Compliance Analyst (Cybersecurity)

TL;DR

Compliance Analyst (Cybersecurity): Leading CMMC/NIST 800-171a gap assessments and remediation projects for US Government contractors with an accent on evidence collection and policy formulation. Focus on generating POAM/SSP documentation and interfacing with C3PAO auditors to ensure regulatory compliance.

Location: Hybrid (Must be a U.S. citizen)

Salary: $115,000 - $140,000

Company

Managed Network Services provider focusing on US Government contractors who need to achieve CMMC compliance.

What you will do

• Lead analyst teams through NIST 800-171a gap assessments and remediation projects.
• Review client environments and collect evidence to determine the satisfaction of CMMC/NIST controls.
• Assist clients in formulating compliant policies, procedures, and Network Design Documents.
• Generate POAM (Plan of Action and Milestone) and SSP (System Security Plan) documentation.
• Collaborate with Cybersecurity, Engineering, and Support departments to ensure compliant configurations.
• Interface directly with C3PAO auditors during CMMC Level 2 Audits.

Requirements

• Proof of U.S. citizenship is required before hire.
• At least 3 years of experience in the Defense Industrial Base as a compliance analyst.
• Hold a CMMC RP, CCP, or CCA certification.
• Strong technical background and deep understanding of the implementation of NIST controls.
• Prior experience working for or with a Managed Service Provider (MSP).
• Professional level verbal and written communication skills.

Culture & Benefits

• Competitive salary and benefits package.
• Hybrid work arrangement.
• Casual, friendly, and relaxed work environment.
• Encouragement and support for professional growth.