13 jobs found with U.S. House of Representatives, CAO a company that value diversity

Senior Security Analyst

Salary Range: 123,000.00 - 150,000.00

Closing Date: 7/23/2025

Job Summary:

The Office of the Chief Administrative Officer (CAO) provides operations support services and business solutions to the community of 10,000 House Members, Officers and staff. The CAO organization comprises more than 650 technical and administrative staff working in a variety of areas, including information technology, finance, budget management, human resources, payroll, child care, food and vending, procurement, logistics and administrative

This position is located in the Office of Cybersecurity (Cybersecurity), House Information Resources (HIR) office, Office of the Chief Administrative Officer (CAO), U.S. House of Representatives (House). Cybersecurity maintains robust programs aimed at limiting malicious activities from compromising the House’s network. Cybersecurity's primary purpose is to protect the House’s data by ensuring its confidentiality, integrity, and availability and to detect and respond to threats that would otherwise result in the loss of data or service disruptions. This position serves as the Senior Security Analyst for Information Assurance within Cybersecurity and is in direct support of the CAO supporting cybersecurity governance, risk, and compliance (GRC). Information Assurance implements system risk management, enforces enterprise compliance to House cybersecurity policies, and raises cybersecurity awareness through direct outreach to the House community.

Key responsibilities include providing tactical guidance and oversight for policy efforts, cybersecurity outreach and communications, and cybersecurity marketing support related to day-to-day efforts.

This position does not have day-to-day supervisory duties

Primary Duties and Responsibilities

Major Duties include:

Provide tactical guidance/oversight for administrative functions related to cybersecurity governance, policy, awareness, and communications.
Provide timely reviews of GRC products.
Serve as subject matter expert (SME) for GRC discussions across HIR.

Detailed responsibilities include:

1) Cybersecurity Policy: Conduct a review and provide guidance for the development of enterprise level cybersecurity policies and procedures to include advancement of technology changes and gap analysis. Work collaboratively with CAO by providing writing support (e.g., prepare and review documentation) for internal and external customers, as required. Work with team to perform a review and analysis of existing security policies, identify policy gaps and propose draft policy. Ensure consistency in guidance and terminology across all policies. Support cybersecurity communications to the House community including Members, Committees, and Leadership Offices for policy updates.

2) Cybersecurity Training: Provide subject matter expertise for the development and execution of House wide cybersecurity training through various delivery methods. Develop and manage an effective cybersecurity awareness training program to include role-based, annual cybersecurity awareness training, phishing, other social engineering training, and ad-hoc training. Review and provide guidance on the delivery of webinars, information booths, cybersecurity training, in person training, and the cybersecurity awareness month activities.

3) Cybersecurity Outreach: Provide guidance on the production of cybersecurity marketing and communication materials and guide communication strategy. Assist with the drafting of newsletters and email communication materials to House stakeholders to raise awareness of cybersecurity threats and best practice. Effectively communicate with technical and non-technical stakeholders across the House to promote cybersecurity awareness, governance, and best practices. Support the development of cybersecurity marketing materials to educate the House community.

4) Cybersecurity Risk Management: Collaborate with risk management team on policy and training impacts to the organization.

5) Support transition activities, as needed.

6) Performs other official duties as assigned.

Minimum Qualifications:

5 years of relevant experience
Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, or a related field, and 5 or more years of work experience or equivalent work experience.
5 years of experience providing tactical guidance and oversight for cybersecurity outreach and communications, policy efforts, and cybersecurity marketing support related to day-to-day efforts
Strong written and oral communications.

Preferred Qualifications

Current and maintained certification in one or more of the following IT Security disciplines: Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) or equivalent certification.

Knowledge, Skill, and Ability (KSA) and Competency Requirements:

Knowledge of Learning Management systems and various delivery methods.
Knowledge and skill conceptualizing and developing strategic cybersecurity marketing, communications, and outreach material.
Strong policy analysis and professional writing ability, including editing and proof reading.
Skill in developing and implementing information security policies and procedures within a Federal agency.
Ability to communicate effectively, both orally and in writing, with senior staff, information systems professionals, and technical and non-technical users.
Ability to maintain effective working relationships with colleagues, contractors, and vendors.
Employees within this position are expected to demonstrate the following HIR Technical Competencies: Analytics; Compliance, Consultation and Outreach; Information Assurance; Information Management; Information Systems Security; Information Technology Support; Knowledge of Emerging Trends and Industry Best Practices; Project Management; and Quality Assurance and Testing.
All employees within CAO are expected to demonstrate the following general competencies: Accountability, Adaptability, Collaboration, Communication, Customer Orientation, Knowledge of Relevant Policies, Procedures, and Processes, Priority Management, and Problem Resolution.

Continued employment is contingent upon satisfactorily completing a criminal history records check (or other applicable security clearance) and a pre-employment drug-test (pre-identified position only).