“The HHS Chief Information Officer is the executive director of the OCIO which is in the Assistant Secretary for Administration (ASA) organization at HHS. This position will manage the Department’s Information Technology (IT) Security Program as the HHS Chief Information Security Officer (CISO) and Director, Office of Information Technology Security (OITS).”
“Duties
- The incumbent will perform and be responsible for all activities for which the HHS IT Security Program is accountable. The incumbent is responsible for executing leadership in developing, planning, coordinating, administering, managing, staffing and supervising the Office of the Chief Information Security Officer (CISO) operations related to the Department-wide IT security program.
- Serve as the Department’s security strategist in the continued reassessment of the environment to ensure that controls are sufficient. Frequently works on unprecedented problems, issues, and innovative technologies and concerns regarding IT security. Researches IT security trends and will use this information to forecast additional IT security needs and requirements for the Department. Confer with other key government and private sector officials and top experts representing the Department. Participate on Departmental and interagency IT security committees and councils as a recognized expert and authority.
- Applies a wide range of qualitative and/or quantitative methods to assess and improve program effectiveness and/or complex management processes, projects, and systems. Issues studied impact the entire region, headquarters, and often times the nation, in the incumbent’s analysis of and implementation of innovations in business matters, ensuring that HHS continues to develop and employ best industry practices. Uses technical leadership, outstanding creativity, and exceptional judgment to develop, define, and modify research and/or programmatic objectives, devising innovative ways to solve problems of major importance to the Department.
- Lead the effort to maximize the value and effectiveness of security performance measures associated with FISMA reporting, risk assessments, security authorizations, and the implementation of automated security continuous monitoring of HHS systems and data, while remediating and mitigating IT systems’ threats and vulnerabilities.
- Responsible for implementing and managing the overall HHS IT security program, which oversees the security of the Department’s IT resources geographically dispersed across the United States.
- Assures that each information system and associated facility provides a level of security that is commensurate with the risk and magnitude of the harm that could result from the loss, misuse, disclosure or modification of the information contained in the system.”
Read the full job description here.
G2X TAKE: Those who support the Department of Health and Human Services may want to influence who applies for this role that is responsible for executing leadership in developing, planning, coordinating, administering, managing, staffing and supervising the Office of the Chief Information Security Officer (CISO) operations related to the Department-wide IT security program.
