regarding Selective Service registration. To learn more about this law, visit the Selective Service web page, Who Must Register . If you are not registered and don't have an approved exemption, you will not be eligible for employment with the Federal government.

MOBILITY: A mobility agreement may be required based on mission needs.

E-VERIFY: New employees to the Department of Energy will be required to successfully pass the E-Verify employment verification check. To learn more about E-Verify, including your rights and responsibilities, visit www.dhs.gov/E-Verify .

Qualifications

Resume-Based Resume: Applicants must show possession of the ECQs and any technical qualifications via resume. Your resume presented will reflect that you possess the ECQs and give a synopsis of your accomplishments. The application process used to recruit for this position is the RESUME BASED method. Although applicants cannot address the Executive Core Qualifications (ECQs) separately, evidence of each must be clearly demonstrated in the five (5) page resume and throughout the rest of the application package to include the MTQ narrative (required as an attachment to the application).

A sample 5-page executive level resume documenting ECQs can be viewed at this link http://www.opm.gov/ses/references/GuidetoSESQuals_2012.pdf

Executive Core Qualifications (ECQs)

ECQ 1: LEADING CHANGE: Ability to bring about strategic change, both within and outside the organization, to meet organizational goals and establish an organizational vision and to implement it in a continuously changing environment.
ECQ 2: LEADING PEOPLE: Ability to lead people toward meeting the organization's vision, mission, and goals and provide an inclusive workplace that fosters the development of others, facilitates cooperation and teamwork, and supports constructive resolution of conflicts.
ECQ 3: RESULTS DRIVEN: Ability to meet organizational goals and customer expectations, and make decisions that produce high-quality results by applying technical knowledge, analyzing problems, and calculating risks.
ECQ 4: BUSINESS ACUMEN: Ability to manage human, financial, and information resources strategically.
ECQ 5: BUILDING COALITIONS: Ability to build coalitions internally and with other Federal agencies, State and local governments, nonprofit and private sector organizations, foreign governments, or international organizations to achieve common goals.

The Office of Personnel Management (OPM) is required by law to review the executive core qualifications of each new career appointee to the Senior Executive Service (SES) prior to appointment. For additional information on ECQs, please review the detailed information provided by OPM at the following link: Executive Core Qualifications .

Mandatory Technical Qualifications (MTQs): A supplemental narrative must be uploaded and attached to your application addressing each MTQ listed below . No more than one (1) page per MTQ is allowed; additional informational information will not be considered. MTQs must provide specific examples that address relevant experience and accomplishments. Applicants must reflect superior technical qualifications demonstrated through leadership and management in the following MTQs. Failure to submit a narrative statement addressing each of the MTQs may cause your application to be deemed incomplete and not be considered.

Applicants must reflect superior technical qualifications demonstrated through leadership and management in the following MTQs:
  • MTQ 1 - Demonstrate a broad knowledge and ability to effectively lead a cybersecurity enterprise and provide strategic direction to enable an agency or organization to prepare for, detect, and respond to cyber-attacks.
  • MTQ 2 - Demonstrate a broad knowledge and leadership ability to effectively manage cybersecurity incident response at a cabinet-level or equivalent organization and/or in an interagency environment.
  • MTQ 3 - Demonstrate a broad knowledge and ability to effectively develop and apply information security policies to deliver innovative solutions that support mission.


Education

Undergraduate or Graduate Education: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks.

You must provide a copy of your transcripts from an accredited institution. Be sure to include those transcripts directly applicable to determining your meeting the education requirements. Failure to provide proof of education will result in non-consideration for this position. OFFICIAL ORIGINAL TRANSCRIPTS will be required to be provided prior to entrance-on-duty for individuals selected.

Education must be obtained from an accredited institution recognized by the U.S. Department of Education. For special instructions pertaining to foreign education and a list of organizations that can evaluate foreign education, see Department of Education
If you do not meet the education requirements for the position, experience can be considered:

Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate

For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled.
  • Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
  • Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
  • Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
  • Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

  • In addition, experience that has equipped the applicant with the particular competencies/knowledge, skills, and abilities to successfully perform the duties of the position and is typically in or related to the work of the position to be filled. Such experience is typically gained in the IT field or through the performance of work where the primary concern is IT. The employing agency is responsible for defining the specialized experience based on the requirements of the position being filled.

    Additional information

    COVID-19 VACCINATION: Executive Order (EO) 14043 requires Federal employees to be fully vaccinated against COVID-19 regardless of the employee's duty location or work arrangement (e.g., telework, remote work), subject to such exceptions as required by law. At this time, EO 14043 is subject to a preliminary nationwide injunction. Although this injunction may ultimately be supplemented, modified, or vacated, depending on the course of ongoing litigation, the Federal Government will take no action at this time to implement or enforce EO 14043's requirement that employees must be fully vaccinated against COVID-19. However, as Federal agencies may request information regarding the vaccination status of selected applicants for the purposes of implementing other workplace safety protocols, such as protocols related to masking, physical distancing, testing, travel, and quarantine, the selectee(s) for this position will be required to submit information about his/her vaccination status.
    Providing a knowing and willful false statement on either DOE's COVID-19 Vaccination Form prior to starting or when providing proof of vaccination in DOE's vaccination tracking system once onboard is punishable by fine and/or imprisonment (18 U.S.C. 1001) and will result in termination from Federal service.

    If selected, you may be expected to telework upon your appointment, or you may be required to report to the duty station listed on this announcement, even if your home/temporary telework site is located outside the local commuting area. Your position may be eligible for workplace flexibilities which may include remote work or telework options, and/or flexible work scheduling. These flexibilities may be requested in accordance with the DOE Workplace Flexibilities policy.

    The U.S. Department of Energy fosters a diverse and inclusive workplace and is an Equal Opportunity Employer.

    Telework: For general information on government-wide Telework polices visit: www.telework.gov

    OF-306: You may be required to complete an OF-306, "Declaration for Federal Employment" form used to (a) determine your suitability for Federal Employment and/or (b) in conducting an investigation to determine your suitability or ability to hold a security clearance.

    Applications contain information subject to the Privacy Act (PL 93 579, 5 USC 552a). The information is used to determine qualifications for employment and is authorized under Title 5, USC, Section 3302 and 3361.

    Hiring incentives may be authorized in accordance with agency policy and if funding is available.

    This is a non-bargaining unit position.

    Get job alerts

    Create a job alert and receive personalized job recommendations straight to your inbox.

    Create alert