Deputy Chief Information Security Officer

Deputy Chief Information Security Officer

Department: Department of Commerce

Location(s): Boulder, Colorado, Gaithersburg, Maryland

Salary Range: $164956 - $197200 Per Year

Job Summary: The Department of Commerce ranked top 5 in the 2024 Best Places to Work in the Federal Government amongst large agencies for the 12th year in a row! The ranking showcases the Department's continued commitment to increasing our employee engagement, employee satisfaction, and positive perceptions. Come join our team! The Information Technology Security and Networking Division is looking for a subject matter expert in the management of IT Security.

Major Duties:

• This notice is issued under direct-hire authority to recruit new talent to occupations for which NIST has a severe shortage of candidates. The National Institute of Standards and Technology is seeking a Deputy Chief Information Security Officer (CISO) to be a supervisor and deputy lead of the IT Security and Privacy Program. Come work in an energetic, lively, and collegial atmosphere on a wide range of complex, fast-paced, challenging matters. This role will be located at either our Gaithersburg, MD (Headquarters) or Boulder, CO offices and will report to the Chief Information Security Officer (CISO). In this role you will: Work closely with and advise the CISO, NIST executive leadership on all matters related to the information security program and cybersecurity operations. Be responsible for coordinating with the CISO on the implementation, optimization, and delivery of our comprehensive information security strategy, aligning our data and technology standards. Guide and assist with the development and implementation of a security program, facilitate information security governance, advise the CISO on security direction and resource investments, and design and align appropriate policies with respect to information security. Continuously assess and develop the cybersecurity landscape, act as a change agent, and help to lead information security resilience, protecting all data and technology assets.

Qualifications: Basic Requirements: For all positions, individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. 1. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. 2. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. 3. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. 4. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Specialized Experience: In addition to the basic requirements, applicants must have one year (52 weeks) of specialized experience equivalent to at least the GS-14 level (ZP-IV at NIST). Specialized experience is defined as: The management of IT services; IT security; Federal IT and privacy regulations, such as (NIST Special Publication Guidance, FISMA, Assessment and Authorization, Privacy, OMB A-130, System Development Lifecycle), and supervision and management. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. The qualification requirements in this vacancy announcement are based on the U.S. Office of Personnel Management (OPM) Qualification Standards Handbook. If requesting reconsideration of your qualification determination, please refer to the following site: Applicant Reconsideration

How to Apply: Please read the entire announcement and all the instructions before you begin an application. To apply and be considered for this position, you must complete all required questionnaires, assessments, and required documentation as specified in the How to Apply and Required Documents section. The complete application package must be submitted by 11:59 PM (ET) on the closing date of the announcement to receive consideration. The application process is as follows: Click the Apply Online button. Answer the questions presented in the application and attach all necessary supporting documentation. Click the Submit Application button prior to 11:59 PM (ET) on the announcement closing date. As part of the application process, you will be asked to respond to four narrative questions. While your responses to these questions is not required and will not be scored, we encourage you to thoughtfully address each question. You will be asked to certify that you are using your own words and did not use a consultant or artificial intelligence (AI) such as a large language model (LLM) like ChatGPT or Copilot. Once your application has been submitted, you will receive a confirmation notification by email. The Human Resources Office will evaluate your application to determine your eligibility for the position. After the evaluation is complete, you will receive another notification regarding the status of your application. To update your application, including supporting documentation: During the announcement open period, return to your USAJOBS account, find your application record, and click Edit my application. This option will no longer be available once the announcement has closed. To view the announcement status or your application status: Click on this: USAJOBS Help Center - How to see your application and job status Your application status page is where you can view your application status, USA Hire assessment completion status, and review your notifications sent by the hiring agency regarding your application. Need help applying? If you are experiencing any difficulties with the online application process (anything after you have clicked the 'Apply Online' button), please contact the Agency Contact listed on this announcement between regular business hours (8:00 a.m. - 4:00 p.m. ET). If you receive any kind of error message, please be ready to provide a screenshot or, at a minimum, the error message text and number. We will provide you with a technical support number for further assistance if necessary. If you are having trouble with USAJOBS (searching for jobs, account password/profile issues, or Resume Builder), please visit the USAJOBS USAJOBS Help Center - How to.... We regret that we are unable to support any issues with USAJOBS, as this service is not maintained by the NIST. If you are experiencing a significant hardship that hinders your ability to apply online, please contact the Agency Contact listed on this announcement prior to the vacancy closing date and during regular business hours to discuss your situation.

Application Deadline: 2026-03-17