GatherJob
Back to jobs
F
Federal Communications Commission

Supervisory IT Specialist (INFOSEC)

Federal Communications Commission
Washington, District of ColumbiaOn-siteengineering $169k – $197k/yr Today

This position is located in the Cybersecurity Group within the Office of the Chief Information Officer (OCIO), Office of the Managing Director(OMD), Federal Communications Commission (FCC), located in Washington, DC.

RELOCATION EXPENSES WILL NOT BE PAID. THIS VACANCY ANNOUNCEMENT MAY BE USED TO FILL ADDITIONAL POSITIONS WITHIN 90

DAYS.The incumbent serves as the Chief Information Security Officer (CISO), reporting directly to the Chief Information Officer (CIO) in the OCIO organization. As the CISO and Group Lead for Cybersecurity and Information Assurance, the incumbent provides executive leadership, strategy, technical direction, and authority for all information security functions across all 19 FCC bureaus and offices to include: Provides direct oversight, technical leadership, and administrative management of four critical sub-unit leads: the Lead Security Operations Manager, the Lead for Governance, Risk, and Compliance (GRC), the Lead Security Engineer, and the Lead for Incident Response. Establishes, maintains, and enforces the FCC's Enterprise Information Security Strategy, including the integration of emerging technology risk domains such as artificial intelligence (AI) and machine learning (ML) systems into the agency's overall security posture. Serves as the principal, authoritative advisor to the CIO, Managing Director, and Chairman on all matters concerning cybersecurity risk, systemic vulnerabilities, threat landscapes, AI-related security risks, and regulatory security compliance. Represents the FCC on interagency cybersecurity councils, including OMB, CISA, and White House cyber roundtables, contributing subject-matter expertise on AI governance, Zero Trust implementation, and vulnerability management best practices. Synthesizes complex, technical risk data, including vulnerability scan results, threat intelligence, and identity/access risk indicators, into executive-level decision memos and risk-acceptance briefs for agency leadership. Provides ultimate oversight for the FCC's Security Operations Center (SOC), including oversight of SIEM platforms (e.g., Splunk) for continuous monitoring, log correlation, and threat detection across enterprise systems. Directs the agency's enterprise vulnerability management program, ensuring timely identification, prioritization, and remediation of vulnerabilities to continuously reduce the agency's attack surface. Oversees enterprise identity and access management (IAM) programs, including administration and governance of platforms such as Okta, to ensure secure authentication, privileged access controls, and alignment with ICAM and Zero Trust Architecture principles. Establishes and enforces AI security governance protocols, including risk assessments for AI/ML system deployments, safeguards against adversarial machine learning and data poisoning, and oversight of third-party AI tool usage in alignment with

NIST AI RMF

and applicable OMB guidance. Formulates and issues agency-wide Information

Opens the company's application page

About the company

Federal Communications Commission

Federal Communications Commission

Listed via

U

USAJobs

usajobs.gov