Cyber Security Analyst Government Publishing Office (GPO)

The U.S. Government Publishing Office (GPO) is the Federal Government’s Legislative Agency and serves as the official, secure digital resource for producing, procuring, cataloging, indexing, authenticating, disseminating, and preserving the official information products of the U.S. Government.

**Division Overview:**
GPO Information Technology Security (IT Security) specializes in providing information security support to ensure the integrity and safety of GPO IT systems and applications. This division develops, interprets, and maintains security controls and is actively involved in risk analysis, mitigation, incident handling, and response.

**Position Summary:**
The Cyber Security Analyst will play a critical role in enhancing GPO’s IT security posture by actively monitoring, defending, and responding to security threats. The ideal candidate will work closely with IT Security teams to implement best practices in security management and contribute to the maintenance of Zero Trust Architecture principles.

**Key Responsibilities:**

1. **Incident Monitoring and Response:**
Actively monitor security alerts and incidents using SIEM tools.
Investigate and respond to security breaches, providing timely resolutions.

2. **Risk Analysis and Management:**
Conduct regular risk assessments and develop risk mitigation strategies.
Maintain and update Security Controls as per the Risk Management Framework (RMF).

3. **Security Operations:**
Support the deployment and management of security tools (e.g., Microsoft Defender, Sentinel, Trellix).
Assist in the maintenance of security architectures and controls across GPO systems.

4. **Documentation and Reporting:**
Produce and maintain essential documentation including asset inventories, network topologies, and incident reports.
Ensure that all documentation is stored in a centralized GRC repository.

5. **Zero Trust Architecture Support:**
Contribute to the development and enforcement of Zero Trust principles within GPO IT systems.
Assist in the deployment of threat intelligence and endpoint detection tools.

6. **Continuity of Operations (COOP):**
Support COOP events and exercises, ensuring operations can be maintained during unforeseen circumstances.

**Knowledge, Skills, and Abilities:**
Proficiency in cybersecurity tools and frameworks including SIEM, endpoint protection, and incident response.
Understanding of network and system security standards (NIST, RMF, etc.).
Familiarity with Windows and Linux environments.
Strong analytical and problemsolving skills.