Serves as the Information Security Architect for the NextGen organization and National Airspace System. Responsible for setting the vision, strategic planning, security architecture and risk model.
Assistant Administrator for NextGen, ANG-1; NAS Systems Engineering & Integration Office, Enterprise Safety & Information Security Division, ANG-B3
Learn more about this agency
If you are selected for this position, you will serve as National Airspace System (NAS) Information Security Architect, responsible for the vision, strategic plan, security architecture and enterprise security risk model for the NextGen organization and the NAS. The Information Security Architect also serves as the liaison between the NAS Chief Enterprise Architect and the information system security community across the FAA.
The Information Security Architect, in close coordination with Information System Security key personnel, advises the FAA Cyber Steering Committee, Authorizing Officials, Chief Information Officer, and Chief Information Security Officer, on a range of security-related issues. Provides expert and authoritative guidance on complex technological issues involving security vulnerability, analysis and reporting, cybersecurity issue resolution, and implementation of new technologies to enhance system security effectiveness.
The Information Security Architect will be responsible for outreach and communications with domestic and international partners and other government agencies, supporting the aviation community to develop new methods and technologies, and promoting information security.
Additional responsibilities include but are not limited to:
Ensures information security requirements needed to protect FAA mission and business functions are adequately documented in the enterprise architecture, including reference models, segment and solution architectures, and the resulting information systems supporting those missions and business processes. The Information Security Architect will work across the organization to develop future research and development plans, working across the organization to ensure coordination and planning.
In addition, the Information Security Architect will work across the organization on the coordination, implementation and allocation of system-specific, hybrid, or common security controls in the as-is and to-be architectures. For example, he/she will examine the implementation of information system boundaries, assess the severity of weaknesses in the enterprise information system, explore risk mitigation approaches, participate in external security audits, and analyze the potential adverse effects of vulnerabilities.
25% or less - The job may require up to 25% travel.