
Supervisory IT Specialist (INFOSEC)
Federal Communications CommissionThis position is located in the Cybersecurity Group within the Office of the Chief Information Officer (OCIO), Office of the Managing Director(OMD), Federal Communications Commission (FCC), located in Washington, DC.
RELOCATION EXPENSES WILL NOT BE PAID. THIS VACANCY ANNOUNCEMENT MAY BE USED TO FILL ADDITIONAL POSITIONS WITHIN 90
DAYS.The incumbent serves as the Chief Information Security Officer (CISO), reporting directly to the Chief Information Officer (CIO) in the OCIO organization. As the CISO and Group Lead for Cybersecurity and Information Assurance, the incumbent provides executive leadership, strategy, technical direction, and authority for all information security functions across all 19 FCC bureaus and offices to include: Provides direct oversight, technical leadership, and administrative management of four critical sub-unit leads: the Lead Security Operations Manager, the Lead for Governance, Risk, and Compliance (GRC), the Lead Security Engineer, and the Lead for Incident Response. Establishes, maintains, and enforces the FCC's Enterprise Information Security Strategy, including the integration of emerging technology risk domains such as artificial intelligence (AI) and machine learning (ML) systems into the agency's overall security posture. Serves as the principal, authoritative advisor to the CIO, Managing Director, and Chairman on all matters concerning cybersecurity risk, systemic vulnerabilities, threat landscapes, AI-related security risks, and regulatory security compliance. Represents the FCC on interagency cybersecurity councils, including OMB, CISA, and White House cyber roundtables, contributing subject-matter expertise on AI governance, Zero Trust implementation, and vulnerability management best practices. Synthesizes complex, technical risk data, including vulnerability scan results, threat intelligence, and identity/access risk indicators, into executive-level decision memos and risk-acceptance briefs for agency leadership. Provides ultimate oversight for the FCC's Security Operations Center (SOC), including oversight of SIEM platforms (e.g., Splunk) for continuous monitoring, log correlation, and threat detection across enterprise systems. Directs the agency's enterprise vulnerability management program, ensuring timely identification, prioritization, and remediation of vulnerabilities to continuously reduce the agency's attack surface. Oversees enterprise identity and access management (IAM) programs, including administration and governance of platforms such as Okta, to ensure secure authentication, privileged access controls, and alignment with ICAM and Zero Trust Architecture principles. Establishes and enforces AI security governance protocols, including risk assessments for AI/ML system deployments, safeguards against adversarial machine learning and data poisoning, and oversight of third-party AI tool usage in alignment with
NIST AI RMF
and applicable OMB guidance. Formulates and issues agency-wide Information
Opens the company's application page
Listed via
USAJobs
usajobs.gov
Similar roles
Design & Tech
Related reads from TCHNX

The Quiet Revolution in Local-First Software
As major platforms face outages and data breaches, a new generation of developers is building applications that prioritise local data storage and peer-to-peer sync, challenging the cloud-first orthodoxy that's dominated tech for two decades.

The Quiet Revolution in Edge AI: Why Your Next Computer Might Not Need the Cloud
As neural processing units become standard in consumer devices, we're witnessing a fundamental shift in how AI applications work. Local processing is no longer a fallback; it's becoming the preferred architecture.

The Rise of AI-Assisted Code Generation 2: Are Developers Becoming Prompt Engineers?
As AI coding assistants reshape software development, the industry grapples with a fundamental question: is writing code giving way to writing prompts? We examine how London's tech scene is adapting to this seismic shift.


