GuidehouseRemote
Senior Security Engineer
United States of America
Full Time
2 weeks ago
$149,000 - $248,000 USD
H1B Sponsor Likely
Key skills
CompTIA Security+Certified Information Systems Security Professional (CISSP)Zero Trust architectureNIST SP 800-207Security engineeringCybersecurity architectureEnterprise security modernizationIdentity and access management (IAM)Multi-factor authentication (MFA)Single sign-on (SSO)Privileged access managementEndpoint securityDevice securitySecurity information and event management (SIEM)Security orchestration, automation, and response (SOAR)NIST SP 800-53Security governanceSecurity complianceIAMSSOLeadershipCommunicationCloud SecurityZero Trust
About this role
Guidehouse is a leading consulting firm specializing in Cyber Consulting, and they are seeking a Senior Security Engineer to lead enterprise security modernization initiatives. The role involves defining Zero Trust architectures, serving as a technical authority on security control deployments, and ensuring the effective implementation of security solutions across the enterprise.
Responsibilities:
- Lead enterprise security engineering and modernization initiatives, from architecture and design through implementation, testing, and operational transition
- Define and maintain Zero Trust–aligned reference architectures and roadmaps across identity, device, network/environment, application/workload, and data pillars in alignment with NIST SP 800‑207
- Serve as the technical authority for complex security control deployments, approving implementation patterns, resolving cross‑domain design issues, and ensuring solutions meet enterprise security, scalability, and operational requirements
- Translate mission and business requirements into secure, implementable technical designs and detailed engineering requirements
- Engineer and modernize identity and access management (IAM/ICAM) capabilities, including MFA, SSO, identity lifecycle governance, conditional access, and privileged access management
- Design and implement endpoint and device security controls, integrating telemetry into centralized monitoring and response capabilities
- Lead design and deployment of Zero Trust network capabilities, including segmentation, secure access/ZTNA, and policy enforcement integrated with identity and device posture
- Oversee security monitoring and response modernization, including integration with SIEM/SOAR, detection engineering strategies, and automation to improve operational effectiveness
- Map security controls to architectures and implementations aligned to frameworks such as NIST SP 800‑53; ensure solutions generate defensible evidence for compliance and audit purposes
- Establish technical governance and engineering standards, including design reviews, guardrails, and architecture decision records
- Mentor and coach engineers and consultants; conduct peer reviews and reinforce technical quality and delivery excellence
- Develop and deliver clear technical documentation, including architecture diagrams, implementation plans, and executive‑level briefs
- Support business development activities through technical solutioning, proposal contributions, and client presentations
Requirements:
- Must be able to OBTAIN and MAINTAIN a Federal or DoD 'PUBLIC TRUST'; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY and maintain an active HHS/NIH clearance are preferred
- Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or a related field (additional relevant experience may substitute for formal education)
- Minimum of NINE (9) years of progressively responsible experience in security engineering, cybersecurity architecture, or enterprise security modernization
- Required certifications: CompTIA Security+ (active), Certified Information Systems Security Professional (CISSP) (active)
- Demonstrated experience designing and delivering Zero Trust–aligned architectures, with working knowledge of NIST SP 800‑207 principles
- Proven experience acting as a technical lead or authority across multiple security domains (identity, endpoint, network, cloud, and monitoring)
- Strong understanding of security frameworks, governance, and compliance practices within enterprise or federal environments
- Excellent written and verbal communication skills, including the ability to brief technical and executive stakeholders
- Experience implementing Zero Trust capabilities in federal environments aligned to the CISA Zero Trust Maturity Model or agency Zero Trust strategies
- Experience with leading security platforms across IAM, ZTNA/SSE, EDR/XDR, and SIEM/SOAR ecosystems
- Familiarity with cloud security architectures and hybrid enterprise environments
- Additional certifications such as CCSP, CISM, GIAC, or cloud provider security credentials
- Prior consulting experience with responsibility for delivery leadership and client engagement