Examiner/Senior Examiner (IT/Cybersecurity)

Commander, Navy Installations Command

$100K — $130K *
Finance & Insurance
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of specialized experience in IT/cybersecurity risk assessment
  • Bachelor's or higher degree in related field or equivalent specialized experience
  • Familiarity with industry regulations and standards related to cybersecurity
  • Experience conducting audits or examinations of financial institutions
  • Strong analytical skills with complex financial analysis
  • Excellent written and oral communication skills
  • Ability to work collaboratively within teams and independently

Responsibilities

  • Lead development of examination strategies and work plans for GSEs
  • Assess information systems and cybersecurity risk management practices
  • Document and present examination findings to senior management
  • Research and evaluate emerging risks in technology and cybersecurity
  • Enhance examination processes and methodologies based on findings
  • Facilitate communication of risks and controls during examinations
  • Provide industry expertise to improve the examination framework

Benefits

  • Comprehensive federal health insurance options
  • Generous retirement plans including pension and 401(k)
  • Flexible work arrangements and work-life balance
  • Training and professional development opportunities
  • Paid leave, including annual and sick leave
Full Job Description
Summary

This position is for an Examiner/Senior Examiner (IT/Cybersecurity) located in the Division of Enterprise Regulation (DER) at the Federal Housing Finance Agency (FHFA). In this role, the incumbent will be responsible for assessing the Regulated Entities' IT operations and cyber risk management practices, including the rapidly evolving frontier areas of artificial intelligence, quantum computing, and cybersecurity.

Duties

Help

Division of Enterprise Regulation

The Division of Enterprise Regulation (DER) is responsible for the supervision of the Enterprises - Fannie Mae, Freddie Mac, and U.S. Financial Technology, LLC (the Regulated Entities). Fannie Mae, Freddie Mac and US FinTech are critical components of the nation's housing finance system and rely heavily on information technology (IT) systems and data to run their businesses. FHFA's Division of Enterprise Regulation (DER) is responsible for overseeing the Regulated Entities and ensuring their safe and sound condition and operations. DER is seeking dynamic IT Examiners/Senior Examiners to join our team!

Position Overview

The Examiner/Senior Examiner (IT/Cybersecurity) is assigned to a technology risk branch within the Division. In this capacity, the incumbent is responsible for planning, organizing, and completing examinations of the GSEs across a range of information technology disciplines. This will include assessing IT strategies and operations, information security and cybersecurity processes, artificial intelligence, data management practices, and business resiliency planning to ensure these align with regulatory guidance and industry standards. This is an opportunity to apply your IT and cybersecurity acumen to high-stakes, mission-driven work that protects the security and resilience of institutions vital to the nation's housing finance system.

Major Duties & Responsibilities

The Examiner/Senior Examiner (IT/Cybersecurity) duties listed below are at the EL-14 grade level. Depending on the grade level selected, the incumbent will perform the following duties with varying levels of supervision and difficulty:

  • Lead or play a key role in the development of examination strategies and work plans; determine the scope of examination activities; and devise new or modify current work methods and procedures, as needed.
  • Ensure that the development of examination scope and reports are fully completed according to prescribed FHFA regulatory and supervisory policy and program guidelines and standards.
  • Develop sources of material appropriate for the evaluation of new or unique types of activities or operations.
  • Perform thorough research to identify material suitable for unprecedented issues.
  • Communicate examination findings and their bases to senior management to elicit management's views.
  • Facilitate the flow of information and ensure a fully accurate understanding of the key risks, processes. and controls, and the factual basis for findings during the course of an examination.
  • Document examination findings thoroughly through a combination of GSE source documents, report comments, and other examination workpapers that address both management practices and conditions.
  • Maintain ongoing awareness/knowledge of significant issues or events and emerging risks that may impact the continued safe and sound operations of the GSEs.
  • Provide program expertise concerning industry problems and the adequacy of current examination techniques in dealing with them.
  • Analyze highly complex and/or extremely contentious banking, financial, housing, operational, and mortgage-market developments affecting the entities.
  • Provide detailed and exhaustive written analysis along with innovative, yet effective recommendations encompassing the full range of supervisory issues requiring FHFA approval or attention.
  • Maintain an authoritative knowledge of issues, trends, and advances in risk management and risk-based examinations of large, complex financial institutions.
  • Provide FHFA management with expert advice on advances in examination management of practices and risk-based examination procedures.
  • Conceive and implement new approaches for the enhancement of the examination program.
  • Perform other duties as assigned.


Requirements

Help

Conditions of employment

  • Must be a U.S. Citizen.
  • Males born after 12-31-59 must be registered for Selective Service.
  • Suitable for Federal employment, as determined by background investigation.
  • May be required to successfully complete a probationary period.
  • Only experience and education obtained by the closing date of this announcement will be considered.
  • Resume and supporting documents (See How To Apply).
  • If you are currently, or have been within the last 5 years, a political Schedule A, Schedule C, Non-career SES or Presidential Appointee employee in the Executive Branch, you must disclose this information to the Human Resources Office.
  • FHFA participates in e-Verify. All new hires must complete the I-9 Employment Verification form either on or before their first day of employment. If a discrepancy arises, you must take affirmative steps to resolve the matter.
  • This position is eligible for inclusion in the bargaining unit. The union that represents employees in this position is the National Treasury Employees Union (NTEU) Chapter 343.
  • This is NOT a remote position; you MUST live within or be willing to relocate within a commutable distance of the Washington, DC duty location.
  • The successful candidate will also enroll in the FHFA Housing Finance Examiner (HFE) Commission Program, unless the person holds a commission from another Federal banking agency.


Qualifications

You may qualify for your desired series and grade level if you meet the following qualification requirements:

MINIMUM QUALIFICATIONS:

Minimum Qualification EL-12: Applicants must have 52 weeks (one-year) of specialized experience equivalent to the next lower grade level as described below.

Experience: I qualify for the EL/GS-12 because I have at least 52 weeks of specialized experience at the EL/GS-11 or equivalent demonstrating work experience with the statements described below.

Examples of specialized experience include:

  • Participating in analyses, audits, or other reviews of financial institutions related to information technology (IT) cybersecurity risk and related governance factors.
  • Supporting the review and assessment of IT and cybersecurity compliance policies and risk management approaches.
  • Contributing to written reports including evaluative commentaries appropriate to IT and cybersecurity risks and internal controls.


Minimum Qualification EL-13: Applicants must have 52 weeks (one-year) of specialized experience equivalent to the next lower grade level as described below.

Experience: I qualify for the EL/GS-13 because I have at least 52 weeks of specialized experience at the EL/GS-12 or equivalent demonstrating work experience with the statements described below.

Examples of specialized experience include:

  • Conducting analyses, examinations, or audits to evaluate the effectiveness of technology/cybersecurity risk controls and related practices in light of applicable laws, rules, regulations, regulatory guidance, or industry standards.
  • Preparing written examinations or analysis of audits or other risk assessments and presenting the reports to management officials.
  • Assessing technology/cybersecurity risk analysis and compliance issues in a regulated environment and providing recommendations for enhancements related to these issues.
  • Assessing and validating risk management or techniques used in risk assessments or other critical areas working within regulated industries or organizations.


Minimum Qualification EL-14: Applicants must have 52 weeks (one-year) of specialized experience equivalent to the next lower grade level as described below.

Experience: I qualify for the EL/GS-14 because I have at least 52 weeks of specialized experience at the EL/GS-13 or equivalent demonstrating work experience with the statements described below.

Examples of specialized experience include:

  • Leading complex analyses, examinations, or audits to evaluate the effectiveness of technology/cybersecurity risk controls or related practices in light of applicable laws, rules, regulations, regulatory guidance, or industry standards.
  • Preparing written examinations/audit reports or analysis and presenting the reports to senior officials within the audited organization or with the regulator/auditor.
  • Performing analysis of cybersecurity and IT risk activities in a regulated industry or environment to identify potential risks or compliance issues, presenting findings, and developing recommendations related to technology/cybersecurity risk management and compliance.
  • Working with regulatory requirements and guidelines related to technology/cybersecurity risk analysis and compliance.


*Audit or safety and soundness examination experience strongly desired. Commissioned examiners strongly encouraged to apply*

In addition to meeting the above minimum qualification requirements, applicants must also meet one of the following basic requirements for this position:

BASIC REQUIREMENTS:

To be eligible for the 0570 series, you must meet one of the following requirements:

A. Undergraduate and Graduate Education: Major study accounting, banking, business administration, commercial or banking law, economics, finance, marketing, or other fields related to the position.

-OR-

B. Specialized Experience (for positions above GS-5): Examples of qualifying specialized experience include:

  • Work requiring a thorough knowledge and the application of commercial accounting or auditing principles and practices (but less than full professional accounting knowledge) with a financial institution.
  • Examining or auditing such financial institutions as savings and loan associations, savings or commercial banking institutions or trust companies, farm credit associations, or Federal or State credit unions.
  • Professional accounting or auditing work that provided a broad knowledge of the application of accounting or auditing principles and practices.
  • Work that provided a thorough knowledge of Federal and State laws applicable to the type of financial institution involved (e.g., savings and loan associations, Bank for Cooperatives, savings or commercial banks, investment institutions, etc.), and of the operations and practices of such institutions.


-OR-

C. Certificate: A certificate as a Certified Public Accountant (CPA) obtained through written examination in a State, territory, or the District of Columbia meets the EL/GS-5 level requirements. Applicants with such certificates may also qualify for higher grade levels based on their education and or experience.

**Failure to provide your transcripts, when required, for any of the options above will remove you from the hiring process**

Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience.

Education

ARE YOU USING YOUR EDUCATION TO QUALIFY? You MUST provide transcripts or other documentation to support your educational claims. Unless otherwise stated: (1) official or unofficial transcripts are acceptable, or (2) you may submit a list with all of your courses, grades, semester, year, and credit for the course. All materials must be submitted by the closing date of the announcement.

GRADUATE EDUCATION: One academic year of graduate education is considered to be the number of credits hours your graduate school has determined to represent one academic year of full-time study. Such study may have been performed on a full-time or part-time basis. If you cannot obtain your graduate school's definition of one year of graduate study, 18 semester hours (or 27 quarter hours) should be considered as satisfying the requirement for one year of full-time graduate study.

FOREIGN EDUCATION: If you are using education completed in foreign colleges or universities to meet the qualification requirements, you must show the education credentials have been evaluated by a private organization that specializes in interpretation of foreign education programs and such education has been deemed equivalent to that gained in an accredited U.S. education program; or full credit has been given for the courses at a U.S. accredited college or university. For further information, visit: http://www.ed.gov/about/offices/list/ous/international/usnei/us/edlite-visitus-forrecog.html

Additional information

An Overview of FHFA's Benefits provides a summary of benefits for the current fiscal year.

Males born after 12-31-59 must be registered or exempt from Selective Service (see https://www.sss.gov/RegVer/wfRegistration.aspx).

Career Transition Assistance Programs: These programs apply to Federal employees who have been involuntarily separated or whose positions are surplus. To receive selection priority, you must: (1) meet CTAP/ICTAP eligibility criteria; (2) be rated well-qualified with a score of 90 or above; and (3) submit required documentation. For more information, visit: For more information visit: http://www.opm.gov/rif/employee_guides/career_transition.asp.

Similar Jobs

More Jobs at Commander, Navy Installations Command

More Finance & Insurance Jobs

Find similar Examiner/Senior Examiner (IT/Cybersecurity) jobs: