CybersecurityJobs.io
← Back to all jobs
Guidehouse

Cybersecurity Consultant

Guidehouse
McLean, VA $85k - $141k/yr Full time Posted 17h ago
Analytics Business Analytics Business Intelligence Consultant Cybersecurity Tools Data Analysis Data Analytics Enterprise Risk Information Security Infosec NIST SP 800-53 Power BI Risk Governance Risk Management Security Security Compliance Vulnerability Management
Apply Now

Job Description

Guidehouse’s cybersecurity practice in McLean, VA is seeking a skilled Cybersecurity Consultant to lead risk management across a portfolio of client applications. This onsite role emphasizes guiding the POA&M lifecycle, performing business impact analyses, and steering remediation efforts to strengthen security posture while coordinating with business, engineering, and security teams. The position offers a salary range of USD 85,000 to 141,000 per year and requires a bachelor’s degree with at least three years of relevant experience.

Responsibilities

  • Lead cyber risk management across a portfolio of client applications.
  • Oversee end-to-end POA&M lifecycle, including creation, tracking, validation, and closure of identified security weaknesses.
  • Prioritize remediation activities based on risk severity, compliance requirements, and operational impact.
  • Conduct regular POA&M status reviews and coordinate with system owners and O&M teams to track milestone progress.
  • Perform BIAs to identify critical systems, functions, dependencies, and recovery time/objectives.
  • Collaborate with stakeholders to validate system criticality and align with continuity and contingency planning requirements.
  • Build and maintain strong working relationships with business, engineering, and security teams to validate fixes, resolve blockers, and support timely remediation.
  • Prepare reports and briefings for leadership and federal oversight stakeholders.
  • Provide cyber subject matter expertise during information security audits and assessments.
  • Maintain and update BIA documentation in alignment with evolving system architecture and mission priorities.

Requirements

  • Ability to obtain and maintain a Federal or DoD Public Trust; candidates must obtain approved adjudication prior to onboarding. Active Public Trust or Suitability with an active HHS/NIH clearance is preferred.
  • Minimum of three (3) years of cybersecurity or IT risk management experience; candidates with a focus on cybersecurity risk management are preferred.
  • Minimum of a Bachelor’s Degree.
  • Hands-on experience with GRC platforms.
  • Deep understanding of NIST SP 800-53, FISMA requirements, and 800-37.
  • Strong communication and analytical thinking; ability to manage multiple concurrent priorities and deadlines.

Technologies

  • GRC platforms
  • NIST SP 800-53
  • FISMA requirements
  • NIST SP 800-37
  • MITRE ATT&CK framework
  • EPSS
  • CVSS v3
  • Power BI

Benefits

  • Medical, Rx, Dental & Vision Insurance
  • Personal and Family Sick Time & Company Paid Holidays
  • Position may be eligible for a discretionary variable incentive bonus
  • Parental Leave and Adoption Assistance
  • 401(k) Retirement Plan
  • Basic Life & Supplemental Life
  • Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
  • Short-Term & Long-Term Disability
  • Student Loan PayDown
  • Tuition Reimbursement, Personal Development & Learning Opportunities
  • Skills Development & Certifications
  • Employee Referral Program
  • Corporate Sponsored Events & Community Outreach
  • Emergency Back-Up Childcare Program
  • Mobility Stipend

Job Family

Cyber Consulting

Travel Required

Up to 25%

Clearance Required

Ability to Obtain Public Trust

Similar Jobs

Get Job Alerts

New jobs delivered to your inbox.