Cloud Data Engineer

Posted:
8/23/2024, 10:19:37 AM

Location(s):
Virginia, United States ⋅ Reston, Virginia, United States

Experience Level(s):
Junior ⋅ Mid Level ⋅ Senior

Field(s):
Data & Analytics

Workplace Type:
On-site

Job Family:

Cyber Consulting


Travel Required:

Up to 25%


Clearance Required:

Active Top Secret SCI (TS/SCI)

What You Will Do:

Technical Assessors play a pivotal role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). They conduct comprehensive assessments through detailed analysis of vulnerability scan data to ensure compliance with Intelligence Community Directives (ICDs), IC Technical Implementation Guides (TIGs), Security Technical Implementation Guides (STIGs), Security Requirement Guides (SRGs), and NIST 800-53 rev 5 security controls. Utilizing automated tools, including Tenable and Splunk, these professionals perform documentation reviews, employ checklists and guides to write report and develop a qualitative risk assessment on target organizations. Their assessments examine the mission owners’ critical capabilities and mission impacts if secure operations lack security protections needed to defend their cyber infrastructure and mitigate high-risk vulnerabilities to the enterprise. Beyond inspection duties, Technical Reviewers contribute to maturing organizational processes, training initiatives, and program-wide support through cross-functional collaboration.

Responsibilities of this 100% on-site role include but are not limited to:

  • Interacting with leadership and site technical staff in advance of conducting inspections to facilitate scoping, data to support security controls assessment input, and execution of operational inspection plans

  • Responsible for interviewing organizational subject matter experts in conducting STIG, SRG, and IC policy checklists

  • Collect data in support of reviewing a comprehensive Threat Informed Critical Controls List (TICCL), provide written input on review of required security controls, potential vulnerability exploitation, and how MITRE ATT&CK© techniques are plausibly successful based on organizational weaknesses. Ensure inputs link back to security controls

  • Participating in the planning, execution, and reporting of security audits and network vulnerability assessments with minimal supervision

  • Assisting in preparation of assessment deliverables –Security Risk Assessments input, compliance data, STIG data, etc.

  • Communicating on impact of vulnerabilities verbally, through presentations and written deliverables

  • Plan, execute, and report on information technology, privacy, and operational reviews to identify mission, privacy, security, compliance, information technology, and regulatory risks

  • Familiar with a variety of cybersecurity concepts, practices, and procedures. Relies on extensive experience and judgment to plan and accomplish goals

Must be willing to travel up to 30%, including local travel within the National Capital Region (NCR) of Northern Virginia, Maryland, and Washington, DC.



What You Will Need:

  • An ACTIVE and MAINTAINED Top Secret with SCI (TS/SCI) Federal or DoD security clearance; must UPGRADE and MAINTAIN a Top Secret with SCI (TS/SCI) and COUNTERINTELLIGENCE (CI) Polygraph  Federal or DoD security clearance

  • TWELVE (12) or more years of cyber/information assurance experience with at least FIVE (5) years being in Systems Administration

  • Bachelor's Degree

  • IAT level III certification (i.e. CISSP, CASP+CE, CISA, etc.)


What Would Be Nice To Have:

  • An ACTIVE and MAINTAINED TS/SCI Federal or DoD security clearance with a COUNTERINTELLIGENCE (CI) polygraph

  • Mater's degree

  • Experience in engineering and operations & maintenance of enterprise ESXi, Hyper-V, and Storage technologies

  • Proficiency in using advanced vulnerability assessment and reporting tools such as Tenable, Splunk, and Tableau

  • Demonstrated ability to operate across departments to implement cybersecurity principles effectively.

  • Capable of multitasking with efficient time management and possessing a comprehensive understanding of cyber threats, vulnerabilities, and network security methodologies.


What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

  • Medical, Rx, Dental & Vision Insurance

  • Personal and Family Sick Time & Company Paid Holidays

  • Position may be eligible for a discretionary variable incentive bonus

  • Parental Leave and Adoption Assistance

  • 401(k) Retirement Plan

  • Basic Life & Supplemental Life

  • Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

  • Short-Term & Long-Term Disability

  • Student Loan PayDown

  • Tuition Reimbursement, Personal Development & Learning Opportunities

  • Skills Development & Certifications

  • Employee Referral Program

  • Corporate Sponsored Events & Community Outreach

  • Emergency Back-Up Childcare Program

  • Mobility Stipend

About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.


Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.


If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.


Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.

Guidehouse LLP

Website: https://guidehouse.com/

Headquarter Location: Washington, District of Columbia, United States

Employee Count: 1001-5000

Year Founded: 2018

IPO Status: Private

Last Funding Type: Grant

Industries: Advice ⋅ Consulting ⋅ Management Consulting