This position resides in the KSC IT Security Office of the Information Technology and Communications Services Directorate (ITB00) and directly supports the NASA Office of the Chief Information Officer (OCIO) IT Security Division (ITSD) as the Agency Enterprise Information Security Risk Manager.Learn more about this agency
To receive consideration, you must submit a resume and answer NASA-specific questions. The NASA questions appear after you submit your resume and are transferred to the NASA web site. If you successfully apply, USAJOBS will show your application status as 'Received'. If your status is 'Application Status Not Available', you have not successfully applied. Do not rely on a USAJOBS email to confirm successful application. Only an email from NASA confirms a successful application.
Deliberate attempts to falsify your application information, such as copying portions of this job announcement into your resume, may result in you being removed from consideration for this position.
If you are an individual with a disability and have questions regarding the Federal special hiring authorities for individuals with disabilities or would like to request a reasonable accommodation for the application or hiring process, please contact the Selective Placement Coordinator (SPC) at KSC by sending an email to KSC-JobsInbox@mail.nasa.gov.
As a Federal employee you are required by Federal statutes and regulations to avoid certain potential financial conflicts of interest and assignments in which it may appear that you could act partially. See 18 U.S.C. 208 & 5 C.F.R. 2635.502.
Pay may be set in accordance with the General Pay Provisions delineated in NPR 3530.1C.
Serves as the Agency Enterprise Information Security Risk Manager, leads the Agency Information Security officials, including the CIOs, CISOs, ISOs, and risk owners on the implementation, documentation, and analysis of new and existing risks; develops processes and procedures that provide consistent risk determination in the Risk Information Security Compliance System, and integrates Agency information security risks into the Agency overall risk profile
Leads Agency efforts to identify and analyze risks to Agency IT systems, develop a consistent risk determination process that facilitates Agency Chief Information Security Officers (CISOs) and system owners in addressing and mitigating risk, and will integrate IT risk into the broader Agency-wide risk assessment process and resulting risk profile.
Also functions as the Risk Information Security Compliance System (RISCS) Dashboard Manager accountable for developing and implementing the IT Security risk management analytics and reporting as required to satisfy current and new federal requirements, and collaborating with the Agency OCIO, CISOs, Information System Owners, and risk owners on implementing these dashboards.
Directly supports the Senior Agency Information Security Officer and the ITSD in developing and implementing information security strategies, policies, and processes as necessary, and provides innovative approaches to address complex information security issues facing the Agency.
Requires knowledge and familiarity of concepts and principles related to Agency information security requirements.
Who May Apply
This job is open to…U.S. citizens and U.S. nationals
Job family (Series)
This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/481224100. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.