Information Systems Security Officer – Senior Consultant
About The Position
As a Senior Consultant in Guidehouse’s cyber practice, you will lead and execute core security compliance and RMF activities for classified federal systems. You will ensure systems maintain an appropriate security posture, support continuous monitoring, and assist with security assessments and incident coordination. You’ll combine hands on ISSO experience with client-facing consulting: translating mission risk into plans and actions, mentoring junior ISSOs, and advising stakeholders on compliance strategy, metrics, and governance. This blend reflects Guidehouse’s model where senior consultants drive client outcomes, contribute to business development, and support people development across the engagement. The Information Systems Security Officer (ISSO) serves as the primary liaison between the system owner and the Information Systems Security Manager (ISSM). The ISSO is responsible for maintaining the appropriate operational security posture for assigned information systems and ensuring compliance with Federal Information Security Management Act (FISMA) requirements and Department security policies.
Requirements
- Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field
- Active Top Secret clearance with SCI eligibility
- Minimum of SIX (6) years of experience in cybersecurity with THREE (3) in ISSO/RMF roles
- Strong understanding of security frameworks and compliance standards (e.g., NIST, RMF SP 800-53 Rev 5, DoD 8570).
- Current Security+ certification (or equivalent DoD 8570 IAT Level II certification
Nice To Haves
- Master’s Degree in in computer science, Information Technology, Cybersecurity, or related field
- Certified Information Systems Security Professional (CISSP)
- Knowledge of cloud security (FedRAMP)
- Experience with security Tools (ACAS/Nessus, Splunk, etc.)
- Project management experience
Responsibilities
- Implement and maintain security controls for assigned information systems in accordance with NIST SP 800-53 and Department of Justice security standards
- Conduct continuous monitoring activities and coordinate security assessments
- Manage the Risk Management Framework (RMF) process, including system categorization, security control selection, implementation, assessment, authorization, and continuous monitoring
- Prepare and maintain System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and other security documentation
- Coordinate incident response activities and ensure timely reporting of security incidents
- Conduct security awareness training for system users
- Review and approve system changes for security impact
- Serve as technical advisor to system owners on security matters, providing understanding of RMF, FISMA compliance, and federal security frameworks, and information security principles and practices
Benefits
- Medical, Rx, Dental & Vision Insurance
- Personal and Family Sick Time & Company Paid Holidays
- Position may be eligible for a discretionary variable incentive bonus
- Parental Leave and Adoption Assistance
- 401(k) Retirement Plan
- Basic Life & Supplemental Life
- Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
- Short-Term & Long-Term Disability
- Student Loan PayDown
- Tuition Reimbursement, Personal Development & Learning Opportunities
- Skills Development & Certifications
- Employee Referral Program
- Corporate Sponsored Events & Community Outreach
- Emergency Back-Up Childcare Program
- Mobility Stipend
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
