• Help



    Due to the Pandemic and individual states with different phases of reopening, the selectee’s report date to the official duty station/facility may be delayed until such time as employees are allowed to report to the workplace. The person selected may telework up to the maximum extent possible, up to and including full time, until it is determined by state and Federal officials that employees are allowed to report to the workplace where this position is located, on a regular basis.

    Learn more about this agency


    The Information Security & Privacy Service (AIS) fortifies the security of the FAA's networks and infrastructure. We develop and ensure compliance with IT security and privacy policies and controls. We operate the Security Operations Center (SOC), FAA's 24x7 monitoring and incident response center to detect security threats and lead FAA cyber incident response actions.

    If you are the person selected for this position, you will serve as the Deputy Director of the Information Security and Privacy (IS&P) Service and provide the day to day leadership of multiple critical cybersecurity and privacy areas: Governance, Compliance, and Operations, as well as FAA’s External Stakeholder Engagement and Chief Privacy Offices. You will direct the work of the staff of the IS&P Service, while demonstrating initiative, exercising independent judgment, and using considerable diplomacy in a wide variety of situations. The Deputy Director of the IS&P Service reports to the Director of the IS&P Service, who provides general policy and program direction. You will operate with complete technical independence, direct subordinate staff members and make commitments on your own authority.

    As a senior level supervisor, you will direct the work of subordinate employees and/or managers for multiple organizations and across multiple functions and/or disciplines within a major subdivision. Work includes complex projects/programs based on the objectives of the major subdivision, the LOB/SO, and frequently the FAA. Managerial duties typically affect managers and employees and include: strategic planning; communicating the organization's vision and objectives; setting priorities; assigning tasks and responsibilities; monitoring and evaluating performance of organizational units, managers, and employees; coaching and developing staff and organizational capabilities; approving leave; and taking or approving corrective/disciplinary actions as appropriate.

    Knowledge of budget, human resource management, and other administrative policies and procedures; and a comprehensive understanding of the objectives of the major subdivision, the LOB/SO, and the FAA expected. You are also required to have a thorough understanding of the principles of management and strategic planning, and the ability to integrate the work of multiple organizational units/projects/programs to accomplish mission objectives.

    You will develop and deliver IT security and privacy policy, architecture, standards, best practices, and privacy management for the FAA. You will chair the Cybersecurity Steering Committee group to lead cybersecurity initiatives as requested by the FAA’s Cybersecurity Steering Committee. You will ensure the security of the expanding environment which must be compliant with FAA and federal requirements; providing oversight of day-to-day activities which are intended to mitigate IS&P risks at the technical level, including monitoring, vulnerability management, incident response, security engineering, and business continuity management support; and manage the overall security and privacy process to ensure that decision making is aligned with business priorities.

    In addition, if you are selected for this position duties will include but are not limited to 1) Developing IT security and privacy policy and standard operating procedures. 2) Developing security and privacy awareness training. 3) Providing risk reviews and risk profile management support, collaborating with senior management to develop security architecture. 4) Providing vulnerability assessment analysis, assessment tracking and remediation, compliance reviews, and security audits. 5) Providing the Chief Information Security Officer (CISO) risk determinations recommendations. 6) Building and maintaining large complex cybersecurity budgets.

    Travel Required

    Occasional travel - The job may require travel from time- to-time, but not on a regular basis. The travel may be for training or other work-related duties.

    Supervisory status


    Promotion Potential


This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/609301500. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.