Chief Information Security Officer (CISO) - US Government & Public Sector

Chief Information Security Officer (CISO) - US Government & Public Sector

Location : McLean

Other locations : Anywhere in Region

Requisition ID : 1651376

EY is seeking a Chief Information Security officer (CISO) for the US Government & Public Sector (GPS). The CISO is the senior executive responsible for enterprise cybersecurity strategy, governance, and execution across both classified and unclassified environments. This includes compliance with DFARS / CMMC, NIST SP 800-37, NIST SP 800-171, NISPOM, and FedRAMP; secure software development; cloud security in Azure Government and Microsoft 365 GCC High; and enterprise incident response. The CISO partners closely with the COO, CIO, Legal / Contracts, Risk Management, and the Facility Security Officer (FSO). US GPS encompasses EY’s US Federal, state, and local government client portfolio. This senior leadership role will have significant team leadership responsibilities with visibility to internal and client stakeholders.

Responsibilities

• The successful candidate will work with GPS engagement teams, supporting functions, and EY’s Client Technology and Global Information Security organizations to develop and maintain a security and compliance program across all environments, platforms and applications used or desired for use by GPS. Responsibilities include :
• Strategy, Governance and Risk Management
• Development and execution of a multi‑year cybersecurity strategy and investment roadmap aligned to business objectives and federal contract requirements.
• Development, management and maintenance of the GPS IT security risk management policy and / or procedural documentation mapped to NIST SP 800-37 (RMF), NIST SP 800‑53, NIST SP 800‑171, NIST SP 800‑161 (C‑SCRM), and NIST SP 800‑218 (SSDF)
• Ownership of the enterprise risk assessment (ERA), business impact analysis (BIA), and security metrics; present posture and material risk to the COO on a recurring cadence.

Defense Industrial Base Compliance (Classified & Unclassified)

Manage GPS compliance with DFARS 252.204‑7012, 252.204‑7020, and 252.204‑7021. This includes :

Secure Cloud, Identity & Enterprise Platforms

DevSecOps & Secure SDLC

Detection, Response & Resilience

Effective Business Integration

Leadership, Team and Budget

Qualifications

Thorough knowledge and understanding of :

What we offer you

At EY, we’ll develop you with future‑focused skills and equip you with world‑class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learnmore.

Are you ready to shape your future with confidence? Apply today.

EY accepts applications for this position on an on‑going basis.

For those living in California, please click here for additional information.

EY focuses on high‑ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities.

EY | Building a better working world

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.

Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.

EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi‑disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity / expression, pregnancy, genetic information,national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.

EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at ssc.customersupport@ey.com.

Select how often (in days) to receive an alert :

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.

#J-18808-Ljbffr