Director, Information Security

Washington, D.C
Aug 19, 2022
Aug 26, 2022
Executive, Director
Full Time

The Office of the Chief Administrative Officer (CAO) provides operations support services and business solutions to the community of 10,000 House Members, Officers and staff. The CAO organization comprises more than 650 technical and administrative staff working in a variety of areas, including information technology, finance, budget management, human resources, payroll, child care, food and vending, procurement, logistics and administrative counsel.

This position is located in the Office of Cybersecurity (Cybersecurity), House Information Resources (HIR) office, Office of the Chief Administrative Officer (CAO), U.S. House of Representatives (House). Cybersecurity maintains robust programs aimed at limiting malicious activities from compromising the House's network. Cybersecurity's primary purpose is to protect the House's data by ensuring its confidentiality, integrity, and availability and to detect and respond to threats that would otherwise result in the loss of data or service disruptions. This position serves as the Director, Information Security.

Key responsibilities include providing leadership in the development and effective application of information security tools, policies, and procedures in direct support of the CAO's information systems security program for the House; and acting as the liaison and conducting investigations with internal (e.g., Capitol Police) and external (e.g., Federal Bureau of Investigation, Secret Service) agencies, as appropriate. Grade level at time of appointment is determined by experience and designated level of responsibility. The position has day-to-day supervisory/managerial responsibilities. This position has access to Personally Identifiable Information (PII).

Primary Duties/Responsibilities:

• Assesses security events to determine impact and implements corrective actions.
• Provides managerial and technical leadership of security services provided by the directorate.
• Develops enterprise risk analysis strategy to support the House network infrastructure, major applications, and desktop systems.
• Provides project management of security initiatives, budget, and procurement activities.
• Participates in network and systems design to ensure implementation of appropriate systems security features.
• Directs the activities of technical staff by establishing, assigning and reviewing daily and long-term projects, establishing goals and objectives, training new employees, and evaluating work performance.
• Provides guidance to staff and supervisors on desired results and planning considerations, monitors progress of assigned projects, and provides additional resources as appropriate.
• Ensures subordinate supervisors are efficiently utilizing staff, maximizing resources, and developing subordinates to their fullest potential.
• Establishes procedures to systematically and equitably review subordinate supervisor's accomplishments and ensure recommendations from subordinates are consistent with the CAO mission and internal initiatives.
• Represents the Director and the directorate at House meetings and Legislative Branch working groups.
• Provides technical guidance to information owners, other corporate security officers, and IT associates.
• Works with executive management to determine acceptable levels of risk for the enterprise.
• Assumes management responsibilities in the absence of the Chief and provides oversight and direction to the directorate's 24x7 staff.
• Develops, coordinates, implements, and oversees an enterprise-wide information security classification system in order to classify information according to its sensitivity and criticality.
• Develops, publishes, and maintains the Information Systems Security Program in order to establish information security standards, guidelines, and procedures House-wide.
• Performs other official duties and special projects as assigned.


Conditions of Employment

  • USAJobs Conditions of Employment


• Bachelor's degree in related field and 7-8 years of work experience or equivalent work experience. Years of experience may be counted towards a degree. An advanced degree may be used to count for years of experience.

• Knowledge of communication backbones, protocols, LAN/WAN, network operating systems, servers, router configurations, firewall implementation system penetration technology, and malicious logic tools.

• Knowledge of risk analysis, system vulnerabilities, auditing logs, system administration of desktop operating systems and mainframes, and information security policies and procedures.

• Demonstrated knowledge of implementing cloud security best practices.

• Skill in budget and personnel planning.

• Ability to communicate effectively, both orally and in writing, with elected officials, senior staff, information systems professionals, and technical and non-technical users.

• Ability to comprehend and integrate complex computer technology and software into an effective information systems security program.

• Ability to maintain effective working relationships with colleagues, users, contractors, and vendors.

• Knowledge of data encryption methods, remote access, and disaster recovery planning.

• Employees within this position are expected to demonstrate the following HIR Technical Competencies: Analytics; Contracting/ Procurement; Emergency Response Planning and Risk Management; Financial Management; Hardware Installation and Management; Information Assurance; Information Resources Strategy and Planning; Information Systems/Network Security; Knowledge of Emerging Trends and Industry Best Practices; Network Management; Project Management; and Quality Assurance and Testing.

• All employees within CAO are expected to demonstrate the following general competencies: Accountability, Adaptability, Collaboration, Communication, Customer Orientation, Knowledge of Relevant Policies, Procedures, and Processes, Priority Management, and Problem Resolution.

• All employees in leadership positions within CAO are expected to demonstrate the following leadership competencies: Coalition Building, Decision-Making, Leading People, Results Orientation, and Strategic Pl