Chief Information Security Officer
Washington DC, or Durham, NC
About us
The U.S. EPA protects human health and the environment by producing science-backed regulations, enforcing those regulations, and producing reports to congress and the public through a rigorous, research based approach to environmental study.
The organization is mostly environmental engineers, scientists, and support staff working at over 60 offices and labs across the US. The kinds of IT challenges that the organization faces includes working with petabytes of research data, connecting IoT devices, developing infrastructure to support collaboration across staff and outside universities and other agencies, and onboarding cloud services safely without opening up the agency to excessive security risk.
This role
This role is officially titled "Director, Office of Information Security and Privacy". Duties include:
- Managing the Agency’s compliance with the IT security provisions of FISMA, the Computer Security Act, the Privacy Act, the Clinger-Cohen Act, OMB Circular A-130 and other relevant Federal legislation, directives, standards and guidelines.
- Developing and implementing Agency-wide plans and programs for IT security and privacy.
- Developing and implementing IT security policies, procedures and best practices for threat and risk assessment, planning, risk management, program management, training, evaluation and communication with senior management.
- Serving as a principal Agency focal point for IT security audits and evaluations conducted by the Office of Inspector General, the Government Accountability Office, Congress and other oversight organizations.
- Reporting and mitigating incidents that impair data and infrastructure security.
- Serving as the Agency’s Chief Information Security Officer.
Requirements and Notices
This advertisement was unofficially published by a third party and the US EPA cannot be held responsible for its contents or any omissions or errors of the job posting. The US is an equal opportunity employer. Please see the officially posted job listing on usajobs.gov for important requirements, restrictions, and notices.
Tags: Audits Cloud Compliance FISMA Privacy Risk assessment Risk management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs