Job Family:

Cyber Consulting

Travel Required:

Up to 75%+

Clearance Required:

Active Secret

What You Will Do:

Guidehouse Cybersecurity consultants help our clients solve complex technology and business issues from strategy through execution. A successful cybersecurity consultant at Guidehouse displays the following traits: flexibility, curiosity, ability to learn quickly, ability to think critically, strong communication skills (written & verbal) and have a grasp of a variety of technical concepts. A Guidehouse consulting career will provide the opportunity to gain experience on many different projects and technologies, as well as engage with a wide range of clients. Successful candidates will be able to contribute as thought leaders on white papers and articles, and by doing so will not only be contributing to shaping the firm, but also strengthening their personal brand and subject matter expertise.

Analyze and report organizational and system security posture trends.Apply security policies to meet security objectives of the system. Assess adequate access controls based on principles of least privilege and need-to-know, and their effectiveness. Assess all the configuration management processes. Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level. Implement security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed. Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation. Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative. Plan and recommend modifications or adjustments based on exercise results or system environment. Properly document all systems security implementation, operations and maintenance activities and update as necessary. Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities. Verify and update security documentation reflecting the application/system security design features. Verify minimum security requirements are in place for all applications.

What You Will Need:

An ACTIVE and MAINTAINED SECRET Federal or DoD security clearanceBachelor’s DegreeTHREE (3) or more years of experience relevant to Cybersecurity or Security Engineering or Security System Design or Security Controls or Cybersecurity Framework or Zero Trust and/or Cloud Security

What Would Be Nice To Have:

An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance (preferred)Master’s Degree preferredOperational experience designing, operating, troubleshooting Cloud solutions (AWS preferred)Experience migrating systems to Cloud-based solutions Two years designing and deploying systems aligned with Zero Trust Architecture principles, threat scenarios, reference architectures, and governance frameworks.Certifications CySA+, or Security+, CISSP, or CASP+ or CND or relevant certificationsExperience in professional services consultancy and federal cyber security industry. Working knowledge of : Network Segmentation, Zero Trust, Security principles and methods – firewalls, demilitarized zones, encryption). Network traffic – Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]). IT risk management policies, requirements, and procedures. Configuration management techniquesSystem and network architecture, installation, integration, and optimization of system componentsPII/PHI data security standards.Network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML). Security controls based on cybersecurity principles and tenets, NIST SP 800-53, CSF. Skill in developing and applying security system access controls, security system design tools, methods, and techniques, security management, network design processes (security objectives, operational objectives, and trade-offs), systems security testing and evaluation methods, use network analysis tools to identify vulnerabilities, systems security testing and evaluation methods. Demonstrated experience providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application dataCertification: AWS Certified DevOps (Professional), AWS Certified Security (Specialty), AWS Certified Advanced Networking (Specialty), or Microsoft Certified (Azure Administrator Associate)Demonstrated experience designing, operating, troubleshooting Cloud solutionsDemonstrated experience migrating systems to IaaSStrong knowledge of FISMA, FedRAMP, NIST SP 800-53 and other federal cybersecurity related policies, directives, and mandates.Extensive knowledge of application of security technologies including SIEM, DLP, WAF, IPS, firewall, and related toolsDemonstrated ability to work independently under general directionHands-on experience in providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data.

The annual salary range for this position is $113,000.00-$188,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.

What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

Medical, Rx, Dental & Vision Insurance

Personal and Family Sick Time & Company Paid Holidays

Position may be eligible for a discretionary variable incentive bonus

Parental Leave and Adoption Assistance

401(k) Retirement Plan

Basic Life & Supplemental Life

Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

Short-Term & Long-Term Disability

Student Loan PayDown

Tuition Reimbursement, Personal Development & Learning Opportunities

Skills Development & Certifications

Employee Referral Program

Corporate Sponsored Events & Community Outreach

Emergency Back-Up Childcare Program

Mobility Stipend

About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.