Deputy Chief Information Security Officer #402Department: Chief Information Officer Work Hours: 8:30am-5:30pm Pay Grade Range: $156701-$205355; Remote Work Status: Hybrid; ; all remote workmust be conducted within the continental United States. FLSA Status: Exempt Posting Date Range: 3/20/2024-Until filled JOB OVERVIEWJob DescriptionAbout Us At the Office of the Sergeant at Arms (SAA) within the United States Senate, we uphold a commitment to excellence in protecting the digital realms that underpin our nation's legislative processes. As a vital member of our cybersecurity leadership team, you will play a pivotal role in enhancing our cybersecurity defenses, safeguarding the integrity and resilience of critical systems and information essential to our democracy. Join our mission to integrate people, processes, and technology into a forward thinking, risk reduction framework that is both agile and innovative, securing our digital frontiers against evolving threats. Role Overview As the Deputy Chief Information Security Officer, you will navigate the complex landscape of cybersecurity, directing daily operations and shaping the strategic direction of cybersecurity efforts within the Senate. This role affords significant autonomy to influence policy, develop long range goals, and ensure the seamless integration of cybersecurity measures into our IT infrastructure. You will be instrumental in leading our response to cybersecurity challenges, managing risks, and fostering a culture of innovation and excellence across the department. Key Responsibilities
- Leadership and Integration: Guide the integration of information security processes with strategic and operational plans, collaborating with senior leadership to protect organizational assets. Lead and oversee information security budget, staffing, and contracting.
- Strategic Planning: Develop policies, plans, and strategies In alignment with legal and regulatory standards to support cybersecurity initiatives.
- Cybersecurity Principles: Utilize an in-depth understanding of cybersecurity principles to design and implement robust security measures.
- Policy and Strategy Implementation: Implement objectives and policies as established by the SAA and CIO executive leadership; contribute to the formulation and execution of short- and long-term cybersecurity goals. Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies. Ability to exercise judgment when policies are not well-defined.
- Risk Management Framework: Oversee the management of the Senate's IT risk management framework, ensuring robust defenses against digital threats.
- Risk Assessment and Vendor and Third-Party Security: Conducting thorough risk assessments identify potential security vulnerabilities and threats. Evaluating the security posture of third-party vendors and integrating their services or products securely into the organization's IT environment.
- Performance and Trend Analysis: Develop new criteria and methods for evaluating the performance of cybersecurity activities and identifying trends.
- Systems Design and Integration: Ensuring that security is an integral part of the IT architecture from the outset. This involves selecting secure frameworks and technologies, designing networks with defense-in-depth principles, and ensuring that systems are resilient to both external and internal threats.
- Collaborative Engagement: Engage in activities with user groups, task forces, and steering committees across Senate, legislative, and executive branches to enhance cybersecurity collaboration and initiatives.
- Contracting Officer Representative: Responsible drafting and reviewing contracts and acting as the liaison between the organization and its contractors, ensuring that all contractual terms are met, monitoring the contractor's performance for compliance with contract requirements.
- Project and Time Management: manage multiple projects with competing deadlines, demonstrating prioritization and re-prioritization in challenging environments.
Key Accountabilities/Essential Job Duties Directs the ongoing, daily operations of the Cybersecurity Department. Implements objectives and policies established by the SAA, CIO and/or CISO; participates in the formulationand implementation of short- and long-range goals. Manages the Senate IT risk management framework. Implements new criteria and methods for setting and evaluating cybersecurity activity performance accomplishments and cybersecurity trends. Establishes general management policies and practices governing the design, development, integration andtesting of information systems and networks. Participates in user groups, task forces, and steering committee activities with other Senate, legislative and/or executive branch agencies and organizations. JOB SPECIFICATIONSRequired Education Bachelor's Degree in Information Technology, Cybersecurity, National Security, Information Systems, or an equivalent combination of education and work experience. Other Duties/ Responsibilities
- Participates in the determination of the Senate's cybersecurity requirements; evaluates feasibility of potential applications, systems, and communication networks; participates in the approval of the equipment and other resources required to implement the applications, systems, and networks.
- Assess the Senate's cybersecurity needs, evaluating the feasibility of potential IT solutions and overseeing the allocation of resources to implement necessary systems and networks.
- Conduct periodic gap analyses to identify and address cybersecurity capabilities and needs, ensuring the Senate's digital assets are comprehensively protected.
- Promote awareness of security threats and mitigations among executives, stakeholder and the Senate community and ensure sound security principles are reflected in the Senate's ethos.
Required Work Experience
- Twelve years of experience, including at least five years of management experience, in cybersecurity; threat intelligence, information technology.
Security Clearance
- This position requires that the applicant obtain and maintain a TS/SCI U.S. Government security clearance.
- Applicants must be U.S. citizens in order for the SAA to submit your application for a security clearance.
Desired Qualifications
- Demonstrated ability to develop and implement effective cybersecurity strategies and manage IT risk.
- Strong analytical, critical thinking, problem solving and communication skills.
- Experience with cyber competitions and practical cybersecurity exercises is a plus.
- Deep understanding of the impact of cybersecurity on organizational processes.
Working Conditions
- No exceptional physical demands
Join Us If you're ready to lead at the forefront of cybersecurity within one of the nation's most esteemed institutions, we invite you to apply f or the role of Deputy Chief Information Security Officer. Highlight your experience with cybersecurity initiatives, including your role and the outcomes achieved. The SAA is an equal opportunity employer, committed to fostering a diverse and inclusive workplace. We eagerly anticipate applications from candidates of all backgrounds, ready to contribute to our mission of safeguarding democracy. Continuous Learning & Development We believe in nurturing talent. With access to advanced training modules, workshops, and seminars, your growth journey is our top priority. CONDITIONS OF EMPLOYMENT To be employed by a Senate employing office in a paid position in the continental United States an individual must: 1. Be a U.S. citizen; 2. Be lawfully admitted for permanent residence and seeking citizenship as outlined in 8 U.S.C. § 1324b(a)(3)(B); 3. Be (i) admitted as a refugee under 8 U.S.C. § 1157 or granted asylum under 8 U.S.C. § 1158 and (ii) have filed a declaration of intention to become a lawful permanent resident and then a citizen when eligible; or 4. Owe allegiance to the U.S. (i.e., qualify as a non-citizen U.S. national under federal law). Employment is contingent on background / security investigation results. BENEFITS AT-A-GLANCE The SAA provides a highly competitive benefitspackage for all SAA staff. Our benefits extend beyond health care coverage tohelp provide employees with student loan reimbursement, professionaldevelopment, transportation subsidy, TSP/retirement savings, access to ourEmployee Assistance Program, and more! For more information regarding SAA'sbenefits, please visit ACCOMMODATIONS As an Equal Opportunity Employer, the SAA is committed to providing reasonable accommodations to applicants with disabilities. If you are interested in applying for employment with SAA and need special assistance or an accommodation to complete the application process, please submit your request to ...@saa.senate.gov email with Accommodation in the subject line.