



Job Information
Guidehouse Security Incident Management, Senior Associate in Topeka, Kansas
Overview
Guidehouse is a leading global provider of consulting services to the public sector and commercial markets, with broad capabilities in management, technology, and risk consulting. By combining our public and private sector expertise, we help clients address their most complex challenges and navigate significant regulatory pressures focusing on transformational change, business resiliency, and technology-driven innovation. Across a range of advisory, consulting, outsourcing, and digital services, we create scalable, innovative solutions that help our clients outwit complexity and position them for future growth and success. The company has more than 12,000 professionals in over 50 locations globally. Guidehouse is a Veritas Capital portfolio company, led by seasoned professionals with proven and diverse expertise in traditional and emerging technologies, markets, and agenda-setting issues driving national and global economies. For more information, please visit www.guidehouse.com.
Responsibilities
Our Security Incident Management Sr. Associate is a member of a service team with upwards of three (3) personnel within the Information Security operations group that are focused on incident response, data spillage response, eDiscovery/legal retention, phishing/spam/malware response, and threat hunting. Effectively supports and executes multiple or more complex IT Security Incident Management projects that may span company-wide initiatives within scope, timeline, and budget. Applies technical knowledge to innovation and performance improvement while demonstrating critical thinking and sound logic when assessing problems and opportunities in generating solutions. Accountable for ensuring the day-to-day operations of Guidehouse Information Management security systems, maintaining, and protecting Guidehouse and Client data to the NIST SP 800-171 standards, supporting the Office of General Counsel (OGC) with e-Discovery or legal retention holds/investigations, and managing security events and incidents through proactive hunting and anomaly investigations. Reports directly to the Security Incident Management Manager.
Job Description/Responsibilities:
Can articulate core services of corporate functional areas as well as core services offered by Guidehouse (at a high level) and demonstrates an interest in participating in company-wide initiatives.
Understands and supports the IT Security Incident Management initiatives that support overall IT Security Operations goals and objectives
Takes responsibility for own actions and works accordingly to get the job done with minimal supervision
Understands hot topics related to designated industries/service lines and, broadly, how they impact our clients
Establishes and maintains effective working relationships with management and staff Settles differences with others in a way that preserves ongoing work relationships
Demonstrates focus on quality and reviews work product of self and others
Recognizes issues and escalates to the appropriate parties; Recognizes and resolves issues as they arise, with guidance
Anticipates and addresses customer needs and expectations and provides excellent customer service
Interprets established policies, procedures, and processes to effectively impact business operations
Organizes and executes job responsibilities for self and others so as to maintain a well-organized, timely and high-quality work product
Sets priorities and organizes tasks
Communicates with team about project status, as directed
Manages pieces of a project, and assists with project implementation
Assists/guides junior team members in executing assigned tasks
Performs the services provided to practices without supervision through sound, well-structured deliverables
Openly shares techniques, methodologies, and approaches to help others be more successful
Participates in the performance management process and meets key milestones for self (goal setting, self-assessment)
Meets regularly with supervisor and direct reports (if applicable) to discuss progress towards goals and career development
Maintains a learning plan that includes classroom and online learning as well as achieving/maintaining relevant certifications; completes all required training
Actively seeks to learn, collaborate with, and observe more experienced practitioners on areas of mutual interest
Understands the company’s market, market trends, target client base and primary competitors
Participates in recruiting activities and the integration of new hires
Monitors and grows internal and external professional network; attends networking events
Understands organizational goals and suggests opportunities to help meet or exceed them
Shares credit for team’s success
Holds oneself to a high standard of professional behavior; operates with integrity and respect for colleagues (all levels)
Able to apply both logical and creative thinking in approach to problem solving Communicates confidently and with effective writing, presentation, and facilitation skills among different audiences that conveys more complex messages to own team and clients
Manages independent external and internal assessments to ensure full compliance within the scope of regulatory and contractual requirements
Produces work and deliverables that require minimal re-work or editing
Qualifications
Required:
United States Citizenship
Clearance: Ability to obtain a National Security Clearance or a U.S. Federal Government Public Trust
Bachelor’s in computer-related or cyber field with 5-8 years of experience; OR Master's with 2-5 years of experience
Shall possess one or more of the following certifications:
(ISC)2 Certified Information Security Professional (CISSP)
ISACA Certified Information Security Manager (CISM)
SANs GIAC certification (e.g., GPEN or GW APT)
Offensive-Security Certified Professional (OSCP)
EC-Council Certified Ethical Hacker (CEH)
Microsoft Security (Operations Analyst/Engineer/Administrator) Associate
ACEDS Certified E-Discovery Specialist (CEDS)
Must be able to work East Coast US business hours
Experience working with Executive Leadership
Experience supporting Microsoft Windows 10 operating system
Working knowledge of NIST SP 800-171 and NIST SP 800-53
Working knowledge of the MITRE ATT&CK framework
Experience working with Security Operation Centers, physically or virtually
Experience with eDiscovery, litigation holds, and legal investigations support
E-discovery or digital forensics data processing experience with a strong understanding of the e-discovery lifecycle and related data processing standards and concepts, including: data processing, data deduplication, de-nisting, imaging, metadata extraction, load files, and data migration across e-discovery platforms
Strong understanding of relational databases
Advanced skills with Excel (vlookups, macros, etc.). Experience using formulas in Excel to manipulate data
Knowledge of various data storage methodologies, data collections, data processing and methods of electronic production
Significant experience conducting Incident Response and Security Investigations
Experience executing processes and procedures in compliance with required NIST and IT standards
Experience using a SIEM, such as Splunk or Sentinel to do analysis of security anomalies and events to do Incident Response and proactive threat hunting
Experience creating writing queries with Search Processing Language (SPL) or Kusto Query Language (KQL)
Working knowledge of ZeroTrust environments, monitoring strategies, and best business practices of threat hunting
Experience working with endpoint detection and response with tools such as Defender, Symantec, or CrowdStrike
Experience with taking Threat Intelligence and actioning it
Ability to work on many concurrent, and changing priorities
Action-oriented and able to manage and meet aggressive timelines and deadlines.
Must have excellent organizational and time management skills
Preferred
Experience working with firewalls/web application firewalls, secure file transfer systems, implementing changes, and monitoring status
Experience with Data Forensics and Legal/Ethical issues regarding Data
Experience working with US Federal Law Enforcement and/or Intelligence Communities
Working knowledge of Active Directory, Exchange, SharePoint, and Teams
Powershell and Basic Scripting Experience
Demonstrated ability to learn and document new technologies/solutions
Experience with ServiceNow is a plus
Additional Requirements
The successful candidate must not be subject to employment restrictions from a former employer (such as a non-compete) that would prevent the candidate from performing the job responsibilities as described.
This position is open to candidates virtually from EST, CST, PST time zones as well as AZ, UT, and AK
Disclaimer
About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
Rewards and Benefits
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program