Job Description

Title: Senior Cyber Security Analyst

Location: US-Remote

C: 9.54


Posting Description

GovCIO is a team of transformers–people who are passionate about transforming government I.T. We believe in making a difference by developing digital strategies and delivering the technology-related innovation that improves governmental operations each day.

But we can’t do it alone. We welcome and nurture an inclusive and diversified work culture. Because different backgrounds, experiences, abilities, and perspectives make us better decision-makers, problem solvers, and creators. We’re changing the face of I.T. – from our diverse staff to the end-products we develop. And we’re excited to expand our team. Are you ready to be a transformer?

Job Overview

GovCIO is looking for a Cyber Security Policy Analyst to work a small policy team supporting the Department of Veterans Affairs, Office of Information Security, Information Security Policy Compliance division. The ideal candidate has experience incorporating cyber security policy development best practices and proactively crafting policy recommendations for clients.


  • Facilitate the development of effective cyber policy and processes, including drafting of cyber security policies, standards, processes, and/or procedures and guiding them through the appropriate agency review processes
  • Execute daily taskings and management of cyber security policy work products, including but not limited to crafting and reviewing cyber security policies
  • Coordinate with internal stakeholders to develop and adjudicate comments for cyber security policy and guidance
  • Draft policies using concise language to support research and analysis
  • Review and consolidate cyber security policies in accordance with client requirements
  • Verify policies, strategies, and procedures comply with the agency Executive Handbooks and Style Guides
  • Formulate reports related to cyber security policy or associated Executive Orders which summarize the information and display key evidence for stakeholders to review


Required Skills and Experience

  • BS/BA degree and 5-7 years of experience or MS/MA degree 4-6 with years of experience in supporting cyber security programs with a focus on evaluating and analyzing federal policies and guidelines
  • Ability to analyze and interpret Federal legislation, directives, Office of Management and Budget (OMB) mandates, and guidance provided by the National Institute of Standards and Technology (NIST) against existing information security and cyber security policy to identify required updates
  • Working knowledge of NIST publications, OMB circulars, DHS bulletins, and other federal/industry guidelines and best practices
  • Knowledge and experience applying policy development best practices, strategies, and procedures
  • Understanding of Risk Management Framework (RMF), Information Security, and Security Policy
  • Understanding of compliance requirements, standards, and guidelines governing security within the Federal Government (e.g., NIST publications, FISMA, ICD’s, and Department memoranda)
  • Strong verbal and written communication skills and ability to take initiative in a dynamic, collaborative, and client-facing environment
  • Ability to effectively communicate with senior government clients, participate in and lead discussions, confidently discuss project status, and propose relevant and effective solutions
  • Demonstrated ability to work with a geographically dispersed team and a willingness to travel within the DC metro area

Compensation Range (In compliance with Colorado’s Equal Pay for Equal Work Act for remote or positions located in CO)