On behalf of the OMB Director and Deputy Director for Management, is the senior OMB -official responsible for advising OMB and agencies on federal cybersecurity policy strategy and oversight across federal information technology systems, under the direction of the Office of the Administrator, Office of E-Government and IT (as it relates to Information Technology (IT) management).
Provide oversight of relevant agency cybersecurity practices, and implementation across federal information technology systems in accordance with the direction provided by the Administrator, Office of E-Government and IT, within OMB.
Serve as the federal government's lead cybersecurity strategist in the ongoing assessment of cybersecurity risks to the federal IT environment. To the greatest extent possible, use widely accepted frameworks (for example, NIST, ISO 2700m COBIT) and stay current on market trends, industry practices, and current and emerging products and capabilities in order to assess risk, identify vulnerabilities, prioritize threats, secure investment, and measure and communicate progress.
Serve as the liaison between the EOP and the Department of Homeland Security (DHS), Department of Defense (DOD), Office of the Director of National Intelligence (ODNI), and Agency CISOs for all federal cybersecurity activities.
Provide input into the development of the annual president's budget so that it reflects cybersecurity priorities across federal departments and agencies, and ensure coordination and integration with the overall federal IT budget process.
Work closely with the senior OMB official for privacy to ensure that federal privacy policies and activities are complementary and mutually reinforcing to the greatest extent possible.
Ensure effective coordination and alignment among agency CISOs through the exercise of effective governance, for example, while serving as the Chair of the Information Security and Identity Management Committee (ISIMC) of the Federal CIO Council or through engagement with other committees as appropriate.
Sponsor and oversee implementation of federal government-wide cybersecurity role-based and awareness training, and agency alignment with cybersecurity best practices.
Establish a government-wide program, in coordination with the Office of Personnel Management (OPM), DOD, DHS, and the National Institute of Standards and Technology (NIST) to address the recruitment, retention, and training of cybersecurity experts, with a particular focus on not just technical experts, but also versatile professionals who can effectively facilitate between IT and the mission and business functions.
Design, implement and maintain effective cybersecurity performance measures for the federal government, and ensure that agency reviews are conducted in accordance with established policies, standards, and regulations.
Lead the effort to maximize the value and effectiveness of security performance measures associated with FISMA.
Reports to the Administrator, Office of E-Government and Information Technology.