Mid - Cybersecurity Supply Chain Risk Mgt Analyst
Apply Job ID 32030 Date posted 10/17/2025Job Family:
Cyber Consulting
Travel Required:
Clearance Required:
What You Will Do:
Identify, assess, and mitigate the threats and vulnerabilities of IT procurements through operational focused risk assessment and mitigation plans.
Conduct vulnerability and threat assessments of suppliers, software, hardware, and overall supply chain processes to pinpoint potential risks.
Responsible for streamlining the procurement process, and balancing risk avoidance and operational requirements to enable stakeholders to meet operational needs and minimize risk to the enterprise.
Responsible to provide analytical support to manage the increasing risk of supply chain compromise related to cybersecurity.
Ensure business continuity and minimize disruptions by identifying and mitigating risks that could impact critical operations and mission effectiveness.
Perform due diligence on potential and existing suppliers to ensure their products maintain adequate security measures and meet compliance requirements.
Identify, assess, and mitigate the risks associated with the distributed and interconnected nature of product and service supply chains.
Ensure the integrity, security, quality and resilience of the supply chain products and services.
Develop and recommend strategies to mitigate identified risks, which may include enhancing technical controls, updating internal policies, or collaborating with vendors to improve their cybersecurity posture.
Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risks to an acceptable level.
Evaluate risks that may include insertion of counterfeits, unauthorized production, tampering, theft, insertion of malicious software and hardware, as well as poor manufacturing and development practices in the cybersecurity-related elements of the supply chain.
Apply security policies to meet the security objectives of the environment.
What You Will Need:
An ACTIVE and MAINTAINED Top Secret with SCI (TS/SCI) Federal or DoD security clearance; must maintain eligibility to UPGRADE and MAINTAIN a CI Polygraph Federal or DoD security clearance
Bachelor’s Degree
ONE (1) year of experience in Cybersecurity , Security System Design, Security Controls, Cybersecurity Framework, Zero Trust and/or Cloud Security.
What Would Be Nice To Have:
An ACTIVE and MAINTAINED TS/SCI Federal or DoD security clearance with a COUNTERINTELLIGENCE (CI) polygraph
Experience assessing and processing supply chain recommendations aligned with Zero Trust principles, threat scenarios, reference architectures and governance frameworks.
Certifications of CYSA+, Security+, CISSP, CASP, CND or relevant certifications.
Experience in professional services consultancy and federal cybersecurity industry.
Security controls based on cybersecurity principles and tenets, NIST SP 800-53, CSF.
Strong knowledge of FEDRAMP, FISMA, NIST SP 800-53, and other federal cybersecurity related policies directives and mandates.
Strong knowledge of applications of security technologies, products and tools.
Demonstrated ability to work independently under general supervision.
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Student Loan PayDown
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program
Mobility Stipend
About Guidehouse
Guidehouse is an Equal Opportunity Employer–Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains including @guidehouse.com or guidehouse@myworkday.com. Correspondence received by an applicant from any other domain should be considered unauthorized and will not be honored by Guidehouse. Note that Guidehouse will never charge a fee or require a money transfer at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event. Never provide your banking information to a third party purporting to need that information to proceed in the hiring process.
If any person or organization demands money related to a job opportunity with Guidehouse, please report the matter to Guidehouse’s Ethics Hotline. If you want to check the validity of correspondence you have received, please contact recruiting@guidehouse.com. Guidehouse is not responsible for losses incurred (monetary or otherwise) from an applicant’s dealings with unauthorized third parties.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.