Jobs › Chief Information Security Officer, NB-2210-VIII
Chief Information Security Officer, NB-2210-VIII
Role at a glance
- Category
- GRC
- Work arrangement
- On-site
- Location
- Multiple Locations
- Salary range
- $176,282 to $319,800
- Posted
- Jul 14, 2026
Office of the Comptroller of the Currency is hiring a Chief Information Security Officer, NB-2210-VIII in Multiple Locations. This is a GRC role in the governance, risk, and compliance field, with a posted range of $176,282 to $319,800. Review the full details below and apply directly with Office of the Comptroller of the Currency.
As a Chief Information Security Officer, you will serve as operational executive responsible for the OCC's information security program and cybersecurity vision, strategy, and operations for ensuring confidentiality, integrity and availability of the OCC's critical information infrastructure and information system security This position will be located in one of the duty locations listed. Qualifications: You must meet the following requirements within 30 calendar days after the closing date of this announcement: You must have one year of specialized experience at a level of difficulty and responsibility equivalent to the NB-VII band level or GS-15 grade level in the Federal service. Examples of specialized experience for this position include: Leading organization-wide cybersecurity and privacy programs including developing and executing cybersecurity vision, strategy, policy, and operations. Directing security and privacy governance, oversight, compliance, and risk management activities. Leading verification and validation of security controls and implementation of federal security and privacy requirements, such as FISMA and the Privacy Act of 1974. Advising executive leadership on information security, privacy, and enterprise risk. The experience may have been gained in the public sector, private sector, or through volunteer service. One year of experience refers to full-time work; part-time work is considered on a prorated basis. To receive any credit for your work experience, please indicate dates of employment by month/year, and indicate the number of hours worked per week, on your
Full responsibilities and requirements are on Office of the Comptroller of the Currency's application page.
Apply for this role →Location and market context
This role is based in Multiple Locations on-site. Local candidates benefit from being close to Office of the Comptroller of the Currency's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About cybersecurity governance roles
Cybersecurity governance connects security control frameworks to business and regulatory risk, covering policy, risk assessment, and control assurance rather than hands-on operations. Roles like this one are typically evaluated against frameworks such as NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices.
How to position yourself for this cybersecurity governance role
Strong candidates emphasize security control frameworks, risk assessment, policy and standards, and translating technical security posture into governance and board-level reporting. In your resume and outreach, tie your experience to how Office of the Comptroller of the Currency would apply NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location