Job Family:
IT Cyber Security
Travel Required:
Up to 10%
Clearance Required:
Active Public Trust
What You Will Do:
- Lead vulnerability management and secure configuration operations, ensuring alignment with federal cybersecurity mandates.
- Manage, monitor, and report vulnerabilities across NIH/HHS systems using tools such as Invicti and coordinate timely remediation activities.
- Develop vulnerability prioritization models based on risk, exposure, and asset criticality.
- Develop secure configuration baselines and monitoring processes based on CIS Benchmarks.
- Ensure compliance with patching timelines and federal vulnerability directives.
- Collaborate with infrastructure, application, and security teams to validate remediation actions.
- Support preparation of reports for leadership and federal oversight bodies.
- Develop KPI metrics for vulnerability and compliance gap closure rates, asset risk scoring, and compliance tracking.
What You Will Need:
- Must be able to OBTAIN and MAINTAIN a Federal or DoD "PUBLIC TRUST"; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY and maintain an active HHS/NIH clearance are preferred.
- Minimum of THREE (3) years of cybersecurity or IT risk management experience, candidates with experience focused on vulnerability management and/or secure configuration are preferred.
- Minimum of a Bachelors Degree is required.
- Tools: Hands-on experience with Invicti.
- Knowledge: Deep understanding of NIST SP 800-53 and FISMA requirements.
- Certifications: Active CompTIA Security+ CE preferred. Other certifications (CISSP, CEH, or cloud-related) are a plus.
- Soft Skills: Strong communication and analytical thinking; ability to manage multiple concurrent priorities and deadlines.
What Would Be Nice To Have:
- Experience developing automated data pipelines or integrating APIs into Power BI dashboards.
- Familiarity with ServiceNow or Splunk Security Essentials.
- Knowledge of MITRE ATT&CK framework and vulnerability prioritization methodologies (e.g., EPSS, CVSS v3).
- Prior experience within a federal or HHS environment.
#LI-DNI
The annual salary range for this position is $98,000.00-$163,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Student Loan PayDown
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program
Mobility Stipend
