Executive Director Information Security Operations

Employer
USAJobs
Location
District of Columbia, D.C
Posted
Jun 25, 2019
Closes
Jul 01, 2019
Hours
Full Time
Duties

Summary

The Executive Director for Information Security Operations is the principal advisor to the Deputy Assistant Secretary (DAS), Chief Information Security Officer(CISO). The Executive Director also serve as Deputy CISO and, in that capacity, he/she work together in assisting the VA CISO in leading the Department's enterprise-wide cybersecurity program.

Learn more about this agency

Responsibilities

The Executive Director, Information Security Operations, reports to and operated under general authority of the Deputy Assistant Secretary, Chief Information Security Officer. The responsibilities include, but not limited to:
  • Providing subject matter expertise to executive leadership on a broad range of security standards and best practices (e.g. FISMA, Dodd-Frank, HIPAA, Privacy Act).
  • Working with VA Business Units and OIT Elements stakeholders to determine acceptable levels of risk and ensuring cybersecurity efforts follows applicable laws, regulations, policies, and audit findings are properly addressed.
  • Developing and monitoring measures and metrics to evaluate the effectiveness and value of programs as it relates to resource allocation, mission objectives, and organizational priorities.
  • Instruct, lead, and mentor assigned security teams consisting of direct reports and indirect reports (such as individuals in other areas of IT) including providing security guidance, hiring, training, staff development, and performance management.
  • The incumbent will also serve as the VA Chief Privacy Officer and oversee the VA Privacy Program and Privacy Incident Response Program.
  • Develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.
  • Developing partnerships with interagency, intergovernmental, and private-sector executives as it relates to VA, OIT, and OIS cybersecurity mission objectives.

This position supervises 5 direct reports and manages over 180 employees.

Executive Director also serve as Deputy CISO and, in that capacity, he/she work together in assisting the VA CISO in leading the Department's enterprise-wide cybersecurity program.

On occasion, the incumbent will serve as the acting CISO and must be able to provide subject matter expertise to executive management on a broad range of security standards, best practices, and VA risk approach to cybersecurity.

Business Continuity represents the entire Office of Information Technology for VA level preparedness.

The incumbent will lead the Department's cybersecurity operation programs, including ongoing testing and evaluation; remediation management; incident response, and continuity of operations.

The incumbent will also serve as Chief Privacy Officer (CPO) with responsibility for implementing the VA's Department-wide privacy program with proper designation by the VA Senior Agency Official for Privacy (SAOP) and full responsibility for the implementation of the VA's Department-wide privacy program.

Travel Required

25% or less - You may be expected to travel for this position.

Supervisory status
Yes

Promotion Potential
00

Requirements

Conditions of Employment

  • US citizenship is required.
  • One year probationary period required for initial SES appointment.
  • Males born after 12-31-59 must be registered for Selective Service.
  • Incumbents of this position will be subject to a background investigation commensurate with the risk and sensitivity level of the position.
  • Successful completion of drug screening required.
  • Public Financial Disclosure Report (SF-278) is required.
  • May be subject to reassignment geographically or organizationally.
  • Top Secret security clearance is required.


Qualifications

To meet the minimum qualifications, applicant must possess the following technical and executive core qualifications. These qualifications would typically be gained through progressively responsible management or executive level assignments such as director of a regional office, medical facility or program manager. An individual's total experience, education and volunteer work experience must demonstrate the ability to perform the duties of the position.

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g. Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

MANDATORY EXECUTIVE CORE QUALIFICATIONS (ECQs): All applicants must submit a written narrative response to the following ECQs. Your narrative must address each ECQ separately. Additional information on ECQs is available at: http://www.opm.gov/policy-data-oversight/senior-executive-service/executive-core-qualifications/ . Applicants are encouraged to follow the Challenge, Context, Action and Results model outlined in the guide. It is recommended that you draft your ECQs in a Word document and then upload into the system.

1. Leading Change: The ability to bring about strategic change, both within and outside the organization, to meet organizational goals. Inherent to this ECQ is the ability to establish an organizational vision and to implement it in a continuously changing environment.

2. Leading People: The ability to lead people toward meeting the organization's vision, mission, and goals. Inherent to this ECQ is the ability to provide an inclusive workplace that fosters the development of others, facilitates cooperation and teamwork, and supports constructive resolution of conflicts.

3. Results Driven: The ability to meet organizational goals and customer expectations. Inherent to this ECQ is the ability to make decisions that produce high-quality results by applying technical knowledge, analyzing problems, and calculating risks.

4. Business Acumen: The ability to manage human, financial and information resources strategically.

5. Building Coalitions: The ability to build coalitions internally and with other Federal agencies, state and local governments, nonprofit and private sector organizations, foreign governments, or international organizations to achieve common goals.

TECHNICAL QUALIFICATION (TQ)s: In addition, all applicants must submit a written narrative response to the following TQ(s). Please give examples and explain how often you used your skills, the complexity of the knowledge possessed, the level of people you interacted with, the sensitivity of the issues you handled managing a large public or private sector organization that administers complex, rules-based benefits or services, etc. It is recommended that you draft your TQ(s) in a word document and then upload into the system.

TQ1: Demonstrate experience in successfully leading an agency-level or large corporate-level organization's cybersecurity operations and support program. Highlight experience in balancing business objectives with legislative and regulatory requirements, building consensus and support with mission/business partners, and providing timely and strategic guidance and counsel to senior leadership.

TQ2: Demonstrated experience in successfully assessing and managing cybersecurity risks while maintain decisional space for mission owners and business line units to tailor implementation strategies specific to their needs. Response should address recognized risk management principles including how risk decisions are made, codified, and reported for greater situational awareness.

Education

This job does not have an education qualification requirement.

Additional information

Veteran Preference does not apply to the Senior Executive Service.: https://www.opm.gov/faqs/QA.aspx?fid=fcd37029-d607-4fec-a8d6-faecbdb08eef&pid=6d668276-0086-49e3-aa1e-bccfb2bcb379 .

Drug Testing: All applicants tentatively selected for VA Senior Executive Service employment in any position are subject to urinalysis to screen for illegal drug use prior to appointment. Applicants who refuse to be tested will be denied employment with VA.

Incumbents of this position will be subject to a background investigation commensurate with the risk and sensitivity level of the position.

How You Will Be Evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Step 1: ECQ qualifications

Step 2: Technical Qualification(s)

Step 3: VA Executive Resources Board

Step 4: Nominating Organization may conduct interviews

Step 5: Approval by the Selecting Official (may include additional screening)

Step 6: OPM Qualifications Review Board certification

Background checks and security clearance

Security clearance
Not Required

Drug test required
Yes

Position sensitivity and risk
Special-Sensitive (SS)/High Risk

Trust determination process
Suitability/Fitness

Required Documents

A complete application for this position includes the following items:

1. Resume not to exceed 5 pages;

2. Written narrative response to address each Technical Qualification(s) not to exceed 2 pages each; and

3. Written narrative responses to address each Executive Core Qualifications (ECQs) not to exceed 2 pages each for a total of 10 pages; or

4. Proof of non-competitive eligibility (if applicable). Proof consists of an SF-50 showing career status in the SES and/or proof of certification of your Executive Core Qualifications (ECQs) from the OPM administered Qualifications Review Board (QRB).

Non-Competitive Consideration: You are considered a non-competitive applicant if you are a current career Senior Executive, Qualifications Review Board (QRB) certified graduate of a Senior Executive (SES) Candidate Development Program (CDP) or an individual with SES reinstatement eligibility. You may be considered non-competitively for appointment to this position if you meet the mandatory technical qualifications requirements.

Non-competitive applicants do not need to submit ECQ narratives but you must clearly state your status in your resume and submit a written narrative response to the Technical Qualification (s); not more than 2 pages per each TQ with a font size no smaller than 12 points. Proof of non-competitive eligibility is required. The agency has the option of considering you non-competitively or including you in the competitive process.

Similar jobs