Cybersecurity Risk Analyst, Senior Consultant at Guidehouse in Washington, DC

Overview

Guidehouse is a leading management consulting firm serving the public and commercial markets. We help our clients solve complex challenges and guide them to a future that builds trust in society. Put your expertise to work. Join us at Guidehouse.

Responsibilities

The Senior Cybersecurity Risk Analyst will function as a lead cybersecurity subject matter expert on a multi-disciplinary team supporting a high level Federal Government client in developing, maturing, tracking and reporting key cybersecurity maturity, performance, and effectiveness metrics for the most senior members of the organization. Utilize risk management principles from established frameworks (e.g. NIST) to help improve cybersecurity performance and reduce risk across the enterprise.

Requirements:

8+ years of experience with cybersecurity in the federal, DoD, or intelligence space

Deep understanding of NIST Risk Management (RMF) and Cybersecurity Framework (CSF)

Strong understanding of NIST 800-53r4 Security and Privacy Controls for Federal Information Systems and Organizations

Understanding of cybersecurity risk management principles based on NIST policies and frameworks, including understanding of risk concepts including likelihood, probability, frequency, threat, vulnerability, and consequence for cybersecurity

Experience advising and assisting Federal client organizations in the performance of Cyber responsibilities, remediation efforts, audit recovery, or other cyber hygiene activities

Understanding and expertise in FISMA requirements and reporting

Ability to integrate with industry standards and trends for cybersecurity risk measurement and management techniques, including: NIST Cybersecurity Framework, NIST Risk Management Framework, NIST 800-37, FISMA, FITARA

Understanding of Cybersecurity Metrics (KPI, KRI)

Proficiency creating and updating technical documentation for accuracy and completeness

Excellent oral and written communications skills

Demonstrated communications ability to diverse client audiences

Ability and desire to work directly as part of a fast-paced, multidisciplinary, client facing team

S. or B.A. degree

Understanding of agile project management frameworks (e.g. SCRUM, Kanban)

Ability to analyze datasets to generate descriptive statistics and perform statistical analysis to identify trends and anomalies in data

Experience collecting/reviewing data from multiple sources to assess risk posture

Experience building, evolving, and improving sustainable processes and measurement systems to ensure that security policy requirements are maintained

US Citizenship with active Secret clearance required

Qualifications

Additional Requirements

The successful candidate must not be subject to employment restrictions from a former employer (such as a non-compete) that would prevent the candidate from performing the job responsibilities as described.