Chief Information Security Officer (CISO)

Chief Information Security Officer (CISO)

Department: General Services Administration

Location(s): Washington, District of Columbia

Salary Range: $143913 - $187093 Per Year

Job Summary: We are seeking a highly qualified and motivated individual to serve as the Chief Information Security Officer (CISO) and be a proactive member of our team. Location of position: GSA Office of Inspector General 1800 F Street NW Washington, D.C. 20405 We are currently filling one vacancy, but additional vacancies may be filled as needed.

Major Duties:

• The Office of Inspector General (OIG) for the General Services Administration (GSA) is one of the original OIGs established by the Inspector General Act of 1978. The OIGs were created as independent and objective entities within an agency to (a) promote economy, efficiency, and effectiveness in the administration of the agency, and (b) to prevent and detect fraud and abuse in agency programs and operations. The OIGs report to the agency head and Congress through semi-annual and other reports. The GSA OIG operates as an autonomous entity within GSA under a presidentially appointed, Senate confirmed Inspector General who supervises a diverse team of approximately 300 professionals in headquarters' administrative, legal, and operational components and in regional operational offices throughout the country. The GSA OIG is dedicated to protecting the public interest by bringing about positive changes in the performance, accountability, and integrity of GSA programs and operations. Oversight is provided through auditing, inspections and evaluations, and investigations of GSA extensive procurement, real property, and related programs and operations, which primarily support other federal agencies. OIG oversight components report their findings and recommend courses of action to promote efficiency and economy in the GSA's activities. Applicants are encouraged to review the work and accomplishments of the GSA OIG on our website, https://www.gsaig.gov/. The incumbent of this position serves as a Chief Information Security Officer (CISO) and has superior knowledge and skills in the areas of Systems/Network Engineering and Administration and Network/Information Security. This position is located in the Office of Inspector General (OIG), Office of Administration, Information Technology Division (JPM). The incumbent serves as the Chief Information Security Officer (CISO) and is an IT security expert. This position is classified as a Supervisory IT Specialist (Security), and as such, the incumbent supervises the IT security team and assists in the interpretation, implementation, establishment and adherence of all policies related to the Division. The incumbent reports directly to the OIG Chief Information Officer (CIO). The major responsibilities of this position include: Providing technical and authoritative advice on IT security to support staff and communicates to individual team members their assignments, projects, and/or problems to be solved; actionable events, milestones, and/or program issues under review; and, deadlines and timeframes for completion; Participating with the CIO in defining, implementing and structuring security requirements; Establishing and enforcing security parameters for agency wide adoption and use of Artificial Intelligence (AI); Assessing and mitigating security incidents and enforcing protocols to prevent malicious activity from occurring and ensuring business continuity during security incidents; Conducting Authority to Operate (ATO) reviews for the CIO to sign; Enforcing security standards for the entire agency Attending strategies and meetings and providing input on policies, processes and procedures; Monitoring the status and progress of work assignments to ensure that deadlines and schedules are met; Representing the Division in meetings for the purpose of obtaining resources (i.e. computer hardware and software, and other IT equipment required for securing the OIG's infrastructure, travel budget), and securing needed information or decisions from the Director on major work problems and issues that arise; Conducting regular reoccurring IT security project status meetings with stakeholders; and, Developing, maintaining, and forecasting the budget for the IT Security team – to include all expenses related to compensatory time, travel, training needs for future projects, etc.

Qualifications: The GS-14 salary range starts at $143,913 per year. If you are a new federal employee, your starting salary will likely be set at the Step 1 of the grade for which you are selected. To qualify, you must meet the following requirements: Have IT-related experience demonstrating EACH of the four IT Specialist competencies AND one year of specialized experience equivalent to the GS-13 level in the Federal service as described below: IT SPECIALIST COMPETENCY REQUIREMENTS: Attention to Detail - This skill is generally demonstrated by assignments where the applicant keeps abreast of latest technology, information, research, etc., to maintain knowledge in the field of IT security (for example, reads trade journals, participates in professional/technical associations, maintains credentials). Customer Service - This skill is generally demonstrated by assignments where the applicant promotes or develops and maintains good working relationships with key individuals or groups. Oral Communication - This skill is generally demonstrated by assignments where the applicant serves on panels, committees, or task forces as a representative for the organization on issues pertaining to IT security. Problem Solving - This skill is generally demonstrated by assignments where the applicant monitors current trends or events in order to assess organizational needs and formulate solutions to complex IT security issues. SPECIALIZED EXPERIENCE REQUIREMENTS: Specialized experience is: Leading teams and/or supervising others in work relating to systems engineering with Windows servers, Storage Area Networking, Virtualization, Routing and Switching, Databases, Firewalls, and Virtual Private Networking. Providing expert technical advice, guidance, and recommendations to management and other technical specialists on critical IT issues - including information security. Experience with Zero Trust Architecture (ZTA) Experience with research, validation, and approval of Large Language Models (LLMs) - and other AI models - for use within an organization. Applying security requirements such as the Federal Information Security Management Act of 2002 (FISMA), Federal Risk and Authorization Management Program (FedRAMP), NIST 800-53, and other applicable federal requirements for assessment, authorization, and continuous monitoring. Interpreting and applying policies, procedures, and strategies that govern the planning and delivery of IT services. Managing network scans, log reviews, IDS configurations, and AV/Malware flags Experience with security analysis toolsets, information security concepts, principles and practices Configuring and managing firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices at an enterprise level. It is preferred that you have: a security-based certification such as CISM (ISACA), CISA(ISACA),CISSP(ISC2), CEH (EC-Council), GAIC (Sans), Security+ (CompTIA) or other comparable certification. Please list any/all certifications in your resume and be prepared to describe how they are comparable/relevant to those listed above and/or the position being sought.

How to Apply: Submit a complete online application including any required documents prior to 11:59 pm Eastern Time on the closing date of the announcement. You can modify or complete your application any time before the deadline. Simply return to USAJOBS, select the vacancy, and update your application. For more detailed instructions on how to apply, click here: Apply for a GSA Job. If you are having issues applying to this announcement, you should switch to a different browser, network or device. Note: Your firewall may block your transfer from USAJOBS to your GSA application. To begin, click the Apply Online button on the vacancy announcement. Sign in or register on USAJobs and select a resume and documents to include in your application. Resumes exceeding two pages will not be accepted by USAJOBS and will prevent your application from moving forward in the hiring process. Please see Required Documents for additional details. Once you have clicked Apply for this position now, you will be taken to the GSA site to complete the application process. Click the Apply To This Vacancy and complete all steps in the application process until the Confirmation indicates your application is complete. If you click Return to USAJobs or get timed out prior to receiving confirmation, your application will not be submitted and cannot be considered for this job. Note: Review the REQUIRED DOCUMENTS section of this announcement to determine which apply to you and must be submitted online. You may choose one or more of the following options to submit your document(s): Upload (from your computer) or USAJOBS (click the "USAJOBS" link to complete the transfer process). Need Assistance? Questions or issues completing an application and/or submitting documentation - contact mgshelp@monster.com or 1-866-656-6831 Monday-Friday 7AM - 7PM EST, except for Federal holidays Specific questions on the position - contact the HR representative (Monday-Friday during normal business hours) listed on the announcement, prior to the application deadline You must receive HR approval before deviating from these instructions. Be sure to APPLY EARLY as most assessments must be completed fully and submitted before the announcement closing.

Application Deadline: 2026-03-17