Cybersecurity Security Operations Consultant
About The Position
Lead vulnerability management and secure configuration operations, ensuring alignment with federal cybersecurity mandates. Manage, monitor, and report vulnerabilities across NIH/HHS systems using tools such as Tenable.sc / Tenable.io and coordinate timely remediation activities. Develop vulnerability prioritization models based on risk, exposure, and asset criticality. Develop secure configuration baselines and monitoring processes based on CIS Benchmarks. Ensure compliance with patching timelines and federal vulnerability directives. Collaborate with infrastructure, application, and security teams to validate remediation actions. Support preparation of reports for leadership and federal oversight bodies. Develop KPI metrics for vulnerability and compliance gap closure rates, asset risk scoring, and compliance tracking.
Requirements
- Must be able to OBTAIN and MAINTAIN a Federal or DoD "PUBLIC TRUST"; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY and maintain an active HHS/NIH clearance are preferred.
- Minimum of THREE (3) years of cybersecurity or IT risk management experience, candidates with experience focused on vulnerability management and/or secure configuration are preferred.
- Hands-on experience with Tenable (Nessus, Tenable.sc, or Tenable.io).
- Deep understanding of CIS Benchmarks, NIST SP 800-53, and FISMA requirements.
- Active CompTIA Security+ CE preferred.
- Strong communication and analytical thinking; ability to manage multiple concurrent priorities and deadlines.
Nice To Haves
- Experience developing automated data pipelines or integrating Tenable APIs into Power BI dashboards.
- Familiarity with ServiceNow Vulnerability Response or Splunk Security Essentials.
- Knowledge of MITRE ATT&CK framework and vulnerability prioritization methodologies (e.g., EPSS, CVSS v3).
- Prior experience within a federal or HHS environment.
Responsibilities
- Lead vulnerability management and secure configuration operations, ensuring alignment with federal cybersecurity mandates.
- Manage, monitor, and report vulnerabilities across NIH/HHS systems using tools such as Tenable.sc / Tenable.io and coordinate timely remediation activities.
- Develop vulnerability prioritization models based on risk, exposure, and asset criticality.
- Develop secure configuration baselines and monitoring processes based on CIS Benchmarks.
- Ensure compliance with patching timelines and federal vulnerability directives.
- Collaborate with infrastructure, application, and security teams to validate remediation actions.
- Support preparation of reports for leadership and federal oversight bodies.
- Develop KPI metrics for vulnerability and compliance gap closure rates, asset risk scoring, and compliance tracking.
Benefits
- Medical, Rx, Dental & Vision Insurance
- Personal and Family Sick Time & Company Paid Holidays
- Position may be eligible for a discretionary variable incentive bonus
- Parental Leave and Adoption Assistance
- 401(k) Retirement Plan
- Basic Life & Supplemental Life
- Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
- Short-Term & Long-Term Disability
- Student Loan PayDown
- Tuition Reimbursement, Personal Development & Learning Opportunities
- Skills Development & Certifications
- Employee Referral Program
- Corporate Sponsored Events & Community Outreach
- Emergency Back-Up Childcare Program
- Mobility Stipend
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
