Senior Cybersecurity Analyst-Communities – Energy – Infrastructure

Senior Cybersecurity Analyst-Communities – Energy – Infrastructure

Requirements

• An ACTIVE and MAINTAINED TOP SECRET DoD security clearance.
• Bachelor’s degree from an accredited university or college in Information Technology with an emphasis in Cybersecurity or Information Assurance or similar degree AND FIVE (5+) plus years of experience in planning, coordinating, and implementing security measures to protect the confidentiality, integrity, and availability of information systems and their data; Or Master’s degree from an accredited university or college in Information Technology with an emphasis in Cybersecurity or Information Assurance or similar degree AND THREE (3+) plus years of experience in planning, coordinating, and implementing security measures to protect the confidentiality, integrity, and availability of information systems and their data.
• Total years of work experience must include a minimum of TWO (2) years supervising experience in a cyber/IT security role.
• Must have at least one of the following current certifications: GIAC Information Security Professional (GISP), ISC2 Certified Information Systems Security Professional (CISSP) or equivalent.
• Must demonstrate proficiency in developing, monitoring and conducting testing of cybersecurity plans and controls using government approved tools and methods.
• Demonstrate a thorough understanding of cyber policies/practices to include National Institute of Standards and Technology Special Publication.
• Extensive knowledge of security assessment and authorization (SA&A) policy, procedures, and processes, including, but not limited to, NIST 800-37, 800-53, CNSSI and other Federal requirements.
• Demonstrate proficiency in developing and revising EHSS Security Policies.
• Knowledgeable in Incident Response practices, vulnerability management, Plan of Action and Milestone management, Zero Trust Architecture, cloud requirements and assessments, Continuous Diagnostics Mitigations/Continuous Monitoring, etc.
• Ability to travel as required.
• Currently reside in the contiguous United States.

Responsibilities

• Connecting Guidehouse consulting solutions to solve client problems.
• Leverage industry connections to foster client and firm success: establish business development opportunities, communicate well-organized, effective Guidehouse solutions and presentations to client and internal executives.
• Lead and support workstreams that enable the assessment, development, and enhancement of Federal Civilian Agency cybersecurity or technology strategies, operating plans, business processes, organizational structures, and supporting infrastructure. Project examples include IT strategy and implementation projects; cybersecurity and data protection strategy and implementation projects; data strategy and governance projects; software and vendor selection projects and technology risk assessments.
• The role also involves practice development activities including creation of new service solution offerings; authoring thought leadership and white papers; mentoring and coaching consulting staff; and collaborating with segment technology leaders.
• Communicating solutions and new strategies to clients through meetings, reports, and presentations.
• Document test results, develop and recommend corrective actions, and develop and document residual risk and risk assessment statements.
• Create baseline documentation and develop and review policies for EHSS.

Preferred Qualifications

• An ACTIVE and MAINTAINED Department of Energy (DOE) Q-Sensitive security clearance.
• Preference will be given to candidates within 50 miles of a core Guidehouse office or Client Office location. May be required to work a hybrid work schedule instead of 100% remote.
• Federal experience in ATOs, C&As, FISMA, or similar.