Cybersecurity Lead Analyst

OverviewGuidehouse is a leading global provider of consulting services to the public sector and commercial markets, with broad capabilities in management, technology, and risk consulting. By combining our public and private sector expertise, we help clients address their most complex challenges and navigate significant regulatory pressures focusing on transformational change, business resiliency, and technology-driven innovation. Across a range of advisory, consulting, outsourcing, and digital services, we create scalable, innovative solutions that help our clients outwit complexity and position them for future growth and success. The company has more than 12,000 professionals in over 50 locations globally. Guidehouse is a Veritas Capital portfolio company, led by seasoned professionals with proven and diverse expertise in traditional and emerging technologies, markets, and agenda-setting issues driving national and global economies. For more information, please visit www.guidehouse.com.ResponsibilitiesAs the Cybersecurity Lead Analyst, you will support a Department of State client in complying with Federal cybersecurity standards, policy, and regulations. Skills you will use include fluency with IT security principles, business process development, policy development, communications, and briefing/presentation experience. The candidate must currently possess and maintain a TS/SCI clearance.

• Facilitating the development of security policies and procedures to better address organizational risk and develop mitigation plans
• Defining project scope and objective, predicting resourcing needs, and monitor security deliverables based on set timelines
• Coordinating with stakeholders in functional and technical areas in support of IT security priorities to design future processes and capture roles and responsibilities
• Evaluate physical, technical, and administrative controls to assess the entire threat landscape
• Translating security concepts to allow clients to make risk-based decisions to be secure mission-critical systems and infrastructure
• Understanding universal standards and frameworks related to Risk Management Framework (RMF), security training, vulnerability management, privacy, and security policy management
• Verify policies, strategies, and procedures comply with State Foreign Affairs Manual (FAM) and Intelligence Community Directives (ICDs)
• Delivering consistently high-quality services and deliverables to the client

• 6+ years of relevant experience
• Bachelor’s degree
• An active Top Secret/SCI

• Security+ certification; equivalent or higher
• Demonstrated knowledge and experience documenting and applying cybersecurity governance and risk management best practices, policies, strategies, and procedures
• Experience and knowledge of responding to federal audits and reviews (e.g., Office of the Inspector General)
• Demonstrated ability to apply fundamental cybersecurity concepts to tasks and projects
• Ability to effectively communicate with senior government clients, participate in and lead discussions, confidently discuss project status, and propose relevant and effective solutions
• Deep understanding of compliance requirements, standards, and guidelines governing security within the Federal Government (e.g., NIST publications, FISMA, ICDs, and Department memoranda),
• Excellent oral and written communication/presentation skills
• Strong interpersonal skills and proven experience in building partnerships with a range of partners
• Self-starter with the ability to perform and lead work independently