Job Family:

Cyber Consulting

Travel Required:

Up to 75%+

Clearance Required:

Active Secret

What You Will Do:

Guidehouse Cybersecurity consultants help our clients solve complex technology and business issues from strategy through execution. A successful cybersecurity consultant at Guidehouse displays the following traits: flexibility, curiosity, ability to learn quickly, ability to think critically, strong communication skills (written & verbal) and have a grasp of a variety of technical concepts. A Guidehouse consulting career will provide the opportunity to gain experience on many different projects and technologies, as well as engage with a wide range of clients. Successful candidates will be able to contribute as thought leaders on white papers and articles, and by doing so will not only be contributing to shaping the firm, but also strengthening their personal brand and subject matter expertise.

• Analyze and report organizational and system security posture trends.
• Apply security policies to meet security objectives of the system.
• Assess adequate access controls based on principles of least privilege and need-to-know, and their effectiveness.
• Assess all the configuration management processes.
• Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
• Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
• Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
• Implement security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed.
• Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
• Plan and recommend modifications or adjustments based on exercise results or system environment.
• Properly document all systems security implementation, operations and maintenance activities and update as necessary.
• Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
• Verify and update security documentation reflecting the application/system security design features.
• Verify minimum security requirements are in place for all applications.

What You Will Need:

• An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance
• Bachelor’s Degree
• THREE (3) or more years of experience relevant to Cybersecurity or Security Engineering or Security System Design or Security Controls or Cybersecurity Framework or Zero Trust and/or Cloud Security

What Would Be Nice To Have:

• An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance (preferred)
• Master’s Degree preferred
• Operational experience designing, operating, troubleshooting Cloud solutions (AWS preferred)
• Experience migrating systems to Cloud-based solutions 

• Two years designing and deploying systems aligned with Zero Trust Architecture principles, threat scenarios, reference architectures, and governance frameworks.
• Certifications CySA+, or Security+, CISSP, or CASP+ or CND or relevant certifications
• Experience in professional services consultancy and federal cyber security industry.
• Working knowledge of :
• Network Segmentation, Zero Trust,
• Security principles and methods – firewalls, demilitarized zones, encryption).
• Network traffic – Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
• IT risk management policies, requirements, and procedures.
• Configuration management techniques
• System and network architecture, installation, integration, and optimization of system components
• PII/PHI data security standards.
• Network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
• Security controls based on cybersecurity principles and tenets, NIST SP 800-53, CSF.
• Skill in developing and applying security system access controls, security system design tools, methods, and techniques, security management, network design processes (security objectives, operational objectives, and trade-offs), systems security testing and evaluation methods, use network analysis tools to identify vulnerabilities, systems security testing and evaluation methods.
• Demonstrated experience providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data
• Certification: AWS Certified DevOps (Professional), AWS Certified Security (Specialty), AWS Certified Advanced Networking (Specialty), or Microsoft Certified (Azure Administrator Associate)
• Demonstrated experience designing, operating, troubleshooting Cloud solutions
• Demonstrated experience migrating systems to IaaS
• Strong knowledge of FISMA, FedRAMP, NIST SP 800-53 and other federal cybersecurity related policies, directives, and mandates.
• Extensive knowledge of application of security technologies including SIEM, DLP, WAF, IPS, firewall, and related tools
• Demonstrated ability to work independently under general direction
• Hands-on experience in providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data.

The annual salary range for this position is $113,000.00-$188,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.

What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

• Medical, Rx, Dental & Vision Insurance

• Personal and Family Sick Time & Company Paid Holidays

• Position may be eligible for a discretionary variable incentive bonus

• Parental Leave and Adoption Assistance

• 401(k) Retirement Plan

• Basic Life & Supplemental Life

• Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

• Short-Term & Long-Term Disability

• Student Loan PayDown

• Tuition Reimbursement, Personal Development & Learning Opportunities

• Skills Development & Certifications

• Employee Referral Program

• Corporate Sponsored Events & Community Outreach

• Emergency Back-Up Childcare Program

• Mobility Stipend

About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.