Guidehouse

Public Health

ConsultantIIPublicHealthCMSA123

$74–124k McLean, Virginia, United States FULL TIME

The Brief

“Consultant II - Public Health - CMS A-123 at Guidehouse. Skills: IT general and application control assessments, OMB Circular A‑123, FISMA, FISCAM, FedRAMP, NIST frameworks, internal control frameworks, IT risk, control gaps, remediation strategies. Support and execute the planning, execution, and documentation of IT general and application control assessments in alignment with OMB Circular A‑123, Appendix A, and federal information security standards.. Develop and execute IT test plans for syst”

What You'll Achieve.

audit readiness; meet federal information security requirements; contributing to the agency’s internal control maturity and compliance posture.

Industry & Context.

Public Health

Problems you'll solve

identify deficiencies; support the development and validation of Corrective Action Plans (CAPs); Provide input and recommendations on IT risk, control gaps, and remediation strategies

Eligibility Requirements

Up to 10% Travel, Ability to Obtain Public Trust Clearance, US citizenship required

What They're Looking For.

Must Have

Bachelor’s degree in Information Technology, Business, Legal, Computer Sciences, Cybersecurity, or a related field., Minimum of 3 + years of professional experience supporting IT risk, controls, and security assessments within complex federal entities., Demonstrated experience working with FISMA, FISCAM, FedRAMP, and NIST frameworks., Experience integrating IT controls into broader internal control frameworks (e. g. , OMB Circular A‑123, FMFIA)., Ability to obtain and maintain a Public Trust clearance (i. e. US citizenship required).

Nice to Have

Certified Information Systems Auditor (CISA)., Experience supporting cross‑functional IT control assessments and coordinating with Federal A‑123 leadership, business owners, and external auditors., Skilled in developing IT test plans, conducting walkthroughs, and documenting control design and operating effectiveness., Experience supporting Corrective Action Plan (CAP) development and validation., Additional certifications such as CISSP, CGFM, PMP, or relevant cloud security credentials (e. g. , AWS, Azure)., Experience mapping IT systems to financial reporting cycles and control matrices., Proficiency with tools such as Microsoft Power Platform, Dynamics 365, SharePoint, and other enterprise GRC platforms used for A‑123 testing and documentation., Demonstrated ability to support the use of automation, analytics, AI, or other technology‑enabled approaches within internal control solutions., Comfortable advising on IT system risks, control gaps, and remediation strategies in a highly regulated federal environment.

What You'll Do.

Support and execute the planning

and documentation of IT general and application control assessments in alignment with OMB Circular A‑123

and federal information security standards.

Develop and execute IT test plans for systems supporting financial reporting

ensuring compliance with frameworks such as FISMA

Coordinate with internal control teams

and external auditors to identify

and test key IT controls across major transaction cycles and systems.

Map IT systems and applications to financial reporting processes and support appropriate coverage of control objectives and key risk areas.

Evaluate the design and operating effectiveness of IT controls

identify deficiencies

and support the development and validation of Corrective Action Plans (CAPs).

well‑organized documentation and workpapers that support audit readiness and meet federal information security requirements.

Provide input and recommendations on IT risk

and remediation strategies

contributing to the agency’s internal control maturity and compliance posture.

Support proposal development

and other business development efforts

Provide day‑to‑day guidance to junior staff and contribute to knowledge sharing

and onboarding activities.

How You'll Work.

Team & Collaboration

Coordinate with internal control teams, business owners, and external auditors; Experience supporting cross‑functional IT control assessments and coordinating with Federal A‑123 leadership, business owners, and external auditors.

Process & Methodology

planning, execution, documentation, PMP

Free ATS check

Applying for this Consultant II - Public Health - CMS A-123 role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 46 detected

Required

IT general and application control assessments ×3

OMB Circular A‑123 ×3

FISMA ×3

FISCAM ×3

FedRAMP ×3

internal control frameworks ×3

IT risk ×3

remediation strategies ×3

planning ×3

execution ×3

Nice to have

IT test plans

IT systems

IT applications

IT controls

automation

analytics

process management

cross-functional coordination

vendor/stakeholder management

Behavioural

guidance to junior staff

knowledge sharing

training

onboarding activities

Role Details

Seniority

mid

Type

FULL TIME

Experience

3–5 yrs

Education

Bachelor’s degree in Information Technol

Salary Band

50k-75k

AI-Extracted Insights

Domain Areas

public-health

omb-circular-a-123

federal-information-security-standards

fisma

fiscam

fedramp

nist-sp-800-53

nist-sp-800-30

Certifications

Certified Information Systems Auditor (CISA)

CISSP

CGFM

PMP

AWS

Azure

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Guidehouse?

Real rants from real employees. Read before you apply.

Read Company Rants →