Information Security Systems Manager

GS-14: Applicant must possess at least one (1) year of specialized experience equivalent to the GS-13 grade level. SE is defined as follows: In-depth knowledge of, and experience working with, the SAA process; either as an ISSO, ISSE, SO, PM or other role. Knowledgeable of the Risk Management Framework NIST Special Publication 800-53rev5 Guide for assessing the security controls in Federal Information Systems NIST SP 800-53A. Knowledge of cybersecurity governance environment, as derived from FISMA, and its implementation through NIST, CNSS, IC and other government standards. Experience coordinating, prioritizing and monitoring work, including across multiple projects. Experience in providing guidance and recommendations to leadership on security and engineering projects and initiatives. Desired Skills Desired skills are NOT mandatory and will NOT be utilized to minimally qualify applicants. Desired Skills are: Preferred certification in one or more cybersecurity disciplines (e.g., CISSP, CISM, CCSP, NCSF, etc.). Preferred prior architecture / systems engineering experience. Preferred prior network, cloud system, and application development experience. Experience in communicating orally and in writing. Excellent customer service mindset and reputation.
This position serves as an Information Systems Security Manager (ISSM) in the Information Security Risk Management Unit (ISRMU) in OCIOs Enterprise Information Security Section (EISS). The role of ISRMU is to manage and execute the FBIs Security Assessment and Authorization (SAA) process and ensure that an authorization to operate (ATO) is in place for all FBI IT systems. In ISRMU, each ISSM oversees a portfolio of FBI systems and is supported by a team of contractors.