Clarification from the agency

Open to current and former Federal employees with competitive or excepted status; and all U.S. Citizens. Former members of the Peace Corps may be considered for ODNI employment only if five full years have elapsed since separation from the Peace Corps.

Major Duties and Responsibilities:

The Intelligence Community (IC) Chief Information Office is responsible for advancing the Intelligence Community's mission by driving secure collaboration, integration, and information sharing; identifying and addressing information enterprise risks; and providing strategic leadership and oversight of the Intelligence Community's enterprise architecture and enterprise information technology. The ODNI CIO provides leadership, guidance, assistance, and oversight for critical IT systems and activity, to enable all ODNI components to effectively and efficiently execute their statutory and other mandated responsibilities.

Major Duties and Responsibilities (MDRs)

Performs duties as the Chief Information Security Officer (CISO) for the ODNI CIO as well as a Delegated Authorization Official (DAO) for ODNI IT systems. Responsible for all aspects of the ODNI's Cybersecurity Program (CSP) to include strategic planning and implementation of cybersecurity processes in accordance with federal law, Committee for National Security Systems policy, and Intelligence Community (IC) policy.

Collaborate with the Intelligence Community Chief Information Security Officer (IC CISO) to develop and implement comprehensive cybersecurity policies and strategies that enhance the security posture of the ODNI and the broader Intelligence Community (IC). This includes fostering partnerships, sharing best practices, and aligning ODNI initiatives with IC-wide cybersecurity objectives to ensure a unified approach to threat mitigation and risk management across all intelligence operations.

Lead Zero Trust Architecture integration activities across ODNI, relevant IC elements, and Services of Common Concern while providing oversight of near-term and long-term investments.

Provide technical oversight for the implementation of Zero Trust Architecture, collaborating across IC, ODNI, COO, and ODNI CIO to ensure effective integration and adherence to technical requirements for system design and operations that meet IC-mandated security levels.

Ensure programmatic rigor for deliverables, investment plans, and risks for ODNI's Zero Trust Architecture program are clearly understood, supported, and defensible by ODNI and IC CIO Executive Leadership.

Lead the vulnerability management, cyber security operations, and the security assessments teams, driving the development and execution of robust vulnerability assessment strategies and security evaluation processes. This role includes overseeing the identification, analysis, and remediation of security vulnerabilities, ensuring compliance with federal cybersecurity standards, and enhancing the overall security framework to protect ODNI assets and data against emerging threats. Foster a culture of proactive risk management and continuous improvement within the divisions to strengthen the agency's cybersecurity posture.

Provides guidance and governance for the cybersecurity of all ODNI systems while ensuring the proper monitoring and safeguarding of ODNI data.

The DNI CISO ensures the confidentiality, integrity and availability of ODNI systems via the ODNI ICD-503 implementation of the NIST Risk Management Framework.

Ensures compliance with applicable federal and IC information assurance regulations, statutes and mandates by continuously monitoring and assessing the security of ODNI systems.

Oversees the effective integration and interoperability of disparate cybersecurity capabilities developed by separate service providers. Represent ODNI CIO at Federal, CNSS, and IC and forums where cybersecurity and Information Technology intersect.

Collaborate directly with senior security managers charged with developing security guidelines for the IC.

Collaborate across IC, ODNI, COO, and ODNI CIO for the implementation of Zero Trust Architecture in order to achieve IC mandated levels.

Effectively leads a team of professional staff and assess performance, collaborate and oversee goal setting, and provide feedback on personal development.

Demonstrated ability to deliver comprehensive briefings that convey complex concepts and/or technical information regarding cybersecurity issues clearly and concisely and in a manner that is appropriate for all audiences.

Conditions of employment

• Must be a U.S. Citizen residing in the United States
• Appointment is subject to a suitability or fitness determination, as determined by a completed background investigation.
• Must be able to obtain and maintain a Top Secret security clearance based on an SBI with eligibility for sensitive compartmented information (SCI)
• Male applicants born after December 31, 1959, must complete a Pre-Employment Certification Statement for Selective Service Registration.
• A two-year trial period is required for all new permanent appointments to the ODNI.

Qualifications

Mandatory Requirements:

Superior leadership and management skills and demonstrated experience leading a highly diverse and skilled workforce as well as mentoring junior officers.

Superior interpersonal, organizational, and problem-solving skills, including a demonstrated ability to work effectively both independently and in a team/collaborative.

Expert knowledge of ODNI's diverse information technology infrastructure including operating systems (e.g. Windows, Linux), multi-cloud deployments (e.g. AWS, Azure, Google, Oracle), major application systems and network architecture.

Expert knowledge and experience with the NIST Cybersecurity Framework, NIST Risk Management Framework, CNSS-1253 and ICD-503.

Superior ability to balance responsibilities among project activities; ability to manage transitions effectively from task to task, adapting to varying customer needs.

Superior ability to communicate, both verbally and in writing, complex information in a clear, concise manner that is targeted to and meets the needs of diverse audiences with different perspectives and objectives.

Superior ability to establish regular contact with high-level internal and external resources and customers, seeking and providing information on cybersecurity programs, process implantation and risks.

Bachelors / Advanced degree in cybersecurity, computer science, mathematics, computer engineering, Information Technology Management or other technical field or equivalent verifiable work experience.

Possess experience and technical knowledge of NIST Special Publications 800-207 and 800-53, FISMA, OMB Memorandum M-19-17, CNSS Policy No. 22, ICD 503, DoD Zero Trust Framework, NIST Cybersecurity Framework, and CIO Council Zero Trust Architecture Guidance, to implement and manage Zero Trust Architecture in federal information systems and organizations.

Desired Requirements:

CISSP, Security+, or similar cybersecurity related certification.

Experience in cyber and IT policy development and implementation.

How you will be evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

You will be evaluated for this job based on how well you meet the qualifications above.

You must submit the supporting documents listed under the required documents section of this announcement. We will review your resume and supporting documentation to ensure you meet the basic qualification requirements. If you are among the best qualified, you may be referred to the hiring manager for consideration and may be called for an interview. w.

A complete application package must include:

a. RESUME: Applicants are encouraged to carefully review the vacancy announcement, particularly the MDRs, and construct their resume to highlight their most significant experience and qualifications relevant to this job opportunity. You must ensure the resume contains all of the required information and you organize it so we can associate the following information for each experience/position: Job title; Name of employer; Beginning and ending dates of employment (month/day/year format); Hours worked per week. We will assume full-time unless otherwise stated. Detailed description of job duties, accomplishments, related skills, and responsibilities to include any supervisory/managerial responsibilities and number of staff supervised (if applicable) and; Series and grade or equivalent (if a federal position).

b. POSITION NUMBER: Reference the announcement number in the subject line on each document submitted.

c. COVER LETTER: Applicants must submit a professional narrative as a supplement to the resume to elaborate on their qualifications and previous work performed.

d. CURRENT SF-50: Federal Government employees must provide your official most recent SF-50 (i.e., dated within the last 52 weeks from the closing date of this vacancy announcement.) SF-50, "Notification of Personnel Action" is used to verify to verify current federal status, position, title, grade, and organization of record. If your SF-50(s) does not provide the information needed to make a final determination for qualification, you will be found ineligible for the position.


Failure to submit any of the above-mentioned required documents may result in loss of consideration due to an incomplete application package. It is your responsibility to ensure all required documents have been submitted.

Next steps