Cyber Risk Assessment Analyst

## Cyber Risk Assessment Analyst

Guidehouse is seeking a Cyber Risk Assessment Analyst to support cybersecurity initiatives with a large federal agency. This position is part of our Cyber Consulting practice and offers the opportunity to make a meaningful impact on enterprise-wide cybersecurity posture.

### What You'll Be Doing

You'll provide comprehensive cybersecurity analysis support focused on detailed enterprise cybersecurity risk analysis and reporting. Your role will leverage advanced critical thinking to identify organizational cybersecurity risks and their potential impacts on mission objectives.

Your day-to-day work will involve preparing for enterprise cybersecurity risk assessments by conducting detailed organizational research and analysis to determine potential business impacts. You'll conduct Tier 1 (organization) and Tier 2 (business/mission) level cybersecurity risk assessments in accordance with NIST Federal Information Processing Standards and Special Publications, OMB guidance, DHS Binding Operational Directives, and other regulatory authorities.

You'll perform detailed quantitative and qualitative organizational research and analysis regarding cybersecurity risks, including threats, vulnerabilities, likelihood, and impact assessments. A key responsibility involves identifying and developing detailed actionable recommendations for remediating cybersecurity risks in alignment with the organization's defined risk tolerances and risk thresholds.

Additionally, you'll gather threat and vulnerability information from internal and external information sharing forums and sources, then communicate cybersecurity risk assessment results through written narrative reports and executive-level presentations. You'll identify, coordinate, track remediation efforts, and monitor risk exposures while identifying and communicating trends in data. Evaluating cybersecurity program effectiveness in identifying, managing, and reducing risk is also central to this role. You'll collaborate cross-functionally with internal analysts and engage external stakeholders to build awareness of cybersecurity risk assessment initiatives.

### What You Need to Bring

You must hold an ACTIVE and CURRENT SECRET federal or DOD security clearance—this is non-negotiable for this position.

Education-wise, you'll need either a Bachelor's Degree with a minimum of four (4) years of relevant cybersecurity experience, or a Master's Degree with at least two (2) years of relevant experience.

Excellent verbal and written communication skills are essential, particularly in report writing and translating technical concepts for various audiences.

### Nice-to

• Have Qualifications

While not required, the following would strengthen your candidacy: CRISC, CISSP, or a Cyber Security AI certification; experience with NIST Federal Information Processing Standards and Special Publications, OMB guidance, and other regulatory authorities; experience working for or with the Department of State; demonstrated experience in external client-facing management and/or consulting for large firms; the ability to communicate highly technical subject matter to non-technical audiences; comfort thriving in complex, challenging, and deadline-driven environments; and willingness to participate in proposal development and other business development activities.

### Compensation and Benefits

The annual salary range for this position is $113,000.00 to $188,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs. The position may be eligible for a discretionary variable incentive bonus.

Guidehouse offers a comprehensive, total rewards package that reflects our commitment to creating a diverse and supportive workplace. Benefits include medical, Rx, dental, and vision insurance; personal and family sick time and company paid holidays; a 401(k) retirement plan; basic life and supplemental life insurance; health savings accounts, dental/vision, and dependent care flexible spending accounts; short-term and long-term disability coverage; student loan paydown; tuition reimbursement and personal development and learning opportunities; skills development and certifications support; an employee referral program; corporate-sponsored events and community outreach; an emergency back-up childcare program; and a mobility stipend. Parental leave and adoption assistance are also available.

### About Guidehouse

Guidehouse is a global AI-led professional services firm delivering advisory, technology, and managed services to the commercial and government sectors. With an integrated business technology approach, we drive efficiency and resilience in the healthcare, financial services, energy, infrastructure, and national security markets. We bring together approximately 18,000 professionals to achieve lasting impact and shape a meaningful future.

No travel is required for this position, and work will be conducted at a client office in Washington, DC. Guidehouse is an Equal Opportunity Employer and will consider for employment qualified applicants with criminal histories in a manner consistent with applicable law.