Apply on Employer Site

Guidehouse · 3 months ago

Senior Data Security Consultant

US - DC, Washington

Full-time

Onsite

Senior Level

$130K/yr - $216K/yr

7+ years exp

Guidehouse is a consulting firm focused on cybersecurity solutions, and they are seeking a Senior Data Security Consultant to lead the development of data protection strategies for government systems. The role involves implementing robust security controls, ensuring compliance with federal regulations, and guiding a team of cybersecurity professionals.

AdviceConsultingManagement Consulting

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Lead the development and implementation of Zero Trust data protection strategies, including encryption, tokenization, and data masking techniques to secure sensitive government data across networks and repositories

Design and support the management of identity-centric access controls, defining granular permissions and enforcing least privilege access to government data, aligning with Zero Trust principles

Coordinate and support the secure data lifecycle management practices, including data classification, data retention policies, and secure disposal procedures, integrated with Zero Trust data protection measures

Ensure data security measures align with federal cybersecurity regulations, policies, and frameworks (e.g., NIST, FISMA), conducting data security audits and assessments to maintain compliance within government data environments

Support the end-to-end engineering of platform security solutions, including the implementation of controls for identity and access management (IAM), data loss prevention (DLP), encryption, and secrets management

Develop, implement, and enforce data security policies, standards, and procedures in alignment with federal guidelines, including FISMA, NIST SP 800-53, and the RMF

Act as the SME for the implementation of security measures such as encryption and data masking to safeguard sensitive information

Promote security awareness across the agency by providing training and guidance to employees on best practices for data security

Work with internal and external stakeholders, such as system owners, external auditors, and other federal agencies like CISA, to coordinate security activities and ensure compliance

Define and track key performance indicators (KPIs) and metrics to demonstrate the effectiveness of security controls and overall compliance status

Qualification

Zero Trust strategiesData security complianceIdentityAccess managementData classification standardsCybersecurity program managementSecurity tools knowledgeClient-facing managementCommunication skillsTeam leadership

Required

An ACTIVE and CURRENT SECRET federal security clearance

Bachelor's Degree and NINE (9) years of progressive experience in federal cybersecurity, with a strong background in program management, compliance, and risk management OR a Master's Degree AND SEVEN (7) years of relevant experience

In-depth knowledge of data classification standards, including Federal Information Processing Standard (FIPS) 199 - Standards for Security Categorization of Federal Information and Information Systems, and NIST RMF and Special Publications specific to data classification (e.g., SP 800-60 SP 800-53, SP 800-171 and SP 1800-39A)

Excellent verbal and written communication skills, specifically in report writing

Preferred

One or more of the following certifications: ISC2 Zero Trust Strategy Certificate, Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP), now part of the Certified in Governance, Risk and Compliance (CGRC), Certified Information Security Manager (CISM)

Experience working for or with the Department of State or another large Federal Agency

Demonstrated experience in the areas of external client-facing management and/or consulting for large firms

Experience consulting federal agencies on implementing Zero Trust requirements

Extensive knowledge with security tools such as SIEM, DLP, and endpoint detection and response (EDR)