Senior Cyber Risk and Vulnerability Assessor

Responsibilities

• Lead and oversee security control assessments for moderate- and high-impact information systems across enterprise and mission-critical environments.
• Direct assessment planning and control testing strategies for cloud (IaaS, PaaS, SaaS), on-premises, and hybrid architectures.
• Validate the effectiveness of remediation actions by retesting controls and verifying the closure of findings.
• Analyze assessment results to develop risk determinations, observations, and recommendations for Authorizing Officials (AOs) and senior leadership.
• Ensure all assessments align with federal frameworks including FISMA, NIST SP 800-37, NIST SP 800-53, and OMB guidance.
• Oversee the development of key deliverables such as Security Assessment Plans (SAPs), Security Assessment Reports (SARs), and POA&Ms.
• Mentor and develop junior assessors and consultants while providing technical quality assurance for work products.

Requirements

• Ability to obtain and maintain a Federal or DoD Public Trust clearance.
• Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or a related field.
• Minimum of 9 years of experience performing or leading security control assessments, audits, or cybersecurity risk assessments.
• Active Certified in Governance, Risk and Compliance (CGRC) certification.
• Active Certified Information Systems Security Professional (CISSP) certification.
• Demonstrated experience conducting assessments under the NIST Risk Management Framework (RMF).
• Strong understanding of security control implementation across enterprise and cloud architectures.

Preferred Qualifications

• Experience with continuous monitoring programs and control inheritance models.
• Familiarity with major cloud service providers and their shared responsibility models.
• Additional certifications such as CISM, CISA, CCSP, or cloud-specific security credentials.
• Prior consulting experience involving stakeholder management and team leadership.

Benefits

• Medical, Rx, Dental, and Vision Insurance.
• 401(k) Retirement Plan and Student Loan PayDown program.
• Parental Leave and Adoption Assistance.
• Tuition Reimbursement and continuous professional development opportunities.
• Flexible benefits including Health Savings Accounts and Dependent Care FSAs.

About the Company

Guidehouse is a global AI-led professional services firm delivering advisory, technology, and managed services to the commercial and government sectors. We drive efficiency and resilience in the healthcare, financial services, energy, infrastructure, and national security markets.