Guidehouse

Mid - Cybersecurity Supply Chain Risk Management Analyst

Guidehouse

full-time

Posted on:

Location Type: Office

Location: Washington • Alabama, Washington • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $85,000 - $141,000 per year

Job Level

Junior

Tech Stack

CloudCyber SecurityTypeScript

About the role

  • Identify, assess, and mitigate the threats and vulnerabilities of IT procurements through operational focused risk assessment and mitigation plans.
  • Conduct vulnerability and threat assessments of suppliers, software, hardware, and overall supply chain processes to pinpoint potential risks.
  • Responsible for streamlining the procurement process, and balancing risk avoidance and operational requirements to enable stakeholders to meet operational needs and minimize risk to the enterprise.
  • Responsible to provide analytical support to manage the increasing risk of supply chain compromise related to cybersecurity.
  • Ensure business continuity and minimize disruptions by identifying and mitigating risks that could impact critical operations and mission effectiveness.
  • Perform due diligence on potential and existing suppliers to ensure their products maintain adequate security measures and meet compliance requirements.
  • Ensure the integrity, security, quality and resilience of the supply chain products and services.
  • Develop and recommend strategies to mitigate identified risks, which may include enhancing technical controls, updating internal policies, or collaborating with vendors to improve their cybersecurity posture.
  • Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risks to an acceptable level.
  • Evaluate risks that may include insertion of counterfeits, unauthorized production, tampering, theft, insertion of malicious software and hardware, as well as poor manufacturing and development practices in the cybersecurity-related elements of the supply chain.
  • Apply security policies to meet the security objectives of the environment.

Requirements

  • An ACTIVE and MAINTAINED Top Secret with SCI (TS/SCI) Federal or DoD security clearance; must maintain eligibility to UPGRADE and MAINTAIN a CI Polygraph Federal or DoD security clearance
  • Bachelor’s Degree
  • ONE (1) year of experience in Cybersecurity, Security System Design, Security Controls, Cybersecurity Framework, Zero Trust and/or Cloud Security
  • An ACTIVE and MAINTAINED TS/SCI Federal or DoD security clearance with a COUNTERINTELLIGENCE (CI) polygraph
  • Experience assessing and processing supply chain recommendations aligned with Zero Trust principles, threat scenarios, reference architectures and governance frameworks
  • Certifications of CYSA+, Security+, CISSP, CASP, CND or relevant certifications
  • Experience in professional services consultancy and federal cybersecurity industry
  • Security controls based on cybersecurity principles and tenets, NIST SP 800-53, CSF
  • Strong knowledge of FEDRAMP, FISMA, NIST SP 800-53, and other federal cybersecurity related policies directives and mandates
  • Strong knowledge of applications of security technologies, products and tools
  • Demonstrated ability to work independently under general supervision.
Benefits
  • Medical, Rx, Dental & Vision Insurance
  • Personal and Family Sick Time & Company Paid Holidays
  • Position may be eligible for a discretionary variable incentive bonus
  • Parental Leave and Adoption Assistance
  • 401(k) Retirement Plan
  • Basic Life & Supplemental Life
  • Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
  • Short-Term & Long-Term Disability
  • Student Loan PayDown
  • Tuition Reimbursement, Personal Development & Learning Opportunities
  • Skills Development & Certifications
  • Employee Referral Program
  • Corporate Sponsored Events & Community Outreach
  • Emergency Back-Up Childcare Program
  • Mobility Stipend

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
CybersecuritySecurity System DesignSecurity ControlsCybersecurity FrameworkZero TrustCloud SecurityRisk AssessmentVulnerability AssessmentSupply Chain Risk ManagementAnalytical Support
Soft skills
Independent WorkAnalytical ThinkingProblem SolvingCollaborationCommunication
Certifications
CYSA+Security+CISSPCASPCND
Cayuse Holdings

Site Security Monitor Associate

Cayuse Holdings
Junior · Midfull-time$30–$35District of Columbia, Washington · 🇺🇸 United States
Posted: 1 day agoSource: careers-cayuseholdings.icims.com
TypeScript
AT&T

Principal Cybersecurity – Enterprise Security Architect

AT&T
Leadfull-time$158k–$237k / yearNew Jersey, North Carolina, Texas, Washington · 🇺🇸 United States
Posted: 2 days agoSource: att.wd1.myworkdayjobs.com
AnsibleAzureCloudGoLinuxPythonUnixVMware
Boeing

Mid-Level Product Security Engineer

Boeing
Mid · Seniorfull-time$120k–$162k / yearWashington · 🇺🇸 United States
Posted: 14 days agoSource: boeing.wd1.myworkdayjobs.com
Cyber SecurityLinuxUnix
Boeing

Product Security Engineer – Mid-level/Senior

Boeing
Seniorfull-time$120k–$198k / yearWashington · 🇺🇸 United States
Posted: 15 days agoSource: boeing.wd1.myworkdayjobs.com
AWSAzureCloudCyber SecurityJavaLinuxPythonSubversion