Vulnerability Management Subject Matter Expert

Guidehouse•Tysons, VA

2d•Remote

About The Position

Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross‑organizational coordination, and maturing enterprise vulnerability and endpoint management capabilities. This is not a project management role. The SME will provide expert advisory support across vulnerability management and endpoint tooling, with emphasis on platforms such as BigFix, Tenable, SCCM, and/or Qualys. The ideal candidate brings hands‑on experience with enterprise vulnerability tooling and has supported modernization, tooling transitions, and enterprise‑wide capability uplift. The enterprise is a large, federated organization, with multiple environments and technology, with over 100k endpoints. The individual will help guide clients through improving processes, strengthening reporting and remediation pathways, and driving consistent adoption across numerous sub‑organizations.

Requirements

U.S. Citizenship and the ability to obtain/maintain a federal security clearance.
Bachelor's Degree plus minimum of nine (9) years of cybersecurity experience with deep specialization in vulnerability management and endpoint security.
Demonstrated experience with enterprise vulnerability tools (BigFix, Tenable, SCCM, and/or Qualys) and architecting solutions.
Experience supporting enterprise modernization initiatives, system/tool transitions, or the evolution of large‑scale cyber capabilities.
Ability to navigate large, federated organizations and work with multiple sub‑organizations.
Strong communication and advisory skills, with the ability to shape strategy and influence stakeholders.

Nice To Haves

Experience linking vulnerability management with ICAM, Zero Trust, continuous monitoring, or RMF-aligned cyber programs
Familiarity with federal cybersecurity standards and large‑scale IT environments.
Prior consulting or advisory experience in federal civilian or defense environments.
Relevant certifications (Security+, CISSP, vendor‑specific tool certifications).

Responsibilities

Serve as a trusted advisor to federal clients on maturing vulnerability management and endpoint security capabilities.
Provide expert guidance on configuration, optimization, and effective use of enterprise vulnerability management tools (BigFix, Tenable, SCCM, and/or Qualys).
Support the modernization and evolution of enterprise vulnerability and endpoint management environments, including tool transitions, capability enhancements, and integration with broader cyber programs.
Strengthen enterprise vulnerability workflows by advancing prioritization, remediation coordination, communications, and reporting consistency.
Engage stakeholders across a large, federated organization, building alignment and driving sustained adoption of enterprise vulnerability management practices.
Translate complex technical topics into clear, actionable insights for leadership.
Partner with cyber, IT infrastructure, application teams, and senior stakeholders to improve remediation outcomes and reduce enterprise risk.
Contribute thought leadership, mentor junior staff, and support practice development.

Benefits

Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Student Loan PayDown
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program
Mobility Stipend