Clarification from the agency

All U.S. Citizens - Current Career United States Postal Service Office of Inspector General, United States Postal Service and United States Postal Inspection Service will not be considered or selected from this vacancy announcement.

Videos

Candidates will be evaluated on the skills that they possess that are directly related to the duties of the position and the experience, education and training that indicate the applicant's ability to acquire the particular knowledge and skills needed to perform the duties of the position. Only those candidates who meet all qualification and eligibility requirements and who submit the required information by 11:59 PM EST on 11/25/2022 will be considered.

The USPS OIG uses a Pay Banding system, which is equivalent to the Federal GS scale. Grade and salary determinations will be made based upon a candidate's education and professional experience.

This position is being advertised at the Director Band level, equivalent to a GS-15. The salary range for this position is $148,484.00 - $176,300.00. The salary figures include locality pay.

Please note that the duties and responsibilities associated with this position may vary based upon the agency's needs at the time of hire. The following description of major duties and responsibilities is only intended to give applicants a general overview of the expectations.

Responsibilities include:

• Serving as the Chief Information Security Officer (CISO) representing the Office of Inspector General (OIG), as required.
• Developing, implementing, and monitoring a strategic, comprehensive enterprise information security and IT risk management program.
• Working directly with OCIO and other agency components to facilitate risk assessment and risk management processes.
• Developing and enhancing an information security risk management framework.
• Developing required documentation (e.g., policies, processes, procedures, Information Security Guides, system security plans, etc.), as needed.
• Understanding and interacting with OCIO and other agency components to ensure the consistent application of policies and standards across all technology projects, systems, and services.
• Providing leadership to the enterprise's information security team.
• Partnering with stakeholders across the agency to raise awareness of risk management concerns.
• Assisting with the overall enterprise technology planning, providing a current knowledge and future vision of technology and systems.
• Planning and assigning work; collaborating with peers and subordinates to assure effective advisory services; and ensuring continuous progress toward strategic and operational goals.
• Providing strategic guidance, direction and oversight for agency-wide Information Technology Security spending and assisting with agency-wide Information Technology Security acquisitions.
• Identifying security risks and issues faced by the organization and implement operational strategies that balance both perceived and real threats to the organization's mission.
• Providing day-to-day support for all security disciplines aligned to best practices for information systems security organizations, and ensure compliance by the entire workforce comprised of staff employees, contractors, consultants, interns, etc.
• Investigating and providing initial reporting on all security incidents/violations affecting the OIG.
• Fully integrating security awareness and best-practices into all aspects of the OIG's operations and programs.

Conditions of employment

• Must be a U.S. citizen
• Must be able to pass a drug screening and medical assessment questionnaire.
• Must be able to pass a background investigation
• Must be able to obtain and maintain Top-Secret security clearance
• Must be able to obtain and maintain a government-issued credit card
• May be required to successfully complete a 12-month probationary period

Qualifications

MINIMUM QUALIFICATIONS

You must meet ALL of the minimum qualifications listed below.

• Bachelor's Degree from an accredited college or university

AND

• Must have at least eight (8) years of professional experience in risk management, information security, and information technology (IT) jobs, to include planning and researching complex information security issues, defining, and assessing security controls, and managing large IT projects and programs.

AND

• Must have at least one (1) year of specialized experience equivalent to the next lower grade level (GS-14) in developing and managing information technology security programs.

DESIRABLE QUALIFICATIONS

• Professional certification(s) and/or graduate degree(s)/certificate(s)
• Knowledge of the mission and operation of an Office of Inspector General

EVALUATION FACTORS
You must have the experience, knowledge and skills as listed in EACH of the evaluation factors. Failure to demonstrate that you meet all of the evaluation factor requirements as listed below will result in a score of zero (0); an ineligible status, and you will not be referred for further consideration. Include your major accomplishments relevant to the position requirements in your resume.

• Demonstrated knowledge of and experience with laws and regulations regarding information technology systems and security, information security best practices and common information security management frameworks, such as FISMA, NIST, CIS, and ISO 27001.
• Demonstrated knowledge of the system authorization process and demonstrated experience conducting security assessments.
• Demonstrated experience with selecting, implementing, assessing, and monitoring security controls in on-premises, cloud-based, and hybrid environments.
• Demonstrated experience in developing system security plans and information security policies, procedures, processes, directives, and related guidance.
• Demonstrated skill in leading teams; planning work to be accomplished by subordinates; setting priorities; mentoring staff; evaluating performance; effecting minor disciplinary actions; and identifying developmental and training needs.
• Demonstrated experience using project management techniques in collaborating with senior leaders, colleagues, stakeholders, and customers to develop projects and run programs.
• Demonstrated interpersonal skills and the ability to communicate ideas and strategic issues clearly and concisely, both orally and in writing.

You will no longer be considered for this position if you receive a zero (0) rating on any evaluation factor.

Failure to demonstrate that you meet all evaluation factor requirements will result in a score of zero (0). Upon receipt of a zero score, you will be deemed "not minimally qualified," and you will not be referred for further consideration.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

The Human Resources Office will review your resume and supporting documentation to ensure that you meet the minimum qualifications required for this position. You will no longer be considered for this position if you: receive a zero (0) rating on any evaluation factor; fail to attach all required documentation; if your application materials indicate that you are not minimally-qualified for this position; or if you fail to qualify on the interview. Only the top-rated candidates will be referred to a review official or the selecting official for further consideration. Top-rated applicants may be required to participate in an interview. Your rating may be further adjusted or rated as ineligible by the review official or the selecting official based on your interview performance. Once all applicant scores are finalized, the selecting official will make a final decision. NOTE: If you receive a zero (0) rating on any evaluation factor or on the interview, you will be considered NOT MINIMALLY QUALIFIED for the position and rated ineligible.