IT Investment/Portfolio Manager

Manages a portfolio of IT investments that align with the overall needs of mission and enterprise priorities.

Below are the Knowledge, Skills, Abilities and Tasks identified as being required to perform this work role.

Knowledge of computer networking concepts and protocols, and network security methodologies.
Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
K0003Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
K0004Knowledge of cybersecurity and privacy principles.
K0005Knowledge of cyber threats and vulnerabilities.
K0006Knowledge of specific operational impacts of cybersecurity lapses.
K0048Knowledge of Risk Management Framework (RMF) requirements.
K0072Knowledge of resource management principles and techniques.
K0120Knowledge of how information needs and collection requirements are translated, tracked, and prioritized across the extended enterprise.
K0126Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
K0146Knowledge of the organization’s core business/mission processes.
K0154Knowledge of supply chain risk management standards, processes, and practices.
K0165Knowledge of risk/threat assessment.
K0169Knowledge of information technology (IT) supply chain security and supply chain risk management policies, requirements, and procedures.
K0235Knowledge of how to leverage research and development centers, think tanks, academic research, and industry systems.
K0257Knowledge of information technology (IT) acquisition/procurement requirements.
K0270Knowledge of the acquisition/procurement life cycle process.
S0372Skill to translate, track, and prioritize information needs and intelligence collection requirements across the extended enterprise.
A0039Ability to oversee the development and update of the life cycle cost estimate.
T0220Resolve conflicts in laws, regulations, policies, standards, or procedures.
T0223Review or conduct audits of information technology (IT) programs and projects.
T0277Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.
T0302Develop contract language to ensure supply chain, system, network, and operational security are met.
T0377Gather feedback on customer satisfaction and internal service performance to foster continual improvement.
T0415Ensure that supply chain, system, network, performance, and cybersecurity requirements are included in contract language and delivered.
T0493Lead and oversee budget, staffing, and contracting.
T0551Draft and publish supply chain security and risk management documents.