Information System Security Manager

Summary This announcement may be used to fill similar positions at the Federal Retirement Thrift Investment Board (FRTIB) in the same location. The position is filled under the government-wide Direct Hire Authority for Cybersecurity roles, which allows agencies to hire without applying certain category rating and veterans' preference rules. Responsibilities Manage the security status and authorization of assigned systems under the Federal Information Security Modernization Act (FISMA). Oversee the Risk Management Framework (RMF) process for assigned systems, following National Institute of Standards and Technology (NIST) guidance and federal requirements. Track Plans of Action and Milestones (POA/M), address risks, and complete annual security control reviews on time. Work with offices and teams to create required system documentation, such as contingency plans and other materials for Security Assessment and Authorization (SA/A). Provide cybersecurity advice to Business Owners (BOs), System Owners (SOs), technical teams, and Information System Security Officers (ISSOs). Requirements Conditions of Employment U.S. Citizenship is required. All qualification requirements must be met by 12/15/2025. Your application package will not be considered if it is missing any of the required documents listed under the "Required Documents" tab. Probationary Period. One-year probationary period may be required. Selective Service. If you are a male applicant born after December 31, 1959, you must certify that you have registered with the Selective Service System, or are exempt from having to do so under the Selective Service Law. Background Suitability Investigation. Continued employment is contingent upon satisfactory completion of a background investigation and the granting of a federal suitability or security clearance. If selected, you may be offered tentative employment until the background investigation has been fully adjudicated. Qualifications This announcement is issued under the Direct-Hire Authority (DHA) to recruit for positions for which there is a critical hiring need. Appointee(s) will receive a career or career-conditional appointment in the competitive service and may be required to serve a one-year probationary period. Under this DHA announcement applicants who meet the basic qualification requirements will be forwarded to the Selecting Official. Veterans' preference, Category Rating and traditional rating and ranking of applicants do not apply under the Direct-Hire Authority. To qualify for this position applicants must meet the Basic Experience requirement and the Specialized Experience as described below. To qualify for this position, applicants must meet the Basic Experience requirement and the Specialized Experience as described below. Basic Experience: Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate. For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. Specialized Experience: Applicants must have at least one year of full-time specialized work experience comparable in scope and responsibility to the next lower level, GS-13, in the federal government. Specialized experience is defined as: Leading cybersecurity risk management initiatives for enterprise-scale information systems to ensure security controls are properly implemented, documented, and aligned with industry-recognized cybersecurity frameworks and organizational security objectives. Directing cross-functional cybersecurity teams and guiding system owners, security specialists, and technical experts to ensure security requirements are understood, executed, and maintained throughout the system lifecycle. Assessing system architecture, technologies, and software solutions to identify vulnerabilities, evaluate security implications, and recommend risk-based strategies that strengthen system resilience and support informed decision-making. Overseeing independent security evaluations and validating security documentation and remediation plans to confirm accuracy, completeness, and effectiveness, enabling senior leadership to make well-supported risk acceptance and operational readiness decisions. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations. Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. A full year of work is considered to be 35-40 hours of work per week. Part-time experience will be credited on the basis of time actually spent in appropriate activities. Applicants wishing to receive credit for such experience must indicate clearly the nature of their duties and responsibilities in each position and the number of hours a week spent in such employment. Education You must provide your transcripts to support your educational claims. Transcripts may be unofficial copies, but they must come from an accredited college or university, and they also must include course names and the number of credit / semester hours. Click here to search the database of accredited institutions. Foreign Education. If you are using education completed at foreign colleges or universities to meet the qualification requirements, you must show that the education credentials have been evaluated by a private organization that specializes in the interpretation of foreign education programs. Foreign education must be deemed equivalent to that gained at an accredited U.S. education program. For further information visit the U.S. Department of Education's website concerning foreign qualifications. Additional Information The FRTIB offers wonderful benefits and work/life-balance flexibilities to help empower and reflect respect for our employees. Our comprehensive benefits package includes paid time off, life insurance, health benefits, and participation in the federal retirement system. We offer, as applicable, flexible work hours, annual and sick leave, transit and childcare subsidies, free and confidential employee assistance and occupational health referral services, free on-site fitness center, and off-site fitness membership reimbursement. Further benefits and flexibility details are located here: FRTIB Employee Benefits. The FRTIB offices are conveniently located within a few blocks of the Union Station metro station. In addition, private parking is available in the building at the posted daily and monthly rates. Relocation expenses are not authorized for this position; however, other recruitment incentives may be authorized. Reasonable Accommodation (RA) Requests: If you believe you have a disability (i.e., physical or mental), covered by the Rehabilitation Act of 1973 as amended that would interfere with completing the USA Hire Competency Based Assessments, you will be granted the opportunity to request a RA in your online application. Requests for RA for the USA Hire Competency Based Assessments and appropriate supporting documentation for RA must be received prior to starting the USA Hire Competency-Based Assessments. Decisions on requests for RA are made on a case-by-case basis. If you meet the minimum qualifications of the position, after notification of the adjudication of your request, you will receive an email invitation to complete the USA Hire Competency Based Assessments, based on your adjudication decision. You must complete all assessments within 48 hours of receiving the URL to access the USA Hire Competency Based Assessments if you received the link after the close of the announcement. To determine if you need a RA, please review the Procedures for Requesting a Reasonable Accommodation for Online Assessments.