Clarification from the agency

This vacancy is open to all U.S. Citizens

Videos

As a Deputy Assistant Commissioner and Chief Information Security Officer, you will be responsible for leading and managing the Fiscal Service Information Security Program, with responsibility for the development of information security strategy, policies, and procedures; coordinating and monitoring bureau information security risks and compliance; managing the high value asset (HVA) program; and addressing both government-wide and departmental information security requirements. They will also provide executive leadership and direction to the Fiscal Service in fulfilling its mission of promoting the financial integrity and operational efficiency of the U.S. Government through exceptional accounting, borrowing, collections, payments, and shared services.
Specific duties Include:

• Foster collaboration by working in partnership with Fiscal Service technology and security leadership - including ISS Deputy Assistant Commissioners, Fiscal Service Chief Privacy Officer, and Fiscal Service Chief Risk Officer - and their supporting program offices to develop, maintain, promulgate, and implement information security policies, guidelines, procedures, tools, performance metrics, and services consistent with federal regulations and legislation and industry-leading security practices.
• Develops and deploys a comprehensive strategy and lifecycle framework for effective planning and implementation of the Fiscal Service Information Security Program in alignment with established Treasury policy.
• Promotes IT security across the systems development life cycle by providing a broad range of advisory services on IT security-related issues, which includes performing research into new technologies and the security implications of their use; partnering with program offices to include security controls early on and across the system development life cycle.
• Oversees the delivery of existing information assurance services, such IT security testing and assessment, and introduces new services and solutions that aid in prioritization and the creation of IT security roadmaps.
• Reviews and analyzes bureau IT-investments and activities to identify and assess security requirements to ensure compliance with Information Security policies and guidelines.
• Determines the priorities of the programs, projects, and activities the Fiscal Service Information Security Program undertakes based on management of financial budget and staffing resources, other administrative functions, and procurement/contract opportunities.
• Directs and oversees the Bureau High Value Asset (HVA) Program, in coordination and alignment with the Bureau Critical Infrastructure Protection (CIP) Program.
• Directs and oversees the Bureau's Vulnerability Management Program.
• Provides expert assistance, advice and counsel to the CIO and other program and policy officials regarding the bureau's Information Security Program. Provides authoritative recommendations and solutions to problems and challenges with respect to federal mandates/legislation, risk management, and improvement of information security policy and operational processes.
• Represents the CIO internally and externally, as requested, on matters in assigned areas of responsibility.

Conditions of employment

• Complete a 1-year SES probationary period, unless already completed.
• Complete a Questionnaire for Sensitive Positions, SF-86, for a pre-appointment full-field background investigation. In addition, periodic reinvestigation is required no later than five years after selection and at least every succeeding five years.
• Complete a Declaration for Federal Employment (https://www.opm.gov/forms/pdf_fill/of0306.pdf).
• Complete an Executive Personnel Financial Disclosure Report annually.
• Undergo appropriate tax checks.
• If you are a male applicant born after December 31, 1959, certify that you have registered with the Selective Service System (https://www.sss.gov/) or are exempt from having to so so.
• Have your salary sent to a financial institution of your choice by Direct Deposit / Electronic Funds Transfer.
• Go through a Personal Identity Verification (PIV) process that requires two forms of identification from the Form I-9 (https://www.uscis.gov/i-9).
• Federal law requires verification of the identity and employment eligibility of all new hires in the U.S.
• Obtain and use a Government-issued charge card for business-related travel.
• You may be subject to pre-employment and/or random drug testing.
• You must be a U.S. Citizen or National.

Qualifications

All applicants must meet the qualifications and eligibility requirements by the closing date of the announcement.

As a basic requirement, applicants must demonstrate at least one year of progressively responsible leadership experience that is indicative of senior executive level managerial capability and directly related to the skills and abilities outlined under the Executive Core Qualifications and Mandatory Technical Qualifications. Typically, experience of this nature will have been gained at or above the GS-15 grade level in the Federal service or its equivalent with state or local government, the private sector, or non-governmental organizations. Failure to meet this basic qualification requirement will disqualify the applicant.

Evidence must be provided that clearly demonstrates the applicant has the necessary level of executive potential, skills, abilities, specialized knowledge, and technical qualifications to perform as a SES executive. This evidence must include clear, concise examples that emphasize the applicant's level of responsibilities, scope and complexity of assignments, program accomplishments, policy initiatives, and long-range planning.

Additionally, applicants must demonstrate knowledge and experience with Federal Cyber Regulations (i.e. FISMA) applying them across a decentralized disparate multi-provider ecosystem that supports national critical infrastructure and High Value Assets.

NOTE: Fiscal Service is using a resume-based application method for this position, so you should ensure your qualifications are clearly outlined in your resume. ECQ and MTQ responses are not required.

The best qualified candidates will be determined by assessing experience, education, awards, performance appraisals, and supervisory evaluations for this position. These assessments will be made against the Executive Core Qualifications and Mandatory Technical Qualifications.

EXECUTIVE CORE QUALIFICATIONS (ECQs): The ECQs describe the leadership skills needed to succeed in the SES and provide the focus for OPM certification of executive qualifications.

ECQ 1 - Leading Change - The ability to bring about strategic change, both within and outside the organization to meet organizational goals. Inherent to this ECQ is the ability to establish an organizational vision and to implement it in a continuously changing environment. Competencies: creativity and innovation, external awareness, flexibility, resilience, strategic thinking, vision.

ECQ 2 - Leading People - The ability to lead people toward meeting the organization's vision, mission and goals. Inherent to this ECQ is the ability to provide an inclusive workplace that fosters the development of others, facilitates cooperation and teamwork, and supports constructive resolution of conflicts. Competencies: conflict management, leveraging diversity, developing others, team building.

ECQ 3 - Results Driven - The ability to meet organizational goals and customer expectations. Inherent to this ECQ is the ability to make decisions that produce high-quality results by applying technical knowledge, analyzing problems, and calculating risks. Competencies: accountability, customer service, decisiveness, entrepreneurship, problem solving, technical credibility.

ECQ 4 - Business Acumen - The ability to manage human, financial, and information resources strategically. Competencies: financial management, human capital management, technology management.

ECQ 5 - Building Coalitions - The ability to build coalitions internally and with other Federal agencies, State and local governments, nonprofit and private sector organizations, foreign governments, or international organizations to achieve common goals. Competencies: partnering, influencing/negotiating

Fundamental Competencies - Interpersonal Skills, Oral Communication, Written Communication, Integrity/Honesty, Continual Learning, and Public Service Motivation are cross-cutting and provide the foundation for success in each ECQ.

For each ECQ, it is recommended that you provide at least one example of your qualifications using the challenge, context, action, and result model described on the above website.

Additional information about the ECQs can be found on the OPM SES website at:
http://www.opm.gov/policy-data-oversight/senior-executive-service/reference-materials/guidetosesquals_2012.pdf

MANDATORY TECHNICAL QUALIFICATIONS (MTQs): The following qualifications are required for the incumbent to perform the duties of the position. You must demonstrate all of the MTQs to be rated eligible for this position.

MTQ 1 - Demonstrated professional and executive level technical knowledge and management experience in leading an enterprise wide information security program for a large, multi-stakeholder, geographically dispersed organization, or agency. Experience successfully integrating with a holistic security program that includes physical security, personnel security, fraud, and emergency programs, across numerous shared services, High Value Assets and National Critical Infrastructure.

MTQ 2 - Demonstrated experience in developing information security strategies, plans, and policies that align with recent cybersecurity mandates and regulations, while effectively utilizing risk management frameworks to prioritize their implementation. Experience in successfully executing these strategies and plans in alignment with the technology strategy and vision across a decentralized disparate multi-provider ecosystem that supports national critical infrastructure and High Value Assets.

MTQ3 - Demonstrated experience in developing an information security curriculum, training program, and awareness campaign throughout an organization. Experience in providing role-based learning and training opportunities while engraining information security into the organizational culture.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

The recruitment application process for this position is the RESUME-BASED method. There is no requirement to submit a separate narrative statement specifically addressing the Executive Core Qualifications (ECQs) and Mandatory Technical Qualifications (MTQs) within your application. Evidence of the ECQs and MTQs must be clearly demonstrated in your resume.

We recommend that you emphasize your level of responsibility, the scope and complexity of programs managed, and program accomplishments (including the results of your actions) in your resume.

Initial review of your application will be conducted by a Human Resources Specialist to determine if you meet the eligibility and qualification requirements of this position. Applicants who meet these mandatory requirements will be considered minimally qualified and will be evaluated by a panel of senior executives to determine the best qualified candidates. If you are among the top qualified candidates, your application may be referred to a selecting official for consideration and possible interview.