Guidehouse
Cybersecurity Assessment Technical Lead
Guidehouse, Washington, District of Columbia, us, 20022
Overview
Lead comprehensive cybersecurity risk assessments of High Value Assets (HVA) systems including critical infrastructure, sensitive data repositories, and mission-essential systems. Design and execute technical security evaluations using industry-standard frameworks (NIST Cybersecurity Framework, NIST RMF, ISO 27001, CIS Controls). Conduct cybersecurity vulnerability assessments and security architecture reviews, and contribute to building penetration testing considerations and threat models. Analyze complex technical environments to identify security gaps, threats, and vulnerabilities. Develop detailed technical findings, risk ratings, and remediation recommendations and strategies. What You Will Do
Technical Leadership & Assessment
Lead comprehensive cybersecurity risk assessments of High Value Assets (HVA) systems including critical infrastructure, sensitive data repositories, and mission-essential systems Design and execute technical security evaluations using industry-standard frameworks (NIST Cybersecurity Framework, NIST RMF, ISO 27001, CIS Controls) Conduct cybersecurity vulnerability assessments and security architecture reviews, and contribute to building penetration testing considerations and threat models Analyze complex technical environments to identify security gaps, threats, and vulnerabilities Develop detailed technical findings, risk ratings, and remediation recommendations and strategies Client Engagement & Strategy
Serve as the primary technical point of contact for client engagements involving HVA assessments Present technical findings and recommendations to C-level executives and senior government officials Collaborate with client technical teams to understand system architectures, data flows, and security controls Develop customized assessment methodologies based on client-specific requirements and threat landscapes Knowledge Of Cybersecurity Domains
Contribute to and coordinate multi-disciplinary assessment teams including technical, policy, and compliance specialists Provide technical guidance and quality assurance for all assessment deliverables Support proposal development and technical writing for new business opportunities Innovation & Methodology Development
Stay current with emerging threats, vulnerabilities, and attack vectors targeting high value assets Contribute to the development of proprietary assessment tools and methodologies Research and evaluate new cybersecurity technologies and assessment techniques Participate in industry forums and maintain professional certifications What You Will Need
Minimum FIVE (5) years of experience of hands-on cybersecurity experience with at least 2 years in a technical leadership role An ACTIVE and MAINTAINED "SECRET" Federal or DOD security clearance Proven experience conducting cybersecurity risk assessments for large-scale, complex commercial and/or federal government environments Deep technical knowledge of enterprise security architectures, network security, and system hardening Expertise with security assessment tools including vulnerability scanners, SIEM platforms, and penetration testing frameworks Strong understanding of federal cybersecurity requirements (FISMA, FedRAMP, NIST SP 800-53, ATO processes) Experience with cloud security assessments (AWS, Azure, GCP) At least one professional cybersecurity certification (CISSP, CISM, GCIH, or equivalent) Strong oral and written communications skills and comfort with briefing to highly technical senior leadership teams What Would Be Nice To Have
DHS CISA AES Certification for conducting HVA assessments What We Offer
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. Benefits Include: Medical, Rx, Dental & Vision Insurance; Personal and Family Sick Time & Company Paid Holidays; discretionary variable incentive bonus; Parental Leave and Adoption Assistance; 401(k) Retirement Plan; Life Insurance; Health Savings Account and Flexible Spending Accounts; Disability coverage; Student Loan PayDown; Tuition Reimbursement and Learning Opportunities; Certifications; Employee Referral Program; Corporate Sponsored Events & Community Outreach; Emergency Back-Up Childcare Program; Mobility Stipend About Guidehouse
Guidehouse is an Equal Opportunity Employer–Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation. Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with applicable law. If you require an accommodation, please contact Guidehouse Recruiting. All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains. Guidehouse does not charge a fee at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event.
#J-18808-Ljbffr
Lead comprehensive cybersecurity risk assessments of High Value Assets (HVA) systems including critical infrastructure, sensitive data repositories, and mission-essential systems. Design and execute technical security evaluations using industry-standard frameworks (NIST Cybersecurity Framework, NIST RMF, ISO 27001, CIS Controls). Conduct cybersecurity vulnerability assessments and security architecture reviews, and contribute to building penetration testing considerations and threat models. Analyze complex technical environments to identify security gaps, threats, and vulnerabilities. Develop detailed technical findings, risk ratings, and remediation recommendations and strategies. What You Will Do
Technical Leadership & Assessment
Lead comprehensive cybersecurity risk assessments of High Value Assets (HVA) systems including critical infrastructure, sensitive data repositories, and mission-essential systems Design and execute technical security evaluations using industry-standard frameworks (NIST Cybersecurity Framework, NIST RMF, ISO 27001, CIS Controls) Conduct cybersecurity vulnerability assessments and security architecture reviews, and contribute to building penetration testing considerations and threat models Analyze complex technical environments to identify security gaps, threats, and vulnerabilities Develop detailed technical findings, risk ratings, and remediation recommendations and strategies Client Engagement & Strategy
Serve as the primary technical point of contact for client engagements involving HVA assessments Present technical findings and recommendations to C-level executives and senior government officials Collaborate with client technical teams to understand system architectures, data flows, and security controls Develop customized assessment methodologies based on client-specific requirements and threat landscapes Knowledge Of Cybersecurity Domains
Contribute to and coordinate multi-disciplinary assessment teams including technical, policy, and compliance specialists Provide technical guidance and quality assurance for all assessment deliverables Support proposal development and technical writing for new business opportunities Innovation & Methodology Development
Stay current with emerging threats, vulnerabilities, and attack vectors targeting high value assets Contribute to the development of proprietary assessment tools and methodologies Research and evaluate new cybersecurity technologies and assessment techniques Participate in industry forums and maintain professional certifications What You Will Need
Minimum FIVE (5) years of experience of hands-on cybersecurity experience with at least 2 years in a technical leadership role An ACTIVE and MAINTAINED "SECRET" Federal or DOD security clearance Proven experience conducting cybersecurity risk assessments for large-scale, complex commercial and/or federal government environments Deep technical knowledge of enterprise security architectures, network security, and system hardening Expertise with security assessment tools including vulnerability scanners, SIEM platforms, and penetration testing frameworks Strong understanding of federal cybersecurity requirements (FISMA, FedRAMP, NIST SP 800-53, ATO processes) Experience with cloud security assessments (AWS, Azure, GCP) At least one professional cybersecurity certification (CISSP, CISM, GCIH, or equivalent) Strong oral and written communications skills and comfort with briefing to highly technical senior leadership teams What Would Be Nice To Have
DHS CISA AES Certification for conducting HVA assessments What We Offer
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. Benefits Include: Medical, Rx, Dental & Vision Insurance; Personal and Family Sick Time & Company Paid Holidays; discretionary variable incentive bonus; Parental Leave and Adoption Assistance; 401(k) Retirement Plan; Life Insurance; Health Savings Account and Flexible Spending Accounts; Disability coverage; Student Loan PayDown; Tuition Reimbursement and Learning Opportunities; Certifications; Employee Referral Program; Corporate Sponsored Events & Community Outreach; Emergency Back-Up Childcare Program; Mobility Stipend About Guidehouse
Guidehouse is an Equal Opportunity Employer–Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation. Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with applicable law. If you require an accommodation, please contact Guidehouse Recruiting. All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains. Guidehouse does not charge a fee at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event.
#J-18808-Ljbffr