Chief Information Security Officer

The Chief Information Security Officer oversees the development and implementation of GSA's comprehensive cybersecurity strategy, ensuring alignment with agency mission, federal mandates, and emerging threat landscape Provides executive leadership and strategic direction for enterprise-wide cybersecurity transformation, including Zero Trust Architecture implementation, DevSecOps integration, and secure-by-design principles. Serves as the principal advisor to the CIO, Administrator, and senior leadership on cybersecurity risk management, emerging technologies (AI, quantum computing), and innovative security solutions.

Provides broad leadership and direction to ensure effectiveness and efficiency of GSA's enterprise cybersecurity program encompassing cloud, hybrid, and legacy environments across all regions, services, staff offices, and Agency products and related services. The CISO manages and oversees functions to drive optimization of the entire cybersecurity stack and cyber supply chain, ensuring secure integration of modern technologies including low-code/no-code platforms, agile delivery methods, and automated security controls. Provides broad oversight of GSA wide functions to ensure efficiencies in the continuous monitoring, threat detection, and incident response capabilities that enable rapid adaptation to evolving cyber threats.

The CISO champions cybersecurity transformation initiatives that enhance business performance while maintaining security posture, including evaluation and implementation of emerging security technologies. Ensure the success in change management efforts implemented to modernize cybersecurity processes, integrate DevSecOps practices and to ensure the effective implementation of automated security controls throughout the software development lifecycle. Manages high level functions to ensure GSA IT and business teams adopt modern development and cybersecurity best practices that deliver business value faster and more securely. Manages and provides oversight to ensure effectiveness in implementing new prototypes, innovative and transformative cybersecurity tooling, operations and practices., * This position is a Top Secret, Sensitive Compartmented Information (SCI). Appointment to this position requires the selectee to undergo a background investigation and receive favorable adjudication for the GSA security office to grant you a Top Secret SCI national security clearance. Applicants do not need this level of clearance in order to apply for the position. If you are not a GSA employee, the security office must grant the clearance before you are appointed to this position unless a pre-appointment waiver of this requirement is approved.

• This position has been designated under Executive Order 12564 as being subject to random drug screening. If tentatively selected for this position, you may be required to submit to a urinalysis screen for illegal drugs prior to appointment. Appointment will be contingent upon your receiving a negative test result.
• If tentatively selected, you will be required to submit a Declaration for Federal Employment. Male applicants born after December 31, 1959 will be required to complete a certification statement confirming their selective service status.
• Persons selected for their initial appointment to an SES position must have their executive qualifications approved by the Office of Personnel Management before being appointed to the position.
• If selected, you will be required to serve a one-year probationary period unless you have previously successfully completed a one-year probationary period in the Senior Executive Service.
• If selected, you must file a Public Financial Disclosure Report (OGE Form 278) upon appointment in accordance with the Ethics in Government Act of 1978.
• Veteran's preference does not apply to positions in the Senior Executive Service., General Services Administration Office of GSA IT Office of the Chief Information Officer Washington, DC

The 1993 Hatch Act Reform Amendments prohibit oral and written political recommendations for Federal jobs.

NOTICE REGARDING SALARY: GSA has established Pay Tiers within the Governmentwide SES pay band and categorized each SES position in the agency into one of three tiers. This structure is designed to provide a more refined approach to executive compensation, aligning pay levels with the scope, complexity, and impact of each SES role. This is a Tier II SES position. Current SES members whose salary equals or exceeds the maximum advertised salary for this position, will not lose pay upon appointment.

Candidates should be committed to improving the efficiency of the Federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution.

Security clearance Sensitive Compartmented Information

Drug test Yes

Position sensitivity and risk Special-Sensitive (SS)/High Risk

Trust determination process

• Credentialing
• National security

Financial disclosure Yes - Your SES position at GSA will require that you complete a new entrant Public Financial Disclosure Report (OGE Form 278e), which is due within 30 days of appointment, and to complete an annual OGE Form 278e by May 15th each year. You will also be required to file a termination OGE 278e within 30 days of your separation from the SES position., * Demonstrated experience leading enterprise cybersecurity transformation and large-scale cybersecurity implementation including advancement of Dev/Sec/Ops and Zero Trust principles for new and emerging technologies (e.g. AI, quantum), modern technologies (e.g. cloud, low code/no code, open software, agile delivery), and legacy technology, data, infrastructure, and network environments in various stages of modernization.

• Demonstrated experience working with technology and non-tech executives, IT and cybersecurity professionals, and non-technical representatives in government and/or private sector to continuously improve cybersecurity services and products to achieve strategic business goals and enhance business performance.

EXECUTIVE CORE QUALIFICATIONS (ECQs):

1. Commitment to the Rule of Law and the Principles of the American Founding- This core qualification requires a demonstrated knowledge of the American system of government, commitment to uphold the Constitution and the rule of law, and commitment to serve the American people.

2. Driving Efficiency - This core qualification involves the demonstrated ability to strategically and efficiently manage resources, budget effectively, cut wasteful spending, and pursue efficiency through process and technological upgrades.

3. Merit and Competence - This core qualification involves the demonstrated knowledge, ability and technical competence to effectively and reliably produce work that is of exceptional quality.

4. Leading People - This core qualification involves the demonstrated ability to lead and inspire a group towards meeting the organization's vision, mission and goals, and to drive a high-performance, high-accountability culture. This includes, when necessary, the ability to lead people through change and to hold individuals accountable

5. Achieving Results- This core qualification involves the demonstrated ability to achieve both individual and organizational results, and to align results to stated goals from superiors., This job does not have an education qualification requirement.