Duties include, but are not limited to the following:

1. Advocate for necessary resources, including financial resources, to conduct an effective enterprise security program.
2. Advise senior management (e.g., CIO) on cost/benefit analysis of information security programs, policies, processes, systems, and elements.
3. Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
4. Align information technology (IT) security priorities with the security strategy.
5. Oversee information security budget and contracting.
6. Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection.
7. Recommend policy and coordinate review and approval.
8. Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
9. Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
10. Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
11. Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
12. Coordinate with organizational manpower stakeholders to ensure appropriate allocation and distribution of human capital assets.
13. Assess policy needs and collaborate with stakeholders to develop policies to govern cyber activities.
14. Design/integrate a cyber strategy that outlines the vision, mission, and goals that align with the organization's strategic plan.
15. Conduct long-range, strategic planning efforts with internal and external partners in cyber activities.
16. Collaborate on cyber privacy and security policies and procedures.
17. Collaborate with cybersecurity personnel on the security risk assessment process to address privacy compliance and risk mitigation.
18. Guide a team of IT security experts.
19. Collaborate with key stakeholders to establish a cybersecurity risk management program.

Conditions of employment

1. All information is subject to verification. Applicants are advised that false answers or omissions of information on application materials or inability to meet the following conditions may be grounds for non-selection, withdrawal of an offer of employment, or dismissal after being employed.
2. Selection for this position is contingent upon completion of OF-306, Declaration of Federal Employment during the pre-employment process and proof of U.S. citizenship for competitive status positions or conversion to a competitive status position with the Administrative Office of the US Courts. In instances where non-citizens are considered for hire into temporary or any other position with non competitive status or when it is confirmed by the AO's Human Resources Office that there are no qualified U.S. citizens for a competitive status position (unless prohibited by a law or statue), non-citizens must provide proof of authorization to work in the United States and proof of entitlement to receive compensation. Additional information on the employment of non-citizens can be found at http://www.usajobs.gov/Help/working-in-government/non-citizens. For a list of documents that may be used to provide proof of citizenship or authorization to work in the United States, please refer to Form I-9, Employment Eligibility Verification.
3. All new AO employees will be required to complete a FBI fingerprint-based national criminal database and records check and pass a public trust suitability check.
4. You will be required to serve a trial period if selected for a first-time appointment to the Federal government, transferring from another Federal agency, or serving as a first-time supervisor. Failure to successfully complete the trial period may result in termination of employment. This does not apply to current federal Judiciary employees.
5. Relocation expenses may be provided, but only if authorized by the Director of the AO.
6. More than one selection may be made from this announcement.
7. All requirements must be met by the closing date of this announcement.

Qualifications

Applicants must have demonstrated experience as listed below. This requirement is according to the AO Classification, Compensation, and Recruitment Systems which include interpretive guidance and reference to the OPM Operating Manual for Qualification Standards for General Schedule Positions.

Basic Requirements: You must have Information Technology (IT) related experience which demonstrates proficiency in each of the following competencies:

1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

AND

Specialized Experience: Applicants must have at least one full year (52 weeks) of specialized experience which is in or directly related to the line of work of this position. Specialized experience is demonstrated experience in ALL of the following:

1. Managing contract teams at a national or enterprise level.
2. incorporating data into the decision making process.
3. Presenting to various audiences including senior executive or equivalent and technical staff.
4. Managing cyber operations in a 24/7 security operations center.

(Resume must show clear and convincing evidence of all areas of specialized experience. We will not make assumptions.)

The following is desired but not required:

1. CISM, CISSP or equivalent certifications.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

We will review your resume and supporting documentation and compare this information to your responses on the occupational questionnaire to determine if you meet the minimum qualifications for this job. If you meet the minimum qualifications for this job, we will evaluate your application package, to assess the quality, depth, and complexity of your accomplishments, experience, and education as they relate to the requirements listed in this vacancy announcement.

You should be aware that your ratings are subject to evaluation and verification. If a determination is made that you have rated yourself higher than is supported by your resume and/or narrative responses, you will be assigned a rating commensurate to your described experience. Failure to submit the mandatory narrative responses will result in not receiving full consideration and/or rating credit. Deliberate attempts to falsify information may be grounds for not selecting you, withdrawing an offer of employment, or dismissal after being employed.