Skip to main content
U.S. flag
 

Summary

This position is located in the Cybersecurity Group within the Office of the Chief Information Officer (OCIO), Office of the Managing Director(OMD), Federal Communications Commission (FCC), located in Washington, DC. 

RELOCATION EXPENSES WILL NOT BE PAID.  

THIS VACANCY ANNOUNCEMENT MAY BE USED TO FILL ADDITIONAL POSITIONS WITHIN 90 DAYS.

Overview

Help
Accepting applications
Posted today · Apply by 07/10/26
Due by 11:59 p.m. ET on July 10, 2026
Location
1 vacancy in the following location:
Work site options
Telework eligible
Yes—as determined by the agency policy.
Remote job
No
Relocation expenses reimbursed
No
Salary
$169,279 - $197,200 per year
Pay scale & grade
GS 15
Promotion potential
15 - Position is at the Full Performance Level.
Pay scale and grade determines the salary of the job.
Work schedule
Full-time - This is a full-time position. Work schedules, including telework, are at the discretion of the supervisor, consistent with agency policy.
Travel Required
Occasional travel - Occasional Travel May be required.
Appointment type
Permanent
Occupations and job series
Supervisory status
Yes
Federal service type
This job is in the Competitive Service
Represented by a union
No
Drug test
Yes
Security clearance
Top Secret
Position sensitivity and risk
Critical-Sensitive (CS)/High Risk
Jobs require a background check and some require a security clearance. The type depends on the job.
Background check type
Financial disclosure required
Yes - Financial disclosure agreement is required.
Some jobs require financial disclosure to identify conflicts of interests.
Announcement number
DHA-OMD-2026-001
Control number
875157300

This job is open to

Help

Clarification from the agency

OPEN TO THE PUBLIC - Open to all U.S. Citizens. Individuals who typically apply for positions under other authorities may also apply competitively to this position. (e.g. VRA, Schedule A, Peace Corps, Students, Recent Graduates, Military Spouses, National Guard, Indian Preference, Land Management, Family of Overseas Employees, Federal Employees, Agency Employees, ICTAP) Non-citizens may be eligible for this excepted service position under certain circumstances.

Duties

Help

The incumbent serves as the Chief Information Security Officer (CISO), reporting directly to the Chief Information Officer (CIO) in the OCIO organization.  As the CISO and Group Lead for Cybersecurity and Information Assurance, the incumbent provides executive leadership, strategy, technical direction, and authority for all information security functions across all 19 FCC bureaus and offices to include:

  • Provides direct oversight, technical leadership, and administrative management of four critical sub-unit leads: the Lead Security Operations Manager, the Lead for Governance, Risk, and Compliance (GRC), the Lead Security Engineer, and the Lead for Incident Response.
  • Establishes, maintains, and enforces the FCC's Enterprise Information Security Strategy, including the integration of emerging technology risk domains such as artificial intelligence (AI) and machine learning (ML) systems into the agency's overall security posture.
  • Serves as the principal, authoritative advisor to the CIO, Managing Director, and Chairman on all matters concerning cybersecurity risk, systemic vulnerabilities, threat landscapes, AI-related security risks, and regulatory security compliance.
  • Represents the FCC on interagency cybersecurity councils, including OMB, CISA, and White House cyber roundtables, contributing subject-matter expertise on AI governance, Zero Trust implementation, and vulnerability management best practices.
  • Synthesizes complex, technical risk data, including vulnerability scan results, threat intelligence, and identity/access risk indicators, into executive-level decision memos and risk-acceptance briefs for agency leadership.
  • Provides ultimate oversight for the FCC's 24/7/365 Security Operations Center (SOC), including oversight of SIEM platforms (e.g., Splunk) for continuous monitoring, log correlation, and threat detection across enterprise systems.
  • Directs the agency's enterprise vulnerability management program, ensuring timely identification, prioritization, and remediation of vulnerabilities to continuously reduce the agency's attack surface.
  • Oversees enterprise identity and access management (IAM) programs, including administration and governance of platforms such as Okta, to ensure secure authentication, privileged access controls, and alignment with ICAM and Zero Trust Architecture principles.
  • Establishes and enforces AI security governance protocols, including risk assessments for AI/ML system deployments, safeguards against adversarial machine learning and data poisoning, and oversight of third-party AI tool usage in alignment with NIST AI RMF and applicable OMB guidance.
  • Formulates and issues agency-wide Information Security Policies, Handbooks, and Rules of Behavior in strict alignment with FISMA, NIST guidelines (including NIST SP 800-53 and the NIST AI Risk Management Framework), and applicable Executive Orders.
  • Leads the development and execution of the cybersecurity group's annual operating budget, prioritizing investments — including tooling for vulnerability management, SIEM, IAM, and AI security, using Capital Planning and Investment Control (CPIC) protocols to balance defense expenditures against mission requirements.

Requirements

Help

Conditions of employment

  • US Citizenship.
  • Suitable for employment as determined by a background investigation.
  • Serve a probationary period of one year, if applicable.
  • Males born after 12/31/59 must be registered with Selective Service.
  • Financial disclosure statement may be required upon assuming the position.
  • Resume must not exceed two pages and must meet resume format criteria.
  • Drug Testing Required.
  • Suitable for employment as determined by a background investigation.
  • Security Clearance Required

Please note your resume must thoroughly support your responses to the vacancy questions.  Your resume is an integral part of the process for determining if you meet the basic qualifications of the position and determining if you are to be among the best qualified.

Qualifications

Interested candidates should be passionate about the ideals of our American republic, committed to upholding the rule of law and the U.S. Constitution, and committed to improving the efficiency of the Federal government. Hiring decisions will not be based on race, sex, color, religion, or national origin.

Applicants must meet eligibility and qualification requirements by the closing date of this announcement.  Time in grade restrictions do not apply to Direct Hire procedures.

SME REVIEW

Individuals must have IT-related experience demonstrating each of the competencies listed below. SME's will be conducting a scored structured resume review to determine if candidate's resumes demonstrate all required competencies as outlined below. To be eligible for referral to the selecting official, candidates must receive a score of at least 75.56.

  1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail.
  2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services.
  3. Decision Making - Makes sound, well-informed, and objective decisions; perceives the impact and implications of decisions; commits to action, even in uncertain situations, to accomplish organizational goals; causes change.
  4. Information Management - Identifies a need for and knows where or how to gather information; organizes and maintains information or information management systems.
  5. Interpersonal Skills - Shows understanding, friendliness, courtesy, tact, empathy, concern, and politeness to others; develops and maintains effective relationships with others; may include effectively dealing with individuals who are difficult, hostile, or distressed; relates well to people from varied backgrounds and different situations
  6. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately.
  7. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations
  8. Teamwork - Encourages and facilitates cooperation, pride, trust, and group identity; fosters commitment and team spirit; works with others to achieve goals.
  9. Technical Competence – Uses knowledge that is acquired through formal training or on-the-job experience to perform one's job; works with, understands, and evaluates technical information related to the job; advises others on technical issues. 
  10. Cyber-Expert knowledge of Federal cyber and cybersecurity policy, procedures, and guidelines, cyber and cybersecurity concepts, terms, and technical aspects.
  11. Advice-Expert ability to provide advice, guidance, and recommendations to senior management on critical policy issues; make decisions or recommendations that significantly influence important Commission IT and Cybersecurity policies or programs.
  12. IT Principles-Skill in applying advanced IT principles, concepts, methods, standards, and practices sufficient to accomplish assignments such as develop and interpret policies, procedures, and strategies governing the planning and delivery of IT services throughout the agency.

AND

GS-15

In order to be deemed as qualified, candidates must have one year of specialized experience which is equivalent to the GS-14 level in the Federal service. Specialized experience is defined as follows:

• Demonstrated experience implementing and maintaining compliance with FISMA, FedRAMP, and NIST Risk Management Framework (RMF), including NIST SP 800-37, 800-53, and 800-171
• Experience managing Authorization to Operate (ATO) processes, including Security Assessment and Authorization (SA&A) packages.
• Experience with CMMC (Cybersecurity Maturity Model Certification) requirements, if applicable to the agency.
• Experience managing Plans of Action and Milestones (POA&Ms) and reporting to CISA/OMB.
• Experience working with Continuous Diagnostics and Mitigation (CDM) program requirements.
• Experience developing or implementing AI governance frameworks aligned with NIST AI Risk Management Framework (AI RMF) and OMB M-24-10.
• Experience overseeing Security Operations Center (SOC) functions, including detection engineering and incident triage.
• Experience leading enterprise vulnerability management programs, including use of tools such as Tenable.
• Experience reducing organizational attack surface through patch management, configuration hardening, and risk-based prioritization.
• Experience implementing Zero Trust Architecture (ZTA) principles across network, identity, and data layers.
• Experience securing FedRAMP-authorized cloud environments (AWS GovCloud, Azure Government, or similar).
• Experience with cloud security posture management (CSPM) and container/Kubernetes security.
• Experience coordinating with CISA, US-CERT, and other federal partners on incident reporting and response.
• Experience developing and testing incident response plans, tabletop exercises, and continuity of operations (COOP) planning.
• Experience leading cross-functional security teams and managing federal IT security budgets.
• Experience developing agency/company-wide cybersecurity strategy, policy, and workforce training programs.
• Experience presenting risk posture and compliance status to agency leadership, Inspectors General, or GAO auditors or similar.

PART-TIME OR UNPAID EXPERIENCE: Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

Any/all educational requirements (if applicable) are listed and outlined within the "Qualifications" section.

Additional information

EEO Policy Statement

Reasonable Accommodation Policy Statement

Veterans Information

Legal and Regulatory Guidance

Other:
-  Before hiring, an agency will ask you to complete a Declaration for Federal Employment to determine your suitability for Federal employment and to authorize a background investigation.  The agency will also ask you to sign and certify the accuracy of all the information in your application.  If you make a false statement in any part of your application, you may not be hired; you may be fired after you begin work; or you may be fined or jailed. If you are a male over age 18 who was born after December 31, 1959, you must have registered with the Selective Service System (or have an exemption) to be eligible for a Federal job.

-  If applicable, you will be required to serve a trial period of one year.

-  In order for you to be employed at the FCC, there are certain Commission and Federal laws governing the financial interests of you and members of your immediate family. If selected for the position, you must submit a financial disclosure statement upon assuming the position.

Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

As this position is being advertised under DEU and Merit Promotion hiring procedures, applicants will be rated on the extent and quality of experience and education relevant to the duties of the position using the hiring procedures outlined below.

Optional Four Essay Questions

At the time of application, applicants have the option of answering the following four short, free-response essay questions.

1. How has your commitment to the Constitution and the founding principles of the United States inspired you to pursue this role within the Federal government? Provide a concrete example from professional, academic, or personal experience.
2. In this role, how would you use your skills and experience to improve government efficiency and effectiveness? Provide specific examples where you improved processes, reduced costs, or improved outcomes.
3. How would you help advance the President’s Executive Orders and policy priorities in this role? Identify one or two relevant Executive Orders or policy initiatives that are significant to you, and explain how you would help implement them if hired.
4. How has a strong work ethic contributed to your professional, academic or personal achievements? Provide one or two specific examples, and explain how those qualities would enable you to serve effectively in this position.

Applicants will be required to certify that they are using their own words, and did not use a consultant or AI (such as a large language model [LLM]). The responses to each question cannot exceed 200 words per question.


You may preview questions for this vacancy.

Federal Communications Commission

Applicants are required to take an online skills-based assessment consistent with the OPM Merit Hiring Plan and the Chance to Compete Act. For non-supervisory positions, the estimated time to complete the assessment is approximately 1 hour. For supervisory positions the estimated time to complete the assessment is approximately 1 ½ hours.

Please review all instructions prior to beginning the assessment. You will have the opportunity through the assessment module to request a testing accommodation before beginning the assessments should you have a disability covered under the Rehabilitation Act of 1973 as amended. The FCC will review such requests and will contact you directly, if needed.  If you have questions about the accommodations process or a request, please contact the HR Specialist listed on the announcement. The external assessment meets or exceeds the requirements of Section 508 of the Rehabilitation Act.

Once the announcement has closed and the qualifications review process has been completed, the best-qualified candidates will be referred to the hiring official for further consideration and possible interview.  You will be notified of the outcome.

Agency contact information

Nichole Anderson
Phone
202-418-1891
Email
Nichole.Anderson@fcc.gov
Address
Federal Communications Commission
45 L Street NE
Washington, District of Columbia 20554
United States

Your session is about to expire!

Your USAJOBS session will expire due to inactivity in 8 minutes. Any unsaved data will be lost if you allow the session to expire. Click the button below to continue your session.